Information Security Technical Analyst

One of the country's most innovative and fast-moving financial technology companies is searching for an Information Security Technical Analyst to join their Security Governance, Risk, and Compliance (SGRC) team 100% remotely . In this role, you will serve as a key contributor to enterprise-wide security risk reduction efforts by partnering across engineering, product, compliance, and security teams to identify, assess, and remediate vulnerabilities before they become business-impacting threats. If you thrive at the intersection of technical depth and strategic risk thinking, this is an exciting opportunity to drive meaningful, measurable security outcomes at scale.


This exciting opportunity to shape and mature a world-class information security program begins as a 1-year W2 contract offering a 100% remote and competitive benefits along with the strong potential for extension or conversion .



Responsibilities

• Manage the intake and triage of incoming vulnerability cases, including CVEs, cloud misconfigurations, access control issues, web application vulnerabilities, and source code vulnerabilities
• Perform technical vulnerability assessments and provide expert remediation guidance to engineering teams and designated responsible individuals (DRIs), including patch implementation support
• Partner with security and product teams to prioritize and systematically remediate vulnerabilities and security issues using risk-based frameworks
• Research and analyze vendor advisories, zero-day disclosures, bug trackers, and threat intelligence sources to assess potential organizational impact
• Oversee the risk exception process by working with security and business unit stakeholders to support informed, risk-based decision-making
• Identify opportunities to reduce manual effort by championing automation of triage, case management, and escalation workflows
• Drive long-term remediation by collaborating with partners to identify and address root causes of recurring vulnerabilities
• Track and report on vulnerability metrics including backlog health, remediation rates, and historical trends to evaluate overall security posture
• Develop and maintain runbooks, playbooks, and process documentation
• Collaborate with Engineering and Compliance teams to manage penetration testing results and remediate PCI-related vulnerabilities
• Support third-party bug bounty program operations in coordination with internal stakeholders
• Contribute to ongoing security risk assessments using both quantitative and qualitative methodologies to identify, evaluate, and monitor cybersecurity risks
• Partner with cross-functional teams to gather data for risk analysis and provide subject matter expertise in security and risk domains
• Support risk mitigation efforts, control improvements, and the continuous evolution of the broader risk program

Skills & Experience

• Bachelor's degree in Information Security, Computer Science, or a related field or equivalent practical experience
• 5+ years of hands-on experience in security, intelligence, and/or risk management within a technology-driven organization
• Solid understanding of cloud infrastructure platforms (AWS, GCP, Azure) , networking fundamentals, and containerization
• Experience designing and implementing security automation workflows using scripting languages
• Proficiency with multiple vulnerability scanning tools
• Strong technical knowledge of common vulnerability classes including OWASP Top 10 , web application vulnerabilities, cloud misconfigurations, and source code vulnerabilities
• Familiarity with risk countermeasures and compensating controls
• Ability to work both independently and cross-functionally with strong communication and interpersonal skills
• Foundational knowledge of information security principles including threats, vulnerabilities, and risk management frameworks
• Experience leveraging AI agents and workflow automation to drive process improvements
• Technical problem-solving mindset with a proactive, results-driven work ethic
• Security certifications such as CISSP, Security+, CySA+, or a GIAC equivalent are strongly preferred

Y ou will receive the following benefits:

• Medical Insurance - Four medical plans to choose from for you and your family
• Dental & Orthodontia Benefits
• Vision Benefits
• Health Savings Account (HSA)
• Health and Dependent Care Flexible Spending Accounts
• Voluntary Life Insurance, Long-Term & Short-Term Disability Insurance
• Hospital Indemnity Insurance
• Paid Sick Time Leave
• Legal and Identity Protection Plans
• Pre-tax Commuter Benefit
• 529 College Saver Plan

Motion Recruitment Partners is an Equal Opportunity Employer, including disability/vets. All applicants must be currently authorized to work on a full-time basis in the country for which they are applying, and no sponsorship is currently available. Employment is subject to the successful completion of a pre-employment screening. Accommodation will be provided in all parts of the hiring process as required under Motion Recruitment Employment Accommodation policy. Applicants need to make their needs known in advance.


You will receive the following benefits:

• Medical Insurance - Four medical plans to choose from for you and your family
• Dental & Orthodontia Benefits
• Vision Benefits
• Health Savings Account (HSA)
• Health and Dependent Care Flexible Spending Accounts
• Voluntary Life Insurance, Long-Term & Short-Term Disability Insurance
• Hospital Indemnity Insurance
• 401(k) including match with pre and post-tax options
• Paid Sick Time Leave
• Legal and Identity Protection Plans
• Pre-tax Commuter Benefit
• 529 College Saver Plan

Motion Recruitment Partners (MRP) is an Equal Opportunity Employer. All applicants must be currently authorized to work on a full-time basis in the country for which they are applying, and no sponsorship is currently available. Employment is subject to the successful completion of a pre-employment screening. Accommodation will be provided in all parts of the hiring process as required under MRP's Employment Accommodation policy. Applicants need to make their needs known in advance.

Specialization :

• Cybersecurity