Lead Security Analyst

This person is vital in ensuring HackerRank's security and building customer trust. As the first point of contact for IT security inquiries, this role ensures customers feel confident sharing their data by providing clear, timely responses.

Responsibilities include completing security questionnaires, addressing follow-up questions, and working closely with Go-To-Market (GTM) teams to support customer and prospect security concerns. This role directly supports HackerRank's success by strengthening security and customer confidence by managing security operations, maintaining compliance, and ensuring transparent communication.

Creating a security roadmap and working with product, engineering, and IT teams to improve our security posture.

What you'll do:

Security Operations & Monitoring

• Continuously monitor security tools and logs to identify potential threats.
• Investigate alerts and coordinate with engineering or DevOps teams for incident response.

Customer-Facing Security Support

• Serve as the first point of contact for responding to security-related customer queries or tickets (e.g., data handling, compliance, vulnerabilities).
• Participate in security review calls with customers and prospects to provide reassurance about HackerRank's security posture.
• Fill out IT security questionnaires from customers in a timely and accurate manner.
• Be available to answer customer follow-ups regarding security concerns.

Policy & Compliance

• Draft and update the security policies (e.g., password management, BYOD, vendor risk assessments).
• Help maintain compliance with security standards (e.g., ISO 27001, SOC 2, GDPR) and gather necessary evidence during audits.

Vulnerability Assessment & Remediation

• Conduct or coordinate vulnerability scans and penetration testing.
• Work closely with product teams to ensure timely patching and remediation of critical vulnerabilities.

Employee Security Awareness

• Conduct training sessions and internal communications to educate staff on phishing, social engineering, and other security best practices.

Incident Response & Investigations

• Act as the first line of investigation for potential security incidents across the company.
• Escalate complex or severe security issues to the CTO/CISO as needed.

You will thrive in this role if you:

• Enjoy communicating clearly and confidently to build trust with customers and stakeholders.
• Seek opportunities to plan, automate and streamline processes for greater efficiency.
• Collaborate naturally with cross-functional teams and find energy in aligning security with business goals.
• Can strengthen security while maintaining business agility and ensuring product development stays on track.
• Have strong written and verbal communication skills, with the ability to clearly explain technical concepts to both technical and non-technical team members.

What you will also bring:

• 5+ years of experience in information security, risk management, or security operations, with a focus on customer-facing security support.
• Strong communication skills to engage confidently with customers, address security concerns, and build trust.
• Hands-on experience with security frameworks such as ISO 27001, SOC 2, GDPR, and NIST compliance.
• Proficiency in security operations including monitoring, incident response, and vulnerability management.
• Ability to balance security and business needs, ensuring protection without slowing down product development or operations.
• Experience in automation and process improvement to streamline security workflows and reduce overhead.
• Bonus: Relevant certifications (nice to have) such as CISSP, CISM, or Security+ to demonstrate industry expertise.
• Bonus: Experience in managing IT Operations,tool and procurement.

Current base salary range: ($140,000 - $160,000). The exact salary may vary based on skills, experience, location, market ranges, and other compensation offered. The salary range does not include other compensation components, commission (for sales-related roles), bonuses, or benefits for which you may be eligible. Salary may be adjusted based on business needs.