Security Analyst

Who we are:

We are a leader in fraud prevention and AML compliance. Our platform uses device intelligence, behavior biometrics, machine learning, and AI to stop fraud before it happens. Today, over 300 banks, retailers, and fintechs worldwide use Sardine to stop identity fraud, payment fraud, account takeovers, and social engineering scams. We have raised $145M from world-class investors, including Andreessen Horowitz, Activant, Visa, Experian, FIS, and Google Ventures.

Our culture:

• We have hubs in the Bay Area, NYC, Austin, and Toronto. However, we maintain a remote-first work culture. #WorkFromAnywhere

• We hire talented, self-motivated individuals with extreme ownership and high growth orientation.

• We value performance and not hours worked. We believe you shouldn't have to miss your family dinner, your kid's school play, friends get-together, or doctor's appointments for the sake of adhering to an arbitrary work schedule.

About the role:

Sardine is looking for a Security Analyst to join our IT and Security Team. Reporting directly to the CISCO, this role offers a unique opportunity to work across Security Operations (SOC) and Governance, Risk, and Compliance (GRC), blending hands-on threat detection with strategic risk management. You will be responsible for monitoring, analyzing, and responding to security incidents, ensuring the confidentiality, integrity, and availability of our critical systems and data. By proactively identifying vulnerabilities and implementing security controls, you will play a key role in protecting Sardine from evolving cyber threats.

In addition to security operations, you will collaborate closely with auditors, regulators, and internal teams to support compliance efforts and security reviews. Your ability to communicate effectively and build strong partnerships will be essential in reducing risk and ensuring alignment across multiple domains.

If you're passionate about both technical security operations and strategic risk management and thrive in a collaborative environment, we'd love to hear from you.

What you'll be doing

Governance, Risk, and Compliance (GRC):

• Develop, implement, and maintain security policies, standards, and procedures in line with regulatory requirements (e.g., NIST, ISO 27001, HIPAA, PCI DSS, GDPR).

• Conduct risk assessments to identify and mitigate threats to information assets.

• Monitor and report on compliance, tracking the effectiveness of security controls.

• Manage security audits, coordinate with external auditors, and address findings.

• Maintain security documentation and ensure alignment with evolving regulations.

• Provide security awareness training and support incident response planning.

Security Operations Center (SOC):

• Monitor SIEM systems and security tools for threats and vulnerabilities.

• Investigate and respond to security incidents, documenting analysis and remediation steps.

• Perform vulnerability scanning, penetration testing, and security assessments.

• Collaborate with IT teams to implement security controls and remediate risks.

• Stay informed on emerging threats and contribute to threat intelligence initiatives.

• Participate in incident response exercises and develop security reports for management.

What you'll need

• 3+ years of experience handling security challenges in a high-growth environment

• Strong understanding of security frameworks and standards (e.g., NIST, ISO 27001, SOC 2).

• Knowledge of relevant regulations and compliance requirements (e.g., HIPAA, PCI DSS, GDPR).

• Working knowledge of MacOS.

• Familiarity with risk assessment methodologies and frameworks.

• Experience in developing and implementing security policies, standards, and procedures.

• Strong analytical, problem-solving, and incident response skills.

• Excellent communication and interpersonal skills, with the ability to effectively interact with technical and non-technical stakeholders.  

The compensation offered for this role will depend on various factors, including the candidate's location, qualifications, work history, and interview performance, and may differ from the stated range.

Benefits we offer:

• Generous compensation in cash and equity

• Early exercise for all options, including pre-vested

• Work from anywhere: Remote-first Culture

• Flexible paid time off, Year-end break, Self care days off

• Health insurance, dental, and vision coverage for employees and dependents - US and Canada specific

• 4% matching in 401k / RRSP - US and Canada specific

• MacBook Pro delivered to your door

• One-time stipend to set up a home office — desk, chair, screen, etc.

• Monthly meal stipend

• Monthly social meet-up stipend

• Annual health and wellness stipend

• Annual Learning stipend

• Unlimited access to an expert financial advisory

Join a fast-growing company with world-class professionals from around the world. If you are seeking a meaningful career, you found the right place, and we would love to hear from you.