Information Security Analyst

Information Security Analyst

TL;DR - Why This Role Matters

Strengthen Scribe’s security and compliance operations while accelerating enterprise sales by improving the speed and reliability of customer security responses and audit readiness. This role will help scale the operational side of the security program by owning security documentation workflows, improving monitoring signal quality, and ensuring consistent audit preparation. Success in the first several months means faster fulfillment of customer security requests, strong SOC 2 audit readiness, and improved reliability of security monitoring and vulnerability management processes.

About the Role

• Partner with Security and Sales to double weekly fulfillment of customer security requests and improve enterprise deal cycle velocity.
• Perform collection and organization of compliance evidence to support SOC 2 and other framework audits and help deliver an exception free audit.
• Configure and maintain security and compliance monitoring systems, reducing false-positive alerts through improved tuning and alerting workflows.
• Track and coordinate vulnerability remediation efforts to eliminate breached remediation SLAs and improve security program accountability.
• Maintain and update security policies, procedures, and documentation required for regulatory frameworks and internal security standards.
• Support cross functional security and compliance initiatives that improve Scribe’s overall security posture and enterprise readiness.

What Makes You a Great Fit

Someone who thrives in this role is structured, detail oriented, and enjoys supporting commercial initiatives through a strong security program. You can work well cross functionally with Security, Legal, and Sales and can translate security requirements into clear insights for customers. You proactively follow up on requests, keep stakeholders aligned, and ensure security questionnaires, audit evidence, and remediation tracking move forward without becoming bottlenecks. You are curious about how high growth security programs operate and view audits, policies, and monitoring systems as opportunities to strengthen operational foundations rather than check the box for compliance requirements.

This Role Is Not for You If

• You do not enjoy supporting sales initiatives and direct customer interaction
• You are frustrated by balancing risk management with business velocity in a fast-growing company.
• You prefer working only on deep technical security engineering rather than operational, documentation, and compliance work.