Jobbörse
Finde Jobs in deiner Nähe – ob vor Ort, hybrid oder remote.- Ähnliche Jobs zu: Security Analyst
Security Analyst
Capricor Therapeutics, Inc.San Diego
Capricor Therapeutics (NASDAQ: CAPR) is a biotechnology company dedicated to advancing transformative cell and exosome-based therapies for rare diseases. At the forefront of our innovation is Deramioc
Information Security Analyst (Information Security Analyst II)
SDSU AlumniSan DiegoPosition Summary San Diego State University is seeking a detail‑oriented and collaborative Information Security Analyst to join the Information Technology Security Office (ITSO). In this role, you wil
Information Security Analyst (Information Security Analyst II)
The California State UniversitySan DiegoInformation Security Analyst (Information Security Analyst II) Job no: 557129Work type: StaffLocation: San DiegoCategories: Unit 9 - CSUEU - Technical Support Services, Probationary, Full Time, Inform
Security Analyst
Brooklyn Arts CouncilVirginiaOverview MUST BE LOCAL TO HYBRID SITEPublic Trust Clearance requirement.BRMi is seeking a Security Analyst to support cybersecurity operations, risk management, compliance, and information assurance a
Security Analyst
Prospect Infosystem Inc.MadisonTop Required Skills & Years of ExperienceKnowledge on concepts of authentication, authorization, active directory policies, active directory federation services (ADFS), and web filtering solutions (5
Security Analyst
VimoUnited StatesSecurity AnalystRemote - Mountain View, CA OverviewSalary Range $90,000.00 - $120,000.00 Salary/year DescriptionAbout Vimo: Vimo is a national leader in state-based health insurance exchanges and safe
Security Analyst
Metro Vein CentersDetroitMetro Vein Centers is a growing healthcare practice focused on vein treatments.About the Role Metro Vein Centers is hiring a Security Analyst to own and mature our information security program across
Security Analyst
vTech SolutionUnited StatesSecurity AnalystvTech can help you avoid the daunting task of writing and posting job offers, shifting through resumes and laboring through the lengthy interview process. Our Staffing solutions will a
Security Analyst
Cherokee FederalOregonJob Description: Monitor and analyze security events utilizing Splunk Enterprise Security (ES). Build, maintain, and tune Splunk searches, correlation rules, alerts, and dashboards. Conduct incident r
Security Analyst
ETHEREUM TECHNOLOGIES LLCRichmondJob Description: Individual is able to work without assistance; provides leadership for others; able to manage highly complex work efforts; may have advanced education; has extensive industry experien
Security Analyst
iT1 SourceTempeiT1, a leading national technology solution provider headquartered in Tempe, AZ, is looking for a skilled and experienced Security Analyst to join our team. iT1 has been ranked as one of Arizona’s Bes
Security Analyst
AristaSanta ClaraYou will join our Operational Security team, a group of dedicated professionals who serve as our organization’s initial line of defense In this collaborative environment, you will work closely with se
Security Analyst
Computer World Services, Corp.MorrisvilleJob DescriptionComputer World Services Corp (CWS) is seeking an experienced Security Analyst/Data Security Specialist to support the planning, coordination, and implementation of the organization’s in
Security Analyst
TryApplyNowSanta ClaraJob DescriptionBolster Legal Services is hiring a mid-level Security Analyst to protect global brands from phishing, impersonation, and online fraud campaigns targeting their customers and employees.
