Join our team

Back
Share

Security Analyst

Burlingame, California · Technology · Full-time
Apply now
About Lyra Health
Lyra is transforming mental health care through technology with a human touch to help people feel emotionally healthy at work and at home. We work with industry leaders, such as Morgan Stanley, Uber, Amgen, and other Fortune 500 companies, to improve access to effective, high-quality mental health care for their employees and their families. With our innovative digital care platform and elite provider network, 2.5 million people can receive the best care and feel better, faster. Founded by David Ebersman, former CFO of Facebook and Genentech, Lyra has raised more than $680 million.

Protecting our users’ privacy and securing our data is critical to us at Lyra Health. Your role will be focused on working within our security program to support our compliance with laws and regulations. This role will primarily involve providing answers to customer security reviews, access request reviews, and security training and communication. You will assist in external audits, as well as internal education and awareness campaigns. This role is based in Burlingame, CA and reports to the Director of Security.

This role can be based in our Burlingame, CA headquarters, or fully remote.

Responsibilities

  • Participate in security reviews, threat modeling, and mitigation of application software, cloud infrastructure and corporate information.
  • Self-organize, work cross-functionally with legal, product, engineering, data, clinical, and business teams to discover security gaps and bugs, and ensure remediation and mitigation.
  • Act as an SME in multiple information security areas (e.g. secure SDLC, security operations, application security, detection and response etc.).
  • Advance the security minded culture. Maintain and enrich general, role-based, and company wide training programs for Lyrians to grow, expand, and reinforce their security skills.
  • Participate in 3rd party audits
  • Be a contact point for security, privacy / data protection and data governance policies  across the organization.

Qualifications

  • 6+ years of relevant professional experience working within an organization in the areas of security, privacy, data protection and/or data governance.
  • Strong experience and familiarity with engaging auditors directly.
  • Excellent, effective communication skills (both written and oral)
  • Bachelor’s degree in a related field, or equivalent experience with relevant industry certification (CISSP, Sec+, GSEC)
  • Practical knowledge in relevant technology areas : networking, servers, virtualization, cloud, storage, IaaS, docker
  • Exposure and familiarity with data security fundamentals such as network security design and architecture, endpoint protection, SSO, patch-management, vulnerability management, penetration testing, intrusion detection, risk management, data loss prevention, forensics.
  • Understanding and experience with any of the key security systems such as firewalls, Identity and Access Management (IAM), Intrusion Detection Systems (IDS), Web Application Firewall (WAF), Security Information and Event Management (SIEM)
  •  Experience working with Amazon Web Services and cloud security concepts is a plus.

We are an Equal Opportunity Employer. We do not discriminate on the basis of race, religion, color, sex, age, national origin or disability.

Apply now