Lucid Software Inc

Security Analyst II

Lucid Software Inc$75K — $95K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in information security assurance, business management, or related field
  • 2-3 years of experience in third-party risk management, GRC, and customer due diligence
  • Knowledge of security frameworks (NIST 800-53, ISO 27001, SOC 2)
  • Strong organizational skills for independent task management
  • Excellent verbal and written communication skills

Responsibilities

  • Conduct third-party vendor risk assessments and internal evaluations to identify vulnerabilities
  • Respond to security questionnaires and assist internal teams with related inquiries
  • Assist in evidence collection for SOC 2 and ISO 27001 compliance audits
  • Identify emerging threats and collaborate on security solutions
  • Coordinate and deliver security awareness training for employees
  • Ensure compliance with external regulations impacting the company
  • Maintain security and compliance metrics for team dashboards

Benefits

  • Collaborative work culture that bridges business and development
  • Opportunities for professional growth in security assurance
  • Exposure to cutting-edge security practices and frameworks
  • Access to various training resources for skill enhancement
  • A chance to make a significant impact by improving security posture
Full Job Description
As a Security Analyst at Lucid Software, you will protect our corporate assets,world-class web applications, and employees. You will focus on the execution of day-today Security Assurance operations, third-party risk assessments, customer trust, and support GRC (Governance, Risk, and Compliance) operations. Lucid Software's security team fosters an environment where business and development can quickly adapt and innovate. We stay abreast of evolving security, legal, and business requirements through a risk and compliance mindset. Our mission is to protect and support the objectives of the business.

Responsibilities:
  • Conduct third-party vendor risk assessments and internal risk evaluations; identify, document, and report on potential vulnerabilities and control gaps.
  • Respond directly to standard vendor security questionnaires and support internal teams (i.e. Sales, Customer Success, etc.) in answering security-related questions from prospects.
  • Assist in tracking and collecting evidence for ongoing SOC 2 and ISO 27001 compliance audits.
  • Proactively identify emerging threats and associated risks to existing business processes and corporate assets, and collaborate with senior team members to develop practical security solutions.
  • Coordinate and deliver security awareness training programs to employees to foster a strong security culture.
  • Assure compliance to outside regulations affecting the Company
  • Collect and maintain impactful security and compliance metrics for team dashboards.
  • Partner with Legal, Engineering, IT, Finance, and HR to ensure corporate security policies are understood and followed.
  • Identify operational inefficiencies and areas for improvement in our existing security controls, and help design smoother workflows.

Requirements:
  • Bachelor's degree in information security assurance, business management, or a related field
  • 2-3 years of experience with third party risk management, GRC, customer due diligence, etc.
  • Understanding of common security frameworks and principles (e.g. NIST 800-53, ISO 27001, SOC 2, etc). Strong organizational skills with the ability to manage tasks independently and meet deadlines with minimal oversight on daily routines.
  • Excellent verbal and written skills; comfortable translating security concepts into clear documentation.
  • Strong interpersonal skills with a track record of building positive relationships across non-technical teams (like Legal, HR, Finance) and technical teams (like IT and Engineering) to resolve security risks collaboratively.

Preferred Qualifications:
  • Prior experience working within a modern SaaS environment or cloud-first technology company, with a basic familiarity of how cloud applications operate.
  • Prior knowledge of and skill in applying risk management principles and practices
  • One or more preferred Certification(s): CRISC, CISSP, CISA, SSCP, CC, Security+, CySA+, etc.
  • Basic understanding of cloud environments (AWS, GCP, or Azure).

#LI-DA1

About Lucid Software Inc

Lucid Software is a visual collaboration suite that helps teams see and build the future. Its products, Lucidchart and Lucidspark, provide users with an end-to-end experience that helps teams ideate, collaborate, and iterate faster than ever before. Lucidchart is a visual workspace that combines diagramming, data visualization, and collaboration to accelerate understanding and drive innovation. Lucidspark is a virtual whiteboard application designed to help teams collaborate in real-time. Lucid Software serves more than 30 million users across 180 countries and has been recognized as one of the most innovative companies in the world by Gartner and Fast Company.
Learn more about Lucid Software Inc
Size
1,000 employees
Industry
Founded
2010

Similar Jobs

More Jobs at Lucid Software Inc

More Information Technology Jobs

Find similar Security Analyst II jobs: