Cybersecurity Risk Management Analyst II
New York, New York, United States
CLEAR
CLEAR’s identity platform makes experiences safer and easier—both physically and digitally. From airports to stadiums, to the doctor’s office or your banking app, identity is foundational.CLEAR is at the forefront of creating a secure, frictionless experience for our members through cutting-edge digital and biometric identification technology. As a leader in protecting identity, privacy, and security, we are committed to safeguarding our members' information across all digital platforms. We’re looking for a skilled Cybersecurity Risk Analyst to join our team and play a critical role in identifying and mitigating cybersecurity risks that could impact our digital assets, operations, and reputation.
In this role, you will work closely with cross-functional teams to assess and manage cyber risks, ensuring that CLEAR's security posture remains strong as we continue to innovate. Your expertise will help us stay ahead of emerging threats, maintain regulatory compliance, and protect sensitive data, while enhancing the overall security of our digital identity ecosystem.
What you'll do:
- Conduct thorough risk assessments to identify cybersecurity threats and vulnerabilities across systems, networks, and data, with a focus on protecting sensitive digital assets.
- Analyze emerging cyber threats and assess their potential impact on CLEAR’s operations, reputation, and financial stability.
- Develop and implement robust risk mitigation strategies to reduce the likelihood and impact of cybersecurity incidents.
- Ensure ongoing compliance with relevant regulations such as GDPR, HIPAA, NIST, SOC2, and other industry-specific standards, maintaining the highest levels of security.
- Oversee the Third-Party Risk Management (TPRM) program, collaborating with internal stakeholders and vendors to ensure that security protocols are in place and compliance is achieved.
- Create and maintain comprehensive documentation for all risk assessments, mitigation strategies, and regulatory compliance efforts.
- Assist in the development of cybersecurity policies, standards, and procedures that reflect best practices and align with organizational goals.
How you'll measure success:
- Number of identified and mitigated risks across all platforms, reducing potential vulnerabilities.
- Demonstrated compliance with regulatory standards such as GDPR, HIPAA, NIST, SOC2, and others.
- Successful vendor assessments and measurable improvement in the effectiveness of risk mitigation strategies for third-party vendors.
- Reduction in the number of cybersecurity incidents and faster response times when incidents do occur.
- Continuous improvement in the organization’s cybersecurity posture and resilience against emerging threats.
What you're great at:
- 5+ years of experience in cybersecurity risk management or a similar role, ideally in industries requiring high levels of data privacy and protection (e.g., technology, finance, healthcare).
- Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001) and familiarity with emerging cyber threats, attack vectors, and defense strategies.
- Excellent analytical skills, with the ability to assess complex risks and develop actionable mitigation plans.
- Hands-on experience with risk assessment methodologies, third-party vendor management, and cybersecurity audit processes.
- Strong communication and interpersonal skills, with the ability to collaborate effectively across teams and articulate complex security issues to both technical and non-technical stakeholders.
- Certification in cybersecurity (e.g., CISSP, CISM, CISA), showcasing a commitment to maintaining industry-leading expertise.
- Experience with SIEM tools, cloud security, and vulnerability management solutions to monitor, detect, and respond to cyber threats.
- Knowledge of data privacy regulations and compliance requirements, including GDPR, CCPA, HIPAA, and other relevant standards.
How You'll be Rewarded:
At CLEAR we help YOU move forward - because when you’re at your best, we’re at our best. You’ll work with talented team members who are motivated by our mission of making experiences safer and easier. Our hybrid work environment provides flexibility. In our offices, you’ll enjoy benefits like meals and snacks. We invest in your well-being and learning & development with our stipend and reimbursement programs.
We offer holistic total rewards, including comprehensive healthcare plans, family building benefits (fertility and adoption/surrogacy support), flexible time off, free OneMedical memberships for you and your dependents, and a 401(k) retirement plan with employer match. The base salary range for this role is $130,000 - $160,000, depending on levels of skills and experience.
The base salary range represents the low and high end of CLEAR’s salary range for this position. Salaries will vary depending on various factors which include, but are not limited to location, education, skills, experience and performance. The range listed is just one component of CLEAR’s total compensation package for employees and other rewards may include annual bonuses, commission, Restricted Stock Units
About CLEAR
Have you ever had that green-light feeling? When you hit every green light and the day just feels like magic. CLEAR's mission is to create frictionless experiences where every day has that feeling. With more than 25+ million passionate members and hundreds of partners around the world, CLEAR’s identity platform is transforming the way people live, work, and travel. Whether it’s at the airport, stadium, or right on your phone, CLEAR connects you to the things that make you, you - unlocking easier, more secure, and more seamless experiences - making them all feel like magic.
CLEAR provides reasonable accommodation to qualified individuals with disabilities or protected needs. Please let us know if you require a reasonable accommodation to apply for a job or perform your job. Examples of reasonable accommodation include, but are not limited to, time off, extra breaks, making a change to the application process or work procedures, policy exceptions, providing documents in an alternative format, live captioning or using a sign language interpreter, or using specialized equipment.
#LI-Hybrid
Tags: CCPA CISA CISM CISSP Cloud Compliance Finance GDPR HIPAA ISO 27001 NIST Privacy Risk assessment Risk management SIEM SOC 2 Vendor management Vulnerabilities Vulnerability management
Perks/benefits: 401(k) matching Career development Equity / stock options Fertility benefits Flex vacation Snacks / Drinks
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.