Security Analyst

Job Description

A BIT ABOUT US Lever's vision is connecting human potential to meaningful work. Hiring is the most strategic challenge that every company faces, and Lever is one of the most recognized brands in talent acquisition software. As the innovation leader in our space, we are searching for great people to join us and push further. We are proud of the company we’ve built so far, but we are even more excited for what is yet to come. Our 5000+ customers include global leaders, startups that are disrupting industries, and businesses around the world. Lever has raised $123 million in funding, most recently a $50M Series D in November 2021. With an overall gender ratio of 50:50 women and men, Lever is also fiercely committed to building a team culture that celebrates diversity and inclusion. We have been certified as a “Great Place to Work”, along with “Best Company Outlook 2022,” and “Forbes Best Startup Employers 2022,” and the list keeps growing! Our people are Lever’s biggest competitive advantage. For more information on our team culture, visit https://inside.lever.co/ . THE CHALLENGE Lever is hiring a Security Analyst to augment our growing Security Team. In this role you’ll be responsible for adapting, improving and scaling the Security Analyst functions during a period of significant growth (and beyond) for the company. Reporting to our Director of Security, you’ll bring your knowledge to manage company wide risk reduction and compliance efforts. The Security Analyst will focus on Governance, Risk and Compliance. We are a small team and your agility will ensure you keep pace with an ever changing landscape. THE OPPORTUNITY As the newest member of the Security Team, you will learn to operate a functioning ISMS.. You will be working closely with the Director of Security, IT and Engineering Teams to ensure they build the technical components to reduce risk as Lever continues to scale its workforce aggressively. You will engage in multiple facets of Lever’s GRC program from vendor assessments to compliance audits. We value data at the core of the security program and you will have the opportunity to use your organizational skills to produce actionable reports to senior management. We never lose sight of our highest priority: ensuring that all Lever customer and company data is secure and available. These goals drive all that we do, and we’re excited to bring someone on board who will creatively build the perfect mix of secure and efficient systems. We know that the work you will do will have a transformative impact to every contributor at Lever and every customer. THE TEAM Lever’s Security Team has built an ISMS to the ISO 27001 standard. We are tasked with implementing controls and meeting obligations with our results reported to Senior Management through metrics. As a small team, everyday requires cross domain knowledge. We place a high emphasis on skills development and you will have the opportunity to expand and refine your skill set on the job.

THE SKILL SET

• We’re looking for someone with a builder mindset; confident in managing day-to-day operations but not content with the status quo.
• Commitment to Cyber Security Excellence proven through certifications like GSEC, CISSP, etc
• Strong knowledge of commonly accepted information security principles and practices
• Familiarity with ISO 27001 and/or SOC II
• Ability to effectively handle and prioritize requests from multiple departments while maintaining focus on personal and team goals.

WITHIN 1 MONTH, YOU’LL

• Complete Ramp Camp, our onboarding program designed to get you up to speed on our business, vision and team and gain an understanding about how your role fits into Lever's broader organization.
• In partnership with your manager, develop your own Objectives and Key Results. These will serve as your onboarding plan and will help you and your manager align and understand your impact and progress to goals.
• Familiarize yourself with our security roadmap and gain an understanding of the relationships between NIST CSF and ISO 27001 with special emphasis on the security functions appropriate for Lever’s maturity.

WITHIN 3 MONTHS, YOU’LL

• Learn the compliance functions across the organization
• Participate in third party audits
• Master the organization of Lever’s ISMS
• Develop cross functional relationships with security advocates

WITHIN 6 MONTHS, YOU’LL

• Suggest process improvements
• Identify gaps in policy or compliance activity
• Develop dashboards for compliance reports
• Facilitate and lead security trainings with measurable results

WITHIN 12 MONTHS, YOU’LL

• Successfully run and pass third party audits
• Completely own compliance activity (SOC II and ISO 27001)
• Implement compliance process improvements to increase efficiency (i.e. automation)

IS THIS ROLE NOT AN EXACT FIT? Sign up to stay in touch, we'll let you know when we have new positions on the team. THE LEVER STORY Lever is a leading Talent Acquisition Suite that makes it easy for talent teams to reach their hiring goals and to connect companies with top talent. Lever is the only platform that provides all talent acquisition leaders with complete ATS and robust CRM capabilities in one product, LeverTRM. The Lever Hire and Lever Nurture features allow leaders to scale and grow their people pipeline, build authentic and long-lasting relationships, and source the right people to hire. Lever Analytics provides customized reports with data visualization, see offers completed and interview feedback, and more, to inform strategic decisions between hiring managers and executives alike. Our platform also enables companies to hire with inclusivity in mind, helping eliminate any hiring bias. Lever supports the hiring needs of more than 4,500 companies around the globe including the teams at Netflix, Spotify, Atlassian, KPMG, and Nielson. For more information, visit https://www.lever.co . California residents applying for positions at Lever can see our privacy policy here . #LI-GH1 Apply for this job