TrueCar is a leading automotive digital marketplace and we are on a mission to make car buying and selling easy, transparent and efficient. We work to empower consumers with data, and foster connections with our network of Certified Dealers who share our belief that truth, transparency and fairness are the foundation to a great experience. We forge partnerships to power car buying programs for some of America's most trusted brands. And we continually innovate to provide useful tools, research, market context and pricing transparency to help consumers feel empowered and confident all throughout their journey.
As consumers' priorities and shopping habits shifted, so did we. We are building a modern day marketplace and invite you to come join the TrueCar Crew. You can have a real & direct impact on our journey as we continue to evolve and revolutionize the car buying and selling experience. We are seeking talented individuals who are excited by our mission to revolutionize & elevate the car buying & selling experience.
The Opportunity:
The Senior Security Analyst plays a crucial role in TrueCar's information security and risk management efforts. As a Senior Security Analyst, you will be responsible for ensuring the confidentiality, integrity, and availability of an organization's information assets. You will play a key role in identifying and mitigating security risks, responding to security incidents, and implementing security controls to protect sensitive information.
How you'll contribute to TrueCar's success:
- Monitor security alerts and incidents, investigate and respond to security breaches, and coordinate incident response activities.
- Analyze security logs and data to identify potential threats and vulnerabilities.
- Conduct regular vulnerability assessments and penetration testing to identify and prioritize security vulnerabilities.
- Work with IT teams to remediate and mitigate identified vulnerabilities.
- Develop, implement, and enforce security policies, standards, and procedures.
- Ensure compliance with industry regulations and standards (i.e HIPAA, ISO27001, etc)
- Conduct security awareness training programs for employees to enhance the organization's overall security posture.
- Provide guidance and support to staff on security best practices.
- Collaborate with IT teams to incorporate security best practices into system and network architectures.
- Evaluate and recommend security technologies and solutions.
- Conduct risk assessments to identify and prioritize security risks to the organization.
- Work with stakeholders to develop and implement risk mitigation strategies.
- Maintain and update security documentation, including policies, procedures, and incident response plans.
- Prepare reports and dashboards on security metrics and key performance indicators.
Your Expertise:
- Proven success working in information security, with a focus on security analysis, incident response, and vulnerability management.
- In-depth knowledge of security principles, best practices, and technologies.
- Familiarity with regulatory requirements and industry standards (CPRA, SOX, SOC).
- Strong analytical and problem-solving skills.
- Excellent communication and collaboration skills.
- Experience with security tools such as SIEM, IDS/IPS, antivirus, and endpoint protection.
- Knowledge of cloud security principles and practices (AWS experience is a plus).
- Familiarity with secure coding practices and application security tooling (Snyk, Burp, ZAP).
- Experience with network security and firewalls.
- Ability to conduct security training and awareness programs.
- Bachelor's degree in Information Security, Computer Science, or a related field preferred.
- Advanced degree or relevant certifications (CISSP, CISM, etc.) is a plus.
Base salary: $88,000 - $125,000
Your TrueCar Experience
As a crew member, you'll be primarily based out of your home as a part of our Dynamic Workplace strategy. We provide additional benefits & perks to assist our crew members in having a sustainable home workstation including monthly internet/mobile phone service reimbursement and furniture & equipment for your space.
You will receive excellent benefits that include but aren't limited to 100% employer-paid health/vision/dental premium, 401k with company contribution, equity, a wellness stipend program, and a learning & development reimbursement program. We recognize that everyone needs an occasional recharge, so we offer a flexible PTO policy for exempt TrueCar Crew along with a generous PTO accrual policy for non-exempt TrueCar Crew, in addition to 14 company-paid holidays and 2 floating holidays. In short, we care deeply about our crew members and build employee-centric programs that prove it.
At TrueCar, we believe in the power of diversity to build a deeper understanding of our consumers and partners and drive innovation in our products. We welcome a workforce that reflects all the diversity of car-buying consumers. We encourage everyone interested in our company mission to apply. We do not discriminate on the basis of race, gender, religion, sexual orientation, age, or any other trait that is protected by applicable law. We will consider qualified applicants with arrest and conviction records in accordance with applicable law. In addition, TrueCar will provide reasonable accommodations for qualified individuals with disabilities.
TrueCar does not accept unsolicited agency submissions.
If you are based in California, we encourage you to read this important information for California residents linked here.
#LI-Remote