Digital Science logo
Digital Science

Advancing the research ecosystem. Together, we make open, collaborative and inclusive research possible.

Senior Security Analyst

Security AnalystSecurity AnalystFull TimeRemoteSeniorTeam 501-1,000Since 2015H1B SponsorCompany SiteLinkedIn

Location

United Kingdom

Posted

3 days ago

Salary

0

Seniority

Senior

Job Description

Senior Security Analyst

Digital Science

• Partner as a trusted senior security advisor with engineering and product teams to embed secure-by-design principles early in the software development lifecycle. • Lead Cloud Security Assessments and design robust technical security controls to proactively identify, prioritize, and remediate architectural vulnerabilities. • Review and challenge proposed technology solutions and architectural designs, offering authoritative guidance to continuously raise the security maturity of our infrastructure teams. • Champion secure AI adoption by evaluating the data and security risks of emerging AI tools and workflows, ensuring they are deployed responsibly across the organization. • Drive incident response and vulnerability management initiatives, coordinating containment, eradication, and recovery efforts to safeguard business continuity. • Interrogate security data from across our global environment to surface trends, identify systemic weaknesses, and flag emerging threats before they materialize into incidents. • Optimize and manage core security technologies—including GRC reporting and threat detection platforms—to turn external threat intelligence into actionable defense strategies. • Own and deliver key strategic TechSec workstreams from initiation to completion, ensuring strong governance and transparent stakeholder communication throughout the project lifecycle.

Job Requirements

  • Proven experience in an information security role, ideally within a regulated environment.
  • Practical experience with enterprise security tools and technologies (e.g. GRC workflow automation, endpoint protection, data loss prevention, identity and access management, security monitoring and threat detection solutions).
  • Ability to interpret outputs from security tools and use them to inform risk decisions and remediation activities.
  • Strong analytical skills with the ability to interpret data and support decision-making.
  • Awareness of recent developments in AI which have impacted information and cyber security.
  • Familiarity with known frameworks such as MITRE ATT&CK, OWASP, ISO 27001, NIST and CIS Benchmarks.

Benefits

  • We invest in, nurture and support innovative businesses and technologies that make all parts of the research process more open, efficient and effective.
  • The talent we secure is fundamental to us achieving our vision and our growth plans.
  • The values we live by are:
  • We are brave in the pursuit of better
  • We are collaborative and inclusive
  • We are always open-minded
  • We are from and for the community
  • As an equal opportunity employer, we are committed to building and nurturing a workplace where every individual feels valued and belongs.
  • All applicants will be considered for employment without attention to race, colour, religion, age, sex, sexual orientation, gender identity, national origin, veteran, or disability status.
  • We strive to cultivate an environment where inclusivity is woven into the fabric of our culture, enabling everyone to be their best self and do their best work.

Related Job Pages

More Security Analyst Jobs

American Technology Services logo

Associate Cybersecurity Analyst

American Technology Services

Innovative Solutions for Today's IT Challenges

Full TimeRemoteTeam 501-1,000Since 1994H1B Sponsor

• Continuously monitor security alerts from various security tools (SIEM, IDS/IPS, firewalls, etc.) to identify potential threats • Perform routine analysis of logs and network traffic to detect suspicious activities and potential security breaches • Escalate critical incidents to senior SOC analysts or other relevant teams as per the established protocols • Document security incidents, including the steps taken to resolve them, and maintain accurate records for audit and reporting purposes • Participate in ongoing training and development opportunities to enhance your cybersecurity knowledge and skills

United States
Full TimeRemoteTeam 1,001-5,000Since 1983H1B No Sponsor

• Monitor security events and alerts using security and monitoring tools • Assist in identifying, analyzing, and handling information security incidents • Conduct vulnerability scans and follow up on remediation plans • Assist in access management, user profiles, and permissions • Support the implementation and maintenance of security policies, standards, and procedures

Brazil
Full TimeRemoteTeam 1,001-5,000Since 1983H1B No Sponsor

• Monitorizar eventos e alertas de segurança através de ferramentas de segurança • Apoiar na identificação, análise e tratamento de incidentes de segurança • Realizar verificações de vulnerabilidades e acompanhar planos de correção • Auxiliar na gestão de acessos, perfis e permissões de utilizadores • Apoiar a implementação e manutenção de políticas de segurança

