Lead Security Analyst

Position Overview

Software powers the world, and LaunchDarkly empowers all teams to deliver and control the best software. We serve trillions of feature flags daily to help teams ship better software faster and eliminate risk for companies big and small. We're based in downtown Oakland and growing quickly.

We're looking to hire a Lead Security Analyst to join the Governance, Risk Management, and Compliance (GRC) function of our security team and help us secure our company and product. This role will report to the Director of Security and participate in initiatives to reduce security risk and achieve compliance with frameworks including ISO 27001, SOC 2, and FedRAMP.

Responsibilities

• Collaborate with stakeholders to design and operate security controls that comprise the LaunchDarkly GRC program.
• Use technology to automate compliance activities like gathering evidence and verifying controls.
• Operationalize the health and maturity of the program by tracking metrics based on quantitative and qualitative data.
• Drive progress towards results for GRC-related continuous improvement projects.
• Contribute to documentation for security standards, policies, and processes.
• Support audits and assessments with internal and external stakeholders.
• Work with product and infrastructure delivery teams on engineering projects related to GRC requirements.

Qualifications

• Deep cybersecurity, privacy, and risk management knowledge and skill.
• Excellent communication skills - written and verbal.
• Experience working on collaborative projects.
• Depth with modern cloud-based SaaS organizations, specifically AWS control environments.
• Considerable knowledge of software development and architecture.
• Information security experience at an organization with significant compliance requirements.
• Strong familiarity with security standards (SOC 2, ISO 27001, ISO 27001, FedRAMP) as well as privacy laws (CCPA and GDPR).
• CCSP, PCI QSA, CISSP, or CISA / CISM certifications.
• Familiarity with LaunchDarkly’s collaboration tools like Confluence, Slack, and Github.

Pay

Target pay ranges based on Geographic Zones* for Level 4:

• Zone 1: San Francisco/Bay Area or NYC Metropolitan Area: $149,000 - $204,000**
• Zone 2: Boston, DC, Irvine, LA, Monterey, Santa Barbara, Santa Rosa, Seattle: $134,000 - $184,000**
• Zone 3: All other US locations: $126,000 - $174,000**

LaunchDarkly operates from a place of high trust and transparency; we are happy to state the pay range for our open roles to best align with your needs. Exact compensation may vary based on skills, experience, and location.

*Within the United States, our geographic pay zones are defined by counties surrounding major metropolitan areas. **Restricted Stock Units (RSUs), health, vision, and dental insurance, and mental health benefits in addition to salary.

About LaunchDarkly

Modern software delivery was supposed to be the foundation for a thriving digital business, but reality has proven otherwise. Slow, inefficient development cycles, costly outages, and fragmented customer experiences are preventing developers from building their best software. The LaunchDarkly platform helps developers innovate on new features faster while protecting them with a safety valve to instantly rewind when things go wrong. Developers can target product experiences to any customer segment and maximize the business impact of every feature. And by gradually rolling out new application components, they escape nightmare "big-bang" technology migrations.

The LaunchDarkly platform was built to guide engineers to the next frontier of DevOps by:

• Improving the velocity and stability of software releases, without the fear of end-customer outages.
• Delivering targeted experiences by easily personalizing features to customer cohorts.
• Maximizing the business impact of every feature through the ability to experiment and optimize.
• Coordinating the release and optimization of software to provide consistent experiences across mobile platforms.