Security Analyst
Paymentus Holdings Inc.CharlotteThe Information Security GRC Analyst, will report to the Director, IT Compliance. This role will interact with multiple departments, manage compliance readiness, provide support for our central GRC re
Security Analyst
Artemis SecurityNew YorkArtemis is building the future of AI-driven defense - helping companies detect and defend themselves effectively in an era where AI is fighting AI on the cyber battlefield. We're backed by First Round
Security Analyst
Avani Technology SolutionsSouth CarolinaOverview Job Title : Security Analyst Location : Blythewood, South Carolina Duration : 12+ Months Responsibilities Configure, optimize, AND MAINTAIN current security tools to include network and serve
Security Analyst
K L McKinney ConsultingHoustonRole Overview Security Analyst– K.L. McKinney, Houston, TX. Compensation: $110,000 – $130,000 per year. Employment: Full Time. Job Code: EC007I.Key Responsibilities Threat Monitoring & Incident Respon
Security Analyst
Metro Vein CentersWest BloomfieldMetro Vein Centers is a growing healthcare practice focused on vein treatments.About the Role Metro Vein Centers is hiring a Security Analyst to own and mature our information security program across
Security Analyst
Novalink SolutionsMadisonJob Description Under the general review of the IT Solution Center (ITSC) Supervisor, this position supports and maintains an Identity and Access Management (IAM) program and standards for ETF. This p
Security Analyst
VigorCare Pediatric ServicesSevernWe are seeking a highly skilled and experienced Security Analyst to join our team. The Security Analyst will be responsible for ensuring the security and protection of our sensitive data and systems,
Security Analyst
Spectrum Health & Human ServicesNew YorkRole Overview Spectrum Health & Human Services is seeking a detail-oriented Security Analyst to help protect our healthcare organization's systems, data, and patient information. This role is responsi
Security Analyst
Abnormal SecurityOregonJob Description:Perform operational tasks, such as handling high volume intake queues or labeling machine learning data, in a timely mannerPropose improvements for processes, workflows, product and po
Security Analyst
Ventures UnlimitedMoorestownVentures Unlimited is a service centric organization. Our success begins with our ability to apply our relationships, leverage technologies, and identify talent - often in combination - to an endless
Security Analyst
Bridewell Consulting LimitedColumbiaSecurity Analyst Managed Security Services Hybrid Remote Permanent Apply for this job About Bridewell One of the most exciting prospects in the UK cyber security sector today, Bridewell is a leading c
Security Analyst
- San Diego, California, United States
- San Diego, California, United States
Über
We are seeking a detail-oriented Security Analyst to protect our cybersecurity operations within our regulated biotech/pharmaceutical environment. This role combines hands‑on security operations with compliance governance, focusing on protecting GMP systems, regulated data, and financially relevant systems in scope for SOX compliance.
This is a unique opportunity to work at the intersection of threat operations and regulatory compliance, ensuring adherence to GMP, SOX IT General Controls (ITGCs), and industry security frameworks while actively defending against evolving cyber threats.
Responsibilities
Monitor and Respond to Security Threats
Monitor, triage, and respond to security alerts across endpoint, email, and SIEM platforms
Investigate security incidents impacting:
GMP systems and regulated environments
SOX in-scope systems (financial applications, identity systems, etc.)