Brazil
Vercel logo

GRC Analyst

Vercel

Vercel offers an industry-leading cloud technology platform used by developers and designers to make the web faster and more personalized. In past hiring, the c

Full TimeRemoteSince 2015

About Vercel:Vercel is the agentic infrastructure company. We free people and agents to ship what’s next. For more than a decade, Vercel has shaped how the web is built. As the team behind Next.js, v0, and AI SDK, we create products that help builders move from idea to production with speed, security, and exceptional developer experience. Now, software is entering a new era, and the next generation of products will not just be used by people. They will be built, extended, and operated by agents. We are building the platform for that future, trusted by companies like OpenAI, PayPal, Ramp, Supreme, and millions of developers worldwide. Whether you’re building our products, supporting our customers, growing our community, or shaping our story, you’ll help define what comes next. About the role:We are looking for a GRC Analyst to join our Governance, Risk & Compliance (GRC) team. You will have the opportunity to manage and maintain ongoing compliance with security and privacy frameworks, policies, procedures, and commercial assessments, including ISO 27001, SOC 2, HIPAA, PCI DSS, and more. Your role will be instrumental in ensuring that our company operates ethically, responsibly, and in accordance with regulatory requirements. You will collaborate with cross-functional teams to promote a culture of accountability and integrity throughout the organization and foster an environment where everyone understands the importance of adhering to established guidelines and ethical practices. You will report to the Head of GRC and will be located ((remote, onsite, hybrid)). Think you may not have all the skills and are hesitant to apply? There is no “perfect” candidate and encourage you to apply if you think that you can bring value to our team and are passionate and committed to upholding the highest standards of compliance and ethics. If you’re based within a pre-determined commuting distance of one of our offices (SF, NY, London, or Berlin), the role includes in-office anchor days on Monday, Tuesday, and Friday, even if the role is listed as remote. For location-specific details, please connect with our recruiting team. What you will do: - Collaborate with internal teams to maintain an effective suite of internal controls and driving remediation efforts to completion with clear documentation of progress. - Build strong working relationships across the business so compliance accountability is shared and stakeholders are informed. - Streamline annual audits by managing audit deliverables, developing treatment plans, and coordinating across teams to document and track completion to ensure audit success. - Monitor and improve controls, processes, and evidence management practices, identify opportunities to automate and streamline GRC operations, and contribute to controls maturity scoring and reporting - Enable go-to-market teams and accelerate deal cycles by supporting security questionnaires, addressing compliance inquiries, and maintaining clear, customer-facing documentation on Vercel’s security and compliance posture. - Design and manage company training and enhance visibility on compliance-specific topics for internal stakeholders to ensure an understanding of compliance, ethics, and regulatory requirements within the organization. About you: - At least 3 years of relevant experience in supporting the audit lifecycle in a cloud-centric environment (SOC 2, ISO 27001, PCI, HIPAA, etc.), with strong organizational skills to be flexible and proactive in a high-growth, start-up environment. - Experience collaborating closely with internal partners to seamlessly incorporate policies and technical controls into the SDLC. - Strong project management skills and sense of ownership with the ability to communicate and collaborate effectively, and execute projects across various business units and levels. Bonus if you have : - Strong experience with cloud infrastructure (e.g., Azure, AWS) - Familiarity with compliance or software development tools and systems (e.g., Drata, Linear, Datadog, etc.) - Experience with frontend development and open source components - Relevant industry certifications (i.e., CISM, CISSP, CCEP) is a plus, but not required Benefits: - Competitive compensation package, including equity. - Inclusive Healthcare Package. - Learn and Grow - we provide mentorship and send you to events that help you build your network and skills. - Flexible Time Off. - We will provide you the gear you need to do your role, and a WFH budget for you to outfit your space as needed. The San Francisco, CA base pay range for this role is $134,000-$202,000. Actual salary will be based on job-related skills, experience, and location. Compensation outside of San Francisco may be adjusted based on employee location. The total compensation package may include benefits, equity-based compensation, and eligibility for a company bonus or variable pay program depending on the role. Your recruiter can share more details during the hiring process.

United States
$134K - $202K / year