Skip to content
LaunchdarklyLaunchdarklySan Francisco, CA

Security Analyst - Governance, Risk, and Compliance

The Security Analyst III will define, implement, and operate security and privacy programs, driving initiatives to assess and reduce security risks and maintain compliance with frameworks like ISO 27001, SOC 2 Type II, and FedRAMP.

116k – 188k/yr
RemoteSecurity Engineering

About the role

Responsibilities:

  • Collaborate with stakeholders to design and operate security controls that comprise the LaunchDarkly GRC program
  • Use technology to automate compliance activities like gathering evidence and verifying controls
  • Operationalize the health and maturity of the program by tracking metrics based on quantitative and qualitative data
  • Drive progress towards results for GRC-related continuous improvement projects
  • Contribute to documentation for security standards, policies, and processes
  • Support audits and assessments with internal and external stakeholders
  • Work with product and infrastructure delivery teams on engineering projects related to GRC requirements

Qualifications:

  • Deep cybersecurity, privacy, and risk management knowledge and skill
  • Excellent communication skills - written and verbal
  • Experience working on collaborative projects
  • Depth with modern cloud-based SaaS organizations - specifically AWS control environments
  • Information security experience at an organization with significant compliance requirements
  • Strong familiarity with security standards (SOC 2, ISO 27001, ISO 27701, FedRAMP) as well as privacy laws (CCPA and GDPR)
  • Familiarity with LaunchDarkly’s collaboration tools like Confluence, Slack, and Github

Nice to have

  • Considerable knowledge of software development and architecture
  • CCSP, PCI QSA, CISSP, or CISA / CISM certifications

Pay:

Target pay ranges based on Geographic Zones* for Level 3:

Zone 1: San Francisco/Bay Area or NYC Metropolitan Area: $136,500 - 187,660** Zone 2: Boston, DC, Irvine, LA, Monterey, Santa Barbara, Santa Rosa, Seattle: $122,800 - 168,850** Zone 3: All other US locations: $116,000 - 159,500**

LaunchDarkly operates from a place of high trust and transparency; we are happy to state the pay range for our open roles to best align with your needs. Exact compensation may vary based on skills, experience, and location. *Within the United States, our geographic pay zones are defined by counties surrounding major metropolitan areas.**Restricted Stock Units (RSUs), health, vision, and dental insurance, and mental health benefits in addition to salary.

Skills

CybersecurityRisk ManagementAWSSOC 2ISO 27001Iso 27701FedRAMPCCPAGDPRConfluenceSlackGitHub
Twenty

IT Security Engineer

TwentyArlington, VA

IT Security Engineer responsible for designing, implementing, and maintaining enterprise security infrastructure including firewalls, SIEM monitoring, vulnerability management, IAM, and compliance. Requires 5+ years IT security experience, strong networking and cloud knowledge.

116k – 195k/yr
On-site5+ YOESecurity Engineering
Metropolis

Security Engineer II

MetropolisNew York, NY

Security Engineer II responsible for monitoring and responding to security alerts, administering enterprise security tools, supporting vulnerability and IAM programs, and securing cloud environments. Requires 3+ years in cybersecurity or related fields and scripting experience.

115k – 160k/yr
On-site3+ YOESecurity Engineering
Applied Intuition

System Safety Engineer, Autonomy Trucking

Applied IntuitionSunnyvale, CA

Defines and manages safety architecture, requirements, and analysis (FMEA, FTA, STPA) for L4 autonomous trucking software/hardware. Requires 3+ years system safety experience, automotive standards expertise (ISO 26262), and engineering background in ADAS/autonomy.

118k – 250k/yr
On-site3+ YOESecurity Engineering
Writer

Security engineer, application security

WriterNew York, NY +1

Builds security into AI platform through threat modeling, SAST/DAST in CI/CD, code reviews, and secure architecture design. Requires 4+ years app sec experience, programming in Python/Java/Go/JS, and DevSecOps tools expertise.

119k – 210k/yr
Hybrid4+ YOESecurity Engineering
Mintlify

Security & Compliance Operations Manager

MintlifySan Francisco, CA

Own and run Mintlify's end-to-end security and compliance programs (SOC 2, ISO 27001/42001, GDPR, Microsoft SSPA) as the first dedicated GRC Program Manager. Administer Drata, manage audits/vendors/evidence, handle customer-facing compliance, and coordinate with engineering.

120k – 180k/yr
On-site3+ YOESecurity Engineering