Security Analyst - Risk & Compliance

Job Description

Would you like to work on an innovative and sophisticated Security team for a global SaaS company? Zendesk is looking for a Security Analyst with excellent communication and analytical skills to help us protect our partners, products, and our customers’ data.  You will help us to identify and mitigate security risks that may arise from third party service providers.  We are seeking someone who can master a very sophisticated craft while simultaneously demonstrating empathy, friendliness, compassion, and a willingness to always go above and beyond: someone with a mixture of technical prowess, relentless positivity and an eye towards solving problems creatively and collaboratively. The world of security moves fast and the world of SaaS moves even faster. In addition to aforementioned qualities, we need a self-motivator to stay on top of the shifting threat and vendor landscape.

You should be approachable and inspiring as you will be one of the key stakeholders of our team.  You should have a good understanding of security concepts, security compliance, possess premier communication skills, and be able to translate ideas to a wide variety of audiences. The ability to remain succinct and yet instructive is key.

What you get to do every day:

• Partner multi-functionally with the key teams (Sourcing, Legal, Privacy, IT, etc) to uncover target areas of focus for programming.

• Continuously identify, prioritize, and build multi-channel awareness campaigns to positively influence behaviors and mitigate top risks

• Partner within the Security team (risk, incident management, automation, data analytics, etc) to uncover target areas of focus for programming.

• Partner with senior stakeholders across various functions and departments at Zendesk to develop tailored awareness offerings

• Improve business and operational efficiency by developing, automating, and maintaining scalable processes, tools, and dashboards.

• Understand Zendesk security processes and the application of those processes at as it relates to third parties and certain compliance controls

• Evaluate the security of new and existing third parties by reviewing user documentation and various legal documents

• Learn to draft and negotiate security agreements, DPAs and other relevant documents

• Educate stakeholders and guide them on best security practices as it relates to using third-party tools and services

• Assist in maintaining our current knowledge base, Security Policies, SOC 2 controls, and internal-facing documentation.

• Work on project based deliverables when called upon to do so.

• Help update knowledge bases and work you're doing to keep them current with processes or products.

What you bring to the role:

• Fluent English language skills (please submit your resume in English only)

• Motivated self-starter who works exceptionally well in an unstructured environment with light supervision

• Great teammate with excellent relationship building and phenomenal communication skills

• Passion for cybersecurity and an understanding of key challenges and risks in the industry

• Familiarity with English-language legal agreements, security audit controls, and risk & compliance frameworks

• Excellent analytical skills and the ability to tackle problems creatively

• Collaboration, planning, and prioritization skills

• Strong self-motivation abilities

• Friendly and positive with strong ethical standards

The Poland annualized base salary range for this position is zł127,000.00-zł191,000.00. Please note that while the salary range represents the minimum and maximum base salary rate for this position, the actual compensation offered will be based on job related capabilities, applicable experience, and other relevant factors. This position may also be eligible for bonus, benefits, or related incentives that will be communicated during the offer stage.

Hybrid: In this role, our hybrid experience is designed at the team level to give you a rich onsite experience packed with connection, collaboration, learning, and celebration - while also giving you flexibility to work remotely for part of the week. This role must attend our local office for part of the week. The specific in-office schedule is to be determined by the hiring manager.

The intelligent heart of customer experience

Zendesk software was built to bring a sense of calm to the chaotic world of customer service. Today we power billions of conversations with brands you know and love.

Zendesk believes in offering our people a fulfilling and inclusive experience. Our hybrid way of working, enables us to purposefully come together in person, at one of our many Zendesk offices around the world, to connect, collaborate and learn whilst also giving our people the flexibility to work remotely for part of the week.

Zendesk is an equal opportunity employer, and we’re proud of our ongoing efforts to foster global diversity, equity, & inclusion in the workplace. Individuals seeking employment and employees at Zendesk are considered without regard to race, color, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, disability, military or veteran status, or any other characteristic protected by applicable law. We are an AA/EEO/Veterans/Disabled employer. If you are based in the United States and would like more information about your EEO rights under the law, please click here.

Zendesk endeavors to make reasonable accommodations for applicants with disabilities and disabled veterans pursuant to applicable federal and state law. If you are an individual with a disability and require a reasonable accommodation to submit this application, complete any pre-employment testing, or otherwise participate in the employee selection process, please send an e-mail to peopleandplaces@zendesk.com with your specific accommodation request.