Security Analyst II Salt Lake , UT
Listed on 2026-07-14
-
IT/Tech
Cybersecurity, Information Security
Lucid Software is a leader in visual collaboration and work acceleration, helping teams turn ideas into reality. Our Visual Collaboration Suite (Lucidchart and Lucidspark) and airfocus empower more than 100 million users worldwide and are trusted by companies such as Google, GE, and NBC Universal.
As a Security Analyst, you will protect our corporate assets, web applications, and employees through day‑to‑day Security Assurance operations, third‑party risk assessments, customer trust initiatives, and GRC support. You will help our security team adapt quickly to evolving security, legal, and business requirements while safeguarding the company’s assets and meeting compliance obligations.
Responsibilities- Conduct third‑party vendor risk assessments and internal risk evaluations; identify, document, and report potential vulnerabilities and control gaps.
- Respond to vendor security questionnaires and assist internal teams (Sales, Customer Success, etc.) with security‑related questions from prospects.
- Track and collect evidence for ongoing SOC-2 and ISO-27001 compliance audits.
- Identify emerging threats and collaborate with senior team members to develop practical security solutions.
- Coordinate and deliver security‑awareness training programs to employees to foster a strong security culture.
- Ensure compliance with external regulations affecting the company.
- Maintain security and compliance metrics for team dashboards.
- Partner with Legal, Engineering, IT, Finance, and HR to ensure corporate security policies are understood and followed.
- Identify operational inefficiencies and design smoother workflows for existing security controls.
- Bachelor’s degree in information security assurance, business management, or a related field.
- 2‑3 years of experience with third‑party risk management, GRC, customer due diligence, etc.
- Understanding of common security frameworks and principles (e.g., NIST-800-53, ISO-27001, SOC-2).
- Strong organizational skills and ability to manage tasks independently and meet deadlines with minimal oversight.
- Excellent verbal and written communication skills; ability to translate security concepts into clear documentation.
- Strong interpersonal skills and a track record of building positive relationships with non‑technical (Legal, HR, Finance) and technical (IT, Engineering) teams to resolve security risks collaboratively.
- Prior experience in a modern SaaS or cloud‑first environment and basic familiarity with cloud application operations.
- Prior knowledge of and skill in applying risk management principles and practices.
- Certifications such as CRISC, CISSP, CISA, SSCP, Security+, CySA+, etc.
- Basic understanding of cloud environments (AWS, GCP, or Azure).
As set forth in Lucid Software’s Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.
#J-18808-Ljbffr(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).