Let’s get started
By clicking ‘Next’, I agree to the Terms of Service
and Privacy Policy
Jobs / Job page
Security Analyst image - Rise Careers
Job details

Security Analyst

Who we are:

We are a leader in fraud prevention and AML compliance. Our platform uses device intelligence, behavior biometrics, machine learning, and AI to stop fraud before it happens. Today, over 300 banks, retailers, and fintechs worldwide use Sardine to stop identity fraud, payment fraud, account takeovers, and social engineering scams. We have raised $145M from world-class investors, including Andreessen Horowitz, Activant, Visa, Experian, FIS, and Google Ventures.

Our culture:

  • We have hubs in the Bay Area, NYC, Austin, and Toronto. However, we maintain a remote-first work culture. #WorkFromAnywhere

  • We hire talented, self-motivated individuals with extreme ownership and high growth orientation.

  • We value performance and not hours worked. We believe you shouldn't have to miss your family dinner, your kid's school play, friends get-together, or doctor's appointments for the sake of adhering to an arbitrary work schedule.

About the role:

Sardine is looking for a Security Analyst to join our IT and Security Team. Reporting directly to the CISCO, this role offers a unique opportunity to work across Security Operations (SOC) and Governance, Risk, and Compliance (GRC), blending hands-on threat detection with strategic risk management. You will be responsible for monitoring, analyzing, and responding to security incidents, ensuring the confidentiality, integrity, and availability of our critical systems and data. By proactively identifying vulnerabilities and implementing security controls, you will play a key role in protecting Sardine from evolving cyber threats.

In addition to security operations, you will collaborate closely with auditors, regulators, and internal teams to support compliance efforts and security reviews. Your ability to communicate effectively and build strong partnerships will be essential in reducing risk and ensuring alignment across multiple domains.

If you're passionate about both technical security operations and strategic risk management and thrive in a collaborative environment, we'd love to hear from you.

What you'll be doing

Governance, Risk, and Compliance (GRC):

  • Develop, implement, and maintain security policies, standards, and procedures in line with regulatory requirements (e.g., NIST, ISO 27001, HIPAA, PCI DSS, GDPR).

  • Conduct risk assessments to identify and mitigate threats to information assets.

  • Monitor and report on compliance, tracking the effectiveness of security controls.

  • Manage security audits, coordinate with external auditors, and address findings.

  • Maintain security documentation and ensure alignment with evolving regulations.

  • Provide security awareness training and support incident response planning.

Security Operations Center (SOC):

  • Monitor SIEM systems and security tools for threats and vulnerabilities.

  • Investigate and respond to security incidents, documenting analysis and remediation steps.

  • Perform vulnerability scanning, penetration testing, and security assessments.

  • Collaborate with IT teams to implement security controls and remediate risks.

  • Stay informed on emerging threats and contribute to threat intelligence initiatives.

  • Participate in incident response exercises and develop security reports for management.

What you'll need

  • 3+ years of experience handling security challenges in a high-growth environment

  • Strong understanding of security frameworks and standards (e.g., NIST, ISO 27001, SOC 2).

  • Knowledge of relevant regulations and compliance requirements (e.g., HIPAA, PCI DSS, GDPR).

  • Working knowledge of MacOS.

  • Familiarity with risk assessment methodologies and frameworks.

  • Experience in developing and implementing security policies, standards, and procedures.

  • Strong analytical, problem-solving, and incident response skills.

  • Excellent communication and interpersonal skills, with the ability to effectively interact with technical and non-technical stakeholders.  

The compensation offered for this role will depend on various factors, including the candidate's location, qualifications, work history, and interview performance, and may differ from the stated range.

Benefits we offer:

  • Generous compensation in cash and equity

  • Early exercise for all options, including pre-vested

  • Work from anywhere: Remote-first Culture

  • Flexible paid time off, Year-end break, Self care days off

  • Health insurance, dental, and vision coverage for employees and dependents - US and Canada specific

  • 4% matching in 401k / RRSP - US and Canada specific

  • MacBook Pro delivered to your door

  • One-time stipend to set up a home office — desk, chair, screen, etc.

  • Monthly meal stipend

  • Monthly social meet-up stipend

  • Annual health and wellness stipend

  • Annual Learning stipend

  • Unlimited access to an expert financial advisory

Join a fast-growing company with world-class professionals from around the world. If you are seeking a meaningful career, you found the right place, and we would love to hear from you.

