Security Analyst

Who we are...

Connecting people in a more meaningful way is not just what BombBomb’s software delivers — it’s what drives our teams every day. Through simple, personal video, we aim to rehumanize communication. Our team is resourceful and intelligent. Competitive and collaborative. Fun-loving and tenacious. We’re close-knit and love adding new talent to the mix. If you are seeking a dynamic workplace and new challenges, we want to hear from you!

Work Location:

You must live in one of the following US States to be considered for this position: Colorado, Florida, Georgia, Maine, Maryland, Missouri, Texas, Utah, Virginia, or Wisconsin.

Who we're looking for...

As a Security Analyst, you will ensure the secure operation of the in-house computer systems, servers, and network connections in accordance with our internal processes, procedures, and compliance requirements. The tasks also include conducting regularly scheduled audits on internal systems and hosting third-party audits as required in order to maintain certifications and compliance certificates. The other main focus areas will be deploying, managing, and maintaining security audit systems and their corresponding or associated software.

You will develop, implement, maintain, and oversee enforcement of internal security policies and procedures. You also plan and implement system security administration and user system access based on industry-standard best practices and compliance requirements.

The Security Analyst is a critical role at BombBomb, as you are a leader in designing, assessing, and improving BombBomb’s security posture. As for compliance, you are expected to speak with customers as a security representative of BombBomb regarding the customer’s due diligence process during sales calls. You will also participate in the completion of due diligence questionnaires.

Arguably your most important role is to ensure all systems and processes are aligned with BombBomb’s current SOC2 Type 2 compliance requirements - you will operate as the point-of-contact during the annual SOC2 audit.

What you will do...

• Delivery of and reporting on the status of all IT audit recommendations
• Perform customer third-party due diligence reviews
• Read contractual documents and agreements
• Provide organizational guidance during SOC2 Type 2 auditing
• Maintain BombBomb’s security and compliance strategy
• Assist with the development of control frameworks to meet business and regulatory requirements
• Assist in developing security and compliance strategy
• Provide technical security consulting support to address complex business and technology projects and requests.
• Contribute to strategic planning to evaluate, deploy or update security technologies.
• Analyze and implement security solutions to meet customer requirements.
• Conduct risk assessments to evaluate the effectiveness of existing controls and determine the impact of proposed changes to business processes, applications and systems.
• Promote cross-department collaboration and communication to ensure appropriate processes, procedures and tools are installed, monitored, and effectively operating and alerting
• Assist sales as security liaison with potential clients
• Maintain technical documentation

How you'll do it...

Embody BombBomb’s core values: Relationships, Fun, Humility, Flexibility and Service

Our ideal candidate will be or have...

• 3-5 yrs experience in a security and / or compliance role. 
• Degrees in CS or Information Systems preferred, or equivalent experience
• Security experience within a large AWS environment
• Experience with Splunk is a plus
• Immaculate attention to detail
• Strong interpersonal skills
• Impeccable organizational skills
• One or more of the following or similar certifications: CISSP, CISA, CISM, CompTIA Security+, CEH, GSEC, SSCP, CASP+
• Your unique strengths - if you don't match everything we're looking for, tell us why you'd be a great fit in your cover letter. 

Compensation:

The salary range for this position is $75,000 - $100,000 annually. Final compensation for this role is determined by a variety of factors, such as a candidate's relevant work experience, skills, certifications, and geographic location.

BombBomb Benefits Package Includes...

• Excellent Medical, Dental and Vision Benefits for you and your family
• Flexible Paid Time Off program
• 9 paid holidays
• 401k Plan with employer match
• Mental Health Days - First Friday of every month off
• Monthly Internet stipend
• New Hire Home Office set-up bonus
• Annual Education / Development for your career growth

BombBomb's success in rehumanizing the planet depends on our ability to foster a diverse, equitable, and inclusive work environment. We are committed to attracting, retaining, and growing a diverse workforce where people from all backgrounds can feel empowered to bring their whole selves to work, and contribute their best work. We never discriminate on the basis of race, religion, national origin, gender identity or expression, sexual orientation, age, marital status, veteran, and disability status. BombBomb is an equal opportunity employer that welcomes everyone to our team.