Information Security Technical Analyst (Remote - West Coast)

Our Customer is an American financial services and digital payments company based in San Francisco, California. They’re working to help their diverse audiences — sellers, individuals, artists, fans, developers, and all the people in between — overcome barriers to access the economy.

We are seeking a highly motivated Information Security Technical Analyst on a contract basis to help support our Customer's business needs. This role is 100% remote - West Coast candidates only.

Responsibilities:

• Partner with cross-functional teams to support the execution of Information Security programs focused on risk reduction.
• Manage and maintain incoming vulnerability cases, including CVE notifications, cloud vulnerabilities, cloud misconfigurations, access control issues, web application vulnerabilities, and source code vulnerabilities.
• Conduct technical vulnerability assessments and support engineering teams with remediation guidance and patch implementation.
• Collaborate with security and product teams to prioritize and remediate vulnerabilities using risk-based methodologies.
• Research and analyze vendor advisories, zero-day vulnerabilities, bug trackers, and threat intelligence sources to assess organizational impact.
• Manage risk exception processes and support informed risk-based decision-making across business units.
• Identify opportunities to automate manual triage, case management, escalation workflows, and other operational processes.
• Collaborate with stakeholders to identify and remediate root causes of recurring vulnerabilities.
• Monitor vulnerability metrics, including backlog trends, remediation rates, and overall security posture indicators.
• Maintain and update runbooks, playbooks, and process documentation.
• Partner with the Engineering and Compliance teams to manage penetration testing results and PCI-related vulnerabilities.
• Support bug bounty programs in collaboration with third-party vendors and internal stakeholders.
• Support ongoing and periodic cybersecurity risk assessment activities using quantitative and qualitative methodologies.
• Collaborate cross-functionally to gather data required for risk analysis and provide subject matter expertise in security and risk management.
• Support risk mitigation initiatives and continuous improvement of security control programs.
• Contribute to the evolution and continuous improvement of security risk management programs.

Skills and Qualifications:

• Information Security degree is preferred.
• Minimum of 5 years of experience in Information Security, Information Technology, or related fields.
• Five or more years of experience in security, intelligence, or risk management within technology-focused environments.
• Strong understanding of cloud infrastructure, including AWS, GCP, and Azure.
• General understanding of networking and containerization technologies.
• Experience with scripting and automation workflows for security operations and risk reduction.
• Experience with multiple vulnerability scanning tools.
• Deep understanding of web application vulnerabilities, OWASP Top 10, cloud vulnerabilities, cloud misconfigurations, and source code vulnerabilities.
• Strong understanding of risk mitigation strategies, countermeasures, and compensating controls.
• Strong analytical and technical problem-solving skills.
• Ability to work independently and collaboratively in cross-functional environments.
• Strong written and verbal communication skills.
• Fundamental knowledge of information security principles, threats, vulnerabilities, and risk management.
• Experience utilizing AI agents or workflow automation tools for operational process improvements.
• Results-driven mindset with strong initiative and work ethic.

Preferred Qualifications:

• Security certifications such as CISSP, Security+, CySA+, GIAC, or equivalent.

We offer a competitive salary range for this position. Most candidates who join our team are hired at the median of this range, ensuring fair and equitable compensation based on experience and qualifications.

Contractor benefits are available through our 3rd Party Employer of Record (Available upon completion of waiting period for eligible engagements)

Benefits: Medical, Dental, and 401k (no match)

An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.