Sardine Glassdoor Company Review
4.5 Glassdoor star iconGlassdoor star iconGlassdoor star iconGlassdoor star icon Glassdoor star icon
Sardine DE&I Review
No rating Glassdoor star iconGlassdoor star iconGlassdoor star iconGlassdoor star iconGlassdoor star icon
CEO of Sardine
Sardine CEO photo
Soups Ranjan
Approve of CEO

Average salary estimate

$90000 / YEARLY (est.)
min
max
$60000K
$120000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Security Analyst, Sardine

Sardine is on the lookout for a talented Security Analyst to join our innovative IT and Security Team. In this role, you'll be reporting directly to the CISCO, working at the forefront of Security Operations and Governance, Risk, and Compliance. Picture yourself monitoring and analyzing security incidents while ensuring that our critical systems and data remain secure. With a strong emphasis on hands-on threat detection and strategic risk management, your expertise will be indispensable in identifying vulnerabilities and implementing effective security controls. As a leading company in fraud prevention and AML compliance, Sardine collaborates with over 300 global banks, retailers, and fintechs to combat fraud effectively. We're proud of our remote-first culture that supports work-life balance, allowing you to enjoy family dinners or friend get-togethers without compromising your work responsibilities. If you possess a strong understanding of security frameworks, a knack for communication, and a proactive mentality, you could be the perfect fit for this role. You'll be responsible for maintaining top-notch security policies while engaging with auditors and regulators to bolster compliance efforts. If you're passionate about a meaningful career and ready to work alongside world-class professionals, Sardine is the place for you. Come join us and help shape the future of security in the digital landscape!

Frequently Asked Questions (FAQs) for Security Analyst Role at Sardine
What are the key responsibilities of the Security Analyst at Sardine?

As a Security Analyst at Sardine, your main responsibilities will include monitoring and analyzing security incidents, managing security audits, conducting risk assessments, and implementing security policies that comply with regulatory standards. You'll be working closely with internal teams, auditors, and regulators to ensure that security protocols align with best practices and evolving regulations, all while protecting our systems and data from potential threats.

Join Rise to see the full answer
What qualifications are needed to apply for the Security Analyst position at Sardine?

To apply for the Security Analyst position at Sardine, candidates should have at least 3 years of experience tackling security challenges, a solid grasp of security frameworks like NIST and ISO 27001, and knowledge of regulations such as HIPAA and PCI DSS. Additionally, strong analytical skills, familiarity with risk assessment methodologies, and excellent communication abilities are essential for effectively interacting with both technical and non-technical stakeholders.

Join Rise to see the full answer
How does the Security Analyst role at Sardine support risk management?

The Security Analyst at Sardine plays a crucial role in risk management by developing and maintaining security policies and conducting thorough risk assessments to identify vulnerabilities in information assets. You will also monitor compliance and effectiveness of security controls, ensuring that the organization mitigates potential risks while aligning with regulatory requirements.

Join Rise to see the full answer
What tools will the Security Analyst at Sardine be using?

In your role as a Security Analyst at Sardine, you will primarily utilize SIEM systems, security tools for monitoring threats, and conduct activities like vulnerability scanning and penetration testing. Having a working knowledge of MacOS will also benefit your operations in maintaining security integrity across various platforms.

Join Rise to see the full answer
What is the work culture like for a Security Analyst at Sardine?

Sardine promotes a remote-first culture, enabling a flexible work environment where talented individuals can work from anywhere. The company values performance over hours worked, providing employees with generous benefits, including flexible paid time off, health coverage, and professional development opportunities, making it an ideal place for a Security Analyst to thrive.

Join Rise to see the full answer
Common Interview Questions for Security Analyst
Can you describe your experience with security frameworks relevant to the Security Analyst position?

When discussing your experience with security frameworks during the interview, mention specific frameworks like NIST, ISO 27001, and SOC 2 that you've worked with. Explain how you have implemented these frameworks in past roles and how they influenced your approach to developing security policies and risk assessments.

Join Rise to see the full answer
How do you handle security incidents when they arise?

To effectively handle security incidents, outline a structured approach involving initial detection, analysis, containment, and remediation. Provide examples of past incidents you managed, demonstrating your analytical and problem-solving skills while emphasizing the importance of documentation throughout the incident response process.

