Overview
Medallia is the pioneer and market leader in Experience Management. Our award-winning SaaS platform, Medallia Experience Cloud, leads the market in the understanding and management of experience for candidates, customers, employees, patients, citizens and residents.
We are more than a software company. We want to be known as a company that does the right thing, no matter the challenge or controversy. We are committed to creating a culture that values every person and every experience. Individual life experiences shape the way we interact with the world, which is why we encourage people to bring their whole selves to work each day. The strength of our global workforce is the most significant contributor to our success.
We believe: Every Experience Matters. Talent is Everywhere. All Belong Here.
At Medallia, we hire the whole person.
The Role and Team
As a CSA Analyst, you will play a pivotal role in shaping a career in information security, focusing on cloud provider risk management and compliance. This position will significantly influence our sales and retention strategies by providing expert support for security and compliance due diligence requests. You'll have ample opportunities for professional growth in a dynamic environment.
Responsibilities
The CSA team is dedicated to building trust and confidence in Medallia’s data security, privacy, and compliance through customer engagement and internal support. As a member of this team, you will:
- Manage incoming security requests, including RFPs, questionnaires, customer audits, and client-driven penetration tests.
- Participate in customer meetings to explain Medallia's data privacy, data residency, architecture, and security practices to external stakeholders.
- Develop and maintain security-related documentation, communications, and marketing content for all Medallia products, while also managing the company’s online trust profile.
- Work with Medallia’s specialized security teams to address and respond to critical client requests such as vulnerabilities and regulatory changes.
- Take ownership of technical requests directed to the Customer Security Assurance team, ensuring timely and high-quality completion of tasks such as:
- Information security and compliance questionnaires and checklists
- Technical sections of RFPs in collaboration with pre-sales teams
- Support IT, security, and audit discussions with clients.
- Become a subject matter expert on newly developed Medallia products, documenting security controls and practices for these products.
- Regularly update security documentation to ensure compliance and accuracy regarding Medallia’s security policies.
Qualifications
- Bachelor's degree or equivalent experience, preferred degrees:
- Information Systems, Cybersecurity
- Information Technology
- Computer Science
- Engineering
- Business with a Concentration in Information Systems or Risk Management
- Data Privacy and Compliance
- Cloud Computing (with a focus on Security)
Foundational knowledge of key information security areas such as:- Network Security Ability to interpret network architecture diagrams and explain monitoring strategies.
- Application Security Familiarity with common vulnerabilities, vulnerability management, and Agile software development.
- Data Security Understanding of data encryption methods and data privacy regulations (GDPR, CCPA).
- Compliance Knowledge of certification standards (SOC2, ISO 27001) and the ability to interpret security controls.
- Access Management Technical understanding of authentication and authorization strategies, such as SSO and access log processes.
- Ability to travel to regional training events - 1 or 2 times per year
- Strong written and verbal communication skills, including live presentations
- Excellent organizational and time management abilities
- A deep curiosity and ability to learn and explain the technical aspects of Medallia's products and services.
- Openness to feedback and mentoring with a commitment to continuous professional growth
- Passion for continuous learning, with a focus on information security and cloud architecture.
- Self-motivation with the ability to manage multiple tasks and deadlines in a fast-paced, high-growth environment.
- Strong work ethic and a proactive approach to mastering new concepts.
Medallia is committed to equal pay and transparency. The annual base salary range for this position is $72,000 - $110,000. Please note that the salary range information provided is a general guideline and combines all of the distinct labor markets within the US. It is uncommon for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on a variety of factors. Medallia considers factors such as (but not limited to) scope and responsibilities of the position, candidate’s work experience, candidate’s work location, education/training, key skills, internal peer equity, external market data, as well as, market and business considerations when making compensation decisions.
Medallia also offers competitive health and wellness benefits, including but not limited to medical, dental, vision, 401(k), short term and long term disability, life and AD&D insurance, statutory leaves, paid parental leave, and paid holidays. Benefits and eligibility may vary by location and role.
At Medallia, we celebrate diversity and recognize the value it brings to our customers and employees. Medallia is proud to be an equal opportunity workplace and is an affirmative action employer. All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, sexual orientation, gender identity, national origin, genetic information, disability, veteran status, or any other applicable status protected by state or local law. Individuals with a disability who need an accommodation to apply please contact us at ApplicantAccessibility@medallia.com. For information regarding how Medallia collects and uses personal information, please review our Privacy Policies. Applications will be accepted for 30 days from the date this role was posted or until the role has been filled.