Sr. Security Analyst

Are you passionate about offering solutions that solve business, product and client needs?

Are you an InfoSec professional "geeks out" when talking about data security?

Do you enjoy staying up to date on the latest and greatest  in InfoSec leading practices?

At Paradox, we believe when you get the people thing right, you can build teams that can change the world. We’re helping organizations around the globe reimagine hiring with our first-of-its-kind recruitment technology. From our Conversational ATS to our best-in-class hiring assessments, Paradox is laser focused on building world class products and a team that our clients love. Our high-performance culture and triple-digit growth have been recognized on Deloitte’s "Fast 500" technology companies, the Inc 5000 list of fastest-growing private companies, and as a Forbes Best Startup Employers. And we’re just getting started. We are looking for top performers who have a track record of success and want to build a company and create the future together. 

As a Sr. Security Analyst, you’ll be a key player in partnering with our team and clients to communicate information and upholding the integrity of our data systems. With a passion for implementing robust security measures, you will support our team in securing our data and ensuring good security and privacy practices throughout the organization by ensuring an effective understanding of data security, data privacy laws and emerging trends in technology and AI. Additionally, you play a supporting role in responding to Requests for Proposals (RFPs) and supporting client needs, offering invaluable insights and recommendations on data security requirements, compliance standards, and risk mitigation strategies. 

Sound like your perfect fit? We want to hear from you! 

As a Sr. Security Analyst, you will be responsible for leveraging your expertise in information security, data privacy and data governance to support client needs, analyze and respond to client requests and inquiries, and help Paradox as the industry leader in information security. In this role, you will: 

• Manage a strategic and comprehensive information security program in partnership with other team members, including the VP, Privacy & Security, Chief Legal Officer and other senior stakeholders
• Act as a trusted advisor to clients, fostering confidence in our solutions and security posture through effective communication and relationship building
• Develop a deep understanding of Paradox products, system integrations into other systems and platforms and the use of those solutions by both clients and partners
• Translate complex technical concepts related to AI, LLM, NLP, information security, data privacy, and data governance into clear and concise language for both prospective and current clients.
• Acting as a technical writer, collaborate with cross-functional teams to establish formal documentation and evidence to address security, compliance and client needs across Paradox’s core products / services. 
• Manage internal and external due diligence and Requests for Proposals (RFPs) related to privacy, security, engineering, infrastructure, AI, integrations, and implementation 
• Assist the security and compliance team in establishing an integrated security model that supports the completion of annual audits, including but not limited to ISO 27001 and Soc 2 Type II 
• Oversee a selection of third party products and solutions with a focus on implementing security controls and training content of applications to streamline activities while improving efficiency 
• Research and evaluate the potential security risks associated with new projects, systems, or processes
• Conduct regular security and privacy audits and assessments to ensure compliance with industry standards and regulations
• Serve as a liaison between technical teams and non-technical stakeholders, facilitating understanding and alignment on security-related initiatives and projects.
• Stay current with industry trends, emerging threats, and regulatory requirements to ensure our solutions align with the latest standards and best practices
• Educate and train staff on data security and privacy policies, procedures, and best practices

Required Qualifications:

• 5+ years in cybersecurity roles, such as a security consultant, security analyst, security engineer, or similar
• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field or equivalent experience
• Strong understanding of information security principles, concepts, and best practices
• Proficiency in implementing and managing security technologies, such as firewalls, intrusion detection systems, encryption protocols, and vulnerability management tools
• Experience with risk assessment methodologies and security frameworks (e.g., NIST, ISO 27001/27002, CIS Controls)
• Experience in responding to Requests for Proposals (RFPs) or similar proposal development processes
• Experience and understanding of relevant technologies such as JIRA/Atlassian, Splunk, Veracode, and technical requirements of key system integrations (including SSO, calendar, video and HCM integrations)
• Knowledge of regulatory compliance requirements related to data security and privacy (e.g., GDPR)
• Excellent analytical and problem-solving skills, with the ability to identify and mitigate security risks effectively
• Strong communication and collaboration skills to work effectively with cross-functional teams and stakeholders, with proven experience working with senior stakeholders and in client engagements.
• Attention to detail and ability to prioritize tasks in a fast-paced environment
• Ability to work from our Scottsdale, AZ headquarters, preferred
• Authorization to work in the United States

Why you should work at Paradox: 

• Work side by side with passionate, purposeful people - Talent is our DNA and we pride ourselves on having the best!
• Ability to make a big impact on a growing organization and drive your own growth
• The opportunity to be part of the team building the next big thing in recruiting technology
• Internal and external professional development, coaching, and continuous education opportunities