Join Rise to see the full answer
What techniques do you use for vulnerability scanning and assessment?

Discuss the tools and methods you have used for vulnerability scanning, such as automated tools or manual assessments. Highlight your understanding of best practices, as well as any relevant methodologies like OWASP, that you followed to ensure thorough assessments of the organization's security posture.

Join Rise to see the full answer
How do you prioritize compliance requirements within your security strategy?

In your answer, talk about the importance of understanding relevant regulatory requirements, like GDPR or HIPAA, and how you assess which ones may pose the highest risk if not addressed. Mention techniques you've used to integrate compliance requirements into your security strategy and how it aligns with protecting the organization's assets.

Join Rise to see the full answer
Can you explain a time when you successfully improved a security process?

Provide a specific example where you identified a security gap or inefficiency in a process. Describe the steps you took to improve it, including collaboration with other teams, implementation of new tools or policies, and the positive outcome that resulted from your actions.

Join Rise to see the full answer
What importance do you place on communication in the Security Analyst role?

Emphasize the critical role of communication in facilitating collaboration between technical and non-technical stakeholders. Share how you ensure that all relevant parties understand security risks and compliance requirements, and explain how effective communication contributes to reducing overall risk.

Join Rise to see the full answer
How do you stay updated on emerging cyber threats?

Highlight your methods for staying updated, such as following cybersecurity blogs, participating in professional organizations, or attending industry conferences. Mention any specific resources or networks that help you stay informed about the latest trends and threats in cybersecurity.

Join Rise to see the full answer
What tools and technologies do you recommend for threat detection?

Discuss a variety of tools commonly used for threat detection, like SIEM systems, intrusion detection systems (IDS), and endpoint protection platforms. Explain your criteria for selecting appropriate tools based on organizational needs and the importance of regularly evaluating and updating these technologies.

Join Rise to see the full answer
How would you approach training staff on security awareness?

Describe your approach to developing a security awareness training program by integrating real-life examples, keeping the training interactive, and scheduling regular refresher courses. Emphasize the importance of fostering a security-conscious culture within the organization to mitigate risks effectively.

Join Rise to see the full answer
What challenges do you foresee in the Security Analyst role at Sardine?

Answer by reflecting on the dynamic nature of cybersecurity threats and the potential difficulties of keeping pace with regulatory changes. Share your strategies for overcoming these challenges, such as continuous learning, seeking feedback, and collaborating across teams.

Join Rise to see the full answer
Similar Jobs
Photo of the Rise User
Sardine Remote No location specified
Posted 3 days ago
Photo of the Rise User
Posted 14 hours ago
Photo of the Rise User
Posted 3 days ago
Photo of the Rise User
Posted 9 days ago
Photo of the Rise User
Posted 6 days ago
Kasada Remote No location specified
Posted 12 days ago
Photo of the Rise User
Brillio Hybrid Saint Louis, Missouri, United States
Posted 2 days ago

Customers hate waiting for their money. At the same time, billions of dollars are lost to fraud every year. Our team helped scale Coinbase, led the launch of Revolut US, and fought fraud at PayPal, Zelle, Uber, and Bolt. We started Sardine to re...

41 jobs
MATCH
Calculating your matching score...
FUNDING
SENIORITY LEVEL REQUIREMENT
TEAM SIZE
EMPLOYMENT TYPE
Full-time, remote
DATE POSTED
March 15, 2025

Subscribe to Rise newsletter

Risa star 🔮 Hi, I'm Risa! Your AI
Career Copilot
Want to see a list of jobs tailored to
you, just ask me below!
LATEST ACTIVITY
A
Someone from OH, Lewis Center just viewed 34505367634 - Fraud Analyst at Activate Talent
Photo of the Rise User
Someone from OH, Dublin just viewed Senior Third-Party Risk Analyst at Fenergo
Photo of the Rise User
Someone from OH, Columbus just viewed US Product Designer at Praxent
Photo of the Rise User
Someone from OH, Cleveland just viewed Accounting Co-Op (Part-Time) at Avery Dennison
Photo of the Rise User
Someone from OH, North Ridgeville just viewed Product Manager at ShiftCare
Photo of the Rise User
Someone from OH, North Ridgeville just viewed Product Operations at Binance
Photo of the Rise User
Someone from OH, Mentor just viewed Sales & Service Lead - Pinecrest at Alo Yoga