Senior Security Analyst

extra parental leave - fully flexible
Work set-up: 
Full Remote
Contract: 
Experience: 
Senior (5-10 years)
Work from: 

Offer summary

Qualifications:

Extensive experience in security analysis and vulnerability management., Proficiency with SAST/DAST tools and cloud platforms like AWS, Azure, or GCP., Strong understanding of secure coding, API security, encryption, and identity management., Ability to collaborate with development teams and communicate security risks effectively..

Key responsibilities:

  • Conduct security assessments of applications to identify vulnerabilities.
  • Champion security best practices and support threat mitigation efforts.
  • Review application designs for security weaknesses and recommend solutions.
  • Assist with incident response and track vulnerability trends.

Lightspeed HQ  logo
Lightspeed HQ Large https://www.lightspeedhq.com/
1001 - 5000 Employees
See all jobs

Job description

Hi there! Thanks for stopping by 👋

Are you actively looking for a new opportunity? Or just checking the market? Well
 you might just be in the right place!

We’re looking for a Senior Security Analyst to join our team in Auckland. As a key member of the AppSec team, you’ll proactively identify and mitigate security risks, champion best practices, and guide the organisation in aligning security initiatives with business goals. You’ll work closely with cross-functional teams to strengthen our security posture, lead vulnerability management efforts, support incident response, and mentor junior team members. 

You'll bring extensive experience in managing application vulnerabilities, using SAST/DAST tools, and working with cloud platforms like AWS, Azure, or GCP. You have solid skills in secure coding, API security, encryption, and identity management, with the ability to find and fix security issues, recommend solutions, and build security into the development process while staying ahead of new threats.

What you’ll be doing:
  • Conduct security assessments of in-house and third-party applications to find vulnerabilities and risks
  • Champion security best practices and proactive threat mitigation across the organisation
  • Help create and maintain security standards and guidelines based on industry best practices (e.g., OWASP)
  • Review application designs and integrations for security weaknesses and recommend solutions
  • Ensure security principles are applied consistently throughout the application lifecycle
  • Collaborate with development, application owners, and procurement to guide remediation efforts
  • Assist with incident response for application and third-party security issues
  • Research and recommend tools to improve vulnerability and third-party risk management
  • Track and report on vulnerability trends, remediation progress, and compliance with security policies
What you need to bring:
  • Proven experience in security analysis, with a focus on vulnerability management, security assessments, and risk analysis across applications in cloud or on-premise environments.
  • Hands-on experience identifying, prioritising, and driving remediation of vulnerabilities in applications and third-party software.
  • Strong background in securing applications and managing vulnerabilities within cloud environments (AWS, GCP, Azure) using best practices and native security tools.
  • Ability to work closely with development teams and stakeholders to communicate risks and deliver effective solutions.
  • Experience leading or contributing to cross-functional security initiatives and improving vulnerability management processes and tools.

We know that people are more than what’s on their CV. If you’re unsure that you have the right profile for the role... hit the ‘Apply’ button and give it a try!

Be a changemaker

You’ll enjoy:

  • A flexible work environment that empowers you to do your best work
  • A culture that celebrates performance
  • The chance to make an impact in a team that’s big enough for career growth, but lean enough to make your voice heard
  • Career-defining opportunities

Plus benefits designed to keep you happy, healthy and fulfilled.

  • Lightspeed share scheme (we are all owners)
  • Unlimited paid time off policy
  • Work remotely from anywhere in the world for up to 60 days per year
  • Flexible working policy
  • Health and wellness benefit of $500 per year
  • Mental health online platform and counselling & coaching services
  • Paid leave and assistance for new parents
  • Free LinkedIn Learning license
  • Paid Volunteer day
  • Subsidised public transportation to cover up to 75% of your commuting costs
  • Complimentary breakfast and lunch options, along with fresh fruits, snacks, and beverages stocked in the office 
  • Exciting events hosted regularly by our Auckland Culture Club
  • Secure, full-time parking facilities
  • Newly renovated office space located in Newmarket (Auckland) 
  • Dog friendly environment 

Do you need additional support during an interview?

At Lightspeed, we acknowledge that we face the unique challenge of engaging with and hiring diverse talent from marginalised communities with different personal or cultural norms. For many candidates from these underrepresented groups, a job interview can be an extra stressful or challenging experience. Taking this nuanced perspective into consideration, Lightspeed is pleased to offer Supported Interviews! This means you’re welcome to bring whānau or a support person along with you during any Lightspeed interview (excluding initial recruiter phone call). This ensures you have the best opportunity to display your full range of strengths.

Please note that we ask applicants to disclose any criminal convictions, and we conduct criminal record checks as part of our hiring process for this role.

To all recruitment agencies: Lightspeed does not accept unsolicited agency resumes. If we have not directly engaged your company in writing to supply candidates for a specific vacancy, Lightspeed will not be responsible for any fees related to unsolicited resumes.

Lightspeed is a proud equal opportunity employer and we are committed to creating an inclusive and barrier-free workplace. Lightspeed welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process.

Where to from here?
Obviously, this has to be mutually beneficial: we want you to step into a role you love, and we want to offer you a place you’re proud to come to every day. For a glimpse into our world check out our career page here.

Lightspeed is building communities through commerce, and we need people from all backgrounds and lived experiences to do that. We were founded in 2005, in Montreal’s gay village and our original members were all part of the LGBTQ+ community. The ethos of our business has been about inclusion from the very beginning, and we strive to provide a workplace where everyone belongs.

Who we are:
Powering the businesses that are the backbone of the global economy, Lightspeed's one-stop commerce platform helps merchants innovate to simplify, scale, and provide exceptional customer experiences. Our cloud commerce solution transforms and unifies online and physical operations, multichannel sales, expansion to new locations, global payments, financial solutions, and connection to supplier networks.

Founded in Montréal, Canada in 2005, Lightspeed is dual-listed on the New York Stock Exchange (NYSE: LSPD) and Toronto Stock Exchange (TSX: LSPD). With teams across North America, Europe, and Asia Pacific, the company serves retail, hospitality, and golf businesses in over 100 countries.
 
 
Lightspeed handles your information in accordance with our Applicant Privacy Statement.
 

Required profile

Experience

Level of experience: Senior (5-10 years)
Spoken language(s):
English
Check out the description to know which languages are mandatory.

Other Skills

  • Teamwork
  • Communication
  • Problem Solving

Security Analyst Related jobs