Execute incident response procedures aligned with validated and auditable processes
Maintain detailed, audit-ready documentation of all incidents and remediation actions
Manage Security Technology Stack
Administer and implement CrowdStrike Falcon for endpoint detection and response (EDR)
Manage Abnormal Security for phishing, business email compromise (BEC), and account takeover threats
Perform vulnerability assessments using Rapid7 InsightVM
Oversee KnowBe4 security awareness training and phishing simulations
Coordinate with SIEM platforms for log analysis and threat correlation
SOX IT General Controls (ITGCs)
Support SOX ITGC control execution and evidence collection, including:
User Access Reviews (UARs)
Logical access controls (joiner/mover/leaver processes)
Change management controls
Logging and monitoring controls
Prepare and maintain audit-ready documentation for SOX compliance testing
Coordinate with Finance and IT teams on control execution and remediation
Policy Development & Regulatory Compliance
Draft, review, and maintain information security policies, standards, and SOPs aligned with:
GxP requirements (GMP, GCP, GLP)
SOX IT General Controls
21 CFR Part 11 (where applicable)
NIST CSF, NIST 800-53, or CIS Controls
Ensure all policies are version-controlled, formally approved, and audit-ready
Partner with IT, Finance, QA, and Compliance to align controls across regulated and financial systems
Audit Support
Support internal and external audits including SOX, FDA, SOC 2, and regulatory inspections
Prepare control evidence and documentation packages
Track audit findings and coordinate remediation activities
Maintain relationships with internal audit and external assessors
Vulnerability Management
Conduct regular vulnerability scans across the environment
Prioritize remediation based on:
Regulatory impact (GMP systems)
Financial/reporting risk (SOX systems)
Threat landscape and exploitability
Coordinate remediation through appropriate change control processes
Track and document remediation evidence for compliance reporting
Security Awareness & Training
Administer security awareness training programs for all staff
Deliver targeted training for users with access to:
Regulated systems
Financial/SOX in-scope systems
Conduct phishing simulation campaigns and analyze results
Track training metrics and maintain compliance records
Continuous Improvement
Develop and maintain security playbooks, SOPs, and runbooks
Contribute to security metrics, KPIs, and executive reporting
Identify gaps in controls, detection capabilities, and governance processes
Recommend and implement security improvements aligned with business objectives
Requirements
Required Experience
Minimum 3 years of hands‑on cybersecurity experience
At least 2 years in a regulated environment (biotech, pharma, healthcare, or financial services)
At least 1 year supporting SOX ITGC controls or similar compliance frameworks
Demonstrated experience with security policy and SOP development
Technical Skills
Strong experience with Endpoint Detection & Response (EDR) platforms
CrowdStrike Falcon highly preferred, or equivalent (Carbon Black, SentinelOne, Microsoft Defender for Endpoint)
Hands‑on experience with vulnerability management tools
Rapid7 InsightVM preferred, or equivalent (Qualys, Tenable, Nexpose)
Experience with email security platforms
Abnormal Security, Proofpoint, Mimecast, or similar
Familiarity with security awareness platforms
KnowBe4 or equivalent
Working knowledge of SIEM tools and log analysis (Splunk, Microsoft Sentinel, or similar)
Compliance & Governance
Proven experience with SOX ITGC controls, including:
User access reviews and recertifications
Logical access provisioning and deprovisioning
Change management oversight
Audit evidence collection
Understanding of GMP (Good Manufacturing Practice) requirements and regulated system controls
Experience supporting security and compliance audits
Strong documentation and evidence management skills with an audit-ready mindset
Core Competencies
Exceptional attention to detail and commitment to process adherence
Analytical and investigative thinking for threat analysis
Strong written and verbal communication skills
Ability to translate technical security concepts for non-technical stakeholders
Proven collaboration skills across IT, Finance, QA, and Compliance teams
Self-motivated with ability to manage multiple priorities in a dynamic environment
Education & Certifications
Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field
Security+ certification or equivalent
Advanced certifications such as:
CISSP or CISSP Associate
CISA (Certified Information Systems Auditor)
CySA+ (Cybersecurity Analyst)
GIAC Security Essentials (GSEC) or similar
Preferred Experience
Deep familiarity with 21 CFR Part 11 (electronic records and signatures)
Experience with additional security frameworks:
NIST Cybersecurity Framework (CSF)
NIST 800-53 controls
CIS Critical Security Controls
Prior experience supporting FDA inspections or pharmaceutical regulatory audits
Experience with SOC 2 attestation and controls
Basic scripting or automation experience (PowerShell, Python, Bash)
Experience with identity and access management (IAM) platforms
Familiarity with cloud security (Azure, AWS, or GCP)
$120,000 - $140,000 a year
#J-18808-Ljbffr
Sprachkenntnisse
- English
Dieses Stellenangebot stammt von einer Partnerplattform von TieTalent. Klick auf „Jetzt Bewerben”, um deine Bewerbung direkt auf deren Website einzureichen.