GRC Security Analyst

We help the world Be Everyday Ready

Today's threatscape is relentless. So are we. At Cyderes, we specialize in building practical IAM, exposure management, and risk programs, and stopping active threats fast with MDR that works with your existing security tools all augmented by AI and driven by seasoned operators. Our tireless global team is laser-focused on cybersecurity, arming organizations with the people, platforms, and perspectives they need to conquer whatever tomorrow throws their way.About the Job: We're looking for a motivated GRC (Governance, Risk, and Compliance) Security Analyst to join our team. This is a great opportunity for an individual with a strong foundational understanding of cybersecurity principles who is eager to grow their career. You'll play a crucial role in ensuring the security posture of our organization by helping to manage vulnerabilities and address customer security inquiries. The ideal candidate is a proactive problem-solver with excellent communication skills who can work effectively across different teams.

Responsibilities:

• Vulnerability Remediation: Work collaboratively with IT and development teams to track, prioritize, and facilitate the remediation of identified security vulnerabilities. This includes monitoring vulnerability management platforms and generating reports to ensure timely closure of issues
• Customer Questionnaire Responses: Assist in completing customer security questionnaires and RFPs (Requests for Proposal). You'll gather necessary information from various internal teams, ensuring our responses are accurate, complete, and reflect our security practices
• Compliance & Audit Support: Help maintain and improve our compliance with various security frameworks (e.g., SOC 2, ISO 27001, NIST). You'll assist with internal and external audits by gathering evidence and documenting processes
• Policy & Procedure Maintenance: Support the GRC team in reviewing and updating security policies, standards, and procedures
• Serve as a liaison between the security team and other departments (e.g., Engineering, Sales, Legal) to ensure security requirements are integrated into business processes
  

Requirements:

• Bachelor's degree in Computer Science, Information Security, or a related field
• Familiarity with cybersecurity concepts such as vulnerability management, access control, and incident response
• Basic understanding of common security frameworks (e.g., SOC 2, ISO 27001, NIST)
• Experience with or knowledge of vulnerability scanning tools (e.g., Nessus, Qualys) is a plus
• Exceptional written and verbal communication skills
• Strong attention to detail and organizational skills
• Ability to work independently and as part of a team
• A proactive and curious mindset with a strong desire to learn
  

Cyderes is an Equal Opportunity Employer (EOE). Qualified applicants are considered for employment without regard to race, religion, color, sex, age, disability, sexual orientation, genetic information, national origin, or veteran status.
Note: This job posting is intended for direct applicants only. We request that outside recruiters do not contact us regarding this position.
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.