Cybersecurity Project Analyst Job at Click Therapeutics, Inc. in New York
Click Therapeutics, Inc., New York, NY, United States, 10261
Overview
Click Therapeutics, Inc. develops, validates, and commercializes software as prescription medical treatments. As a leading provider of Digital Therapeutics, Click delivers FDA-regulated prescription treatments to the smartphone, applying technical and scientific rigor and patient-centric design to the development process.
Click’s platform addresses diverse therapeutic needs using cognitive, behavioral, and neuromodulatory mechanisms of action with data-driven tools such as artificial intelligence and machine learning. We foster an inclusive, diverse workforce united by a mission to provide patients access to safe and effective prescription digital therapeutics. For more information, visit www.clicktherapeutics.com and connect with us on LinkedIn.
About the Role
We are seeking a Cybersecurity Project Analyst to join our information security team. You will work alongside the Cyber Team, engineers, and senior security experts to design, test, implement, and monitor security measures that protect the company.
This position is based at Click’s headquarters in Tribeca, NYC, with a hybrid schedule requiring at least 3 days in the office per week.
Responsibilities
- Maintain awareness of emerging cybersecurity threats, regulatory requirements, and industry best practices across Information Security, Application Development, and GRC to drive organizational change.
- Identify and assess vulnerabilities in critical assets, customer networks, and systems; coordinate and manage remediation activities to closure.
- Maintain and mature the Third-Party Risk Management lifecycle, including onboarding, due diligence, re-assessments, and risk mitigation.
- Monitor and track risk, risk exceptions, and compensating controls; ensure risk acceptance processes are documented and approved per governance policies.
- Develop, implement, and maintain risk and compliance programs aligned with NIST, ISO 27001, SOC 2, and CyberEssentials frameworks.
- Create, update, and maintain standard operating procedures (SOPs) and information security policies (ISPs) to ensure alignment with organizational posture and compliance requirements.
- Lead internal and external audits and support compliance efforts, including SOC 2 and ISO-27001.
- Assist with incident response activities, including triaging alerts and investigating security events.
- Lead monthly phishing simulation campaigns and analyze results to strengthen security awareness.
- Manage and enhance the Security Awareness Training program to stay relevant to evolving threats and best practices.
- Participate in the change management process, ensuring security requirements and impact assessments are addressed.
- Collaborate with Cloud and Application engineering teams to provide security-focused guidance during design and implementation phases.
- Work as part of a cross-functional team of engineers and analysts in a respectful, inclusive, and collaborative environment.
- Manage projects under minimal supervision and create progress reports.
Qualifications
- 2+ years of hands-on experience in cybersecurity, information security, or a related field.
- Strong eagerness to learn, take initiative, and engage with new tasks.
- Effective verbal, written, and interpersonal communication skills.
- Foundational knowledge of IT risk assessments and information security risk.
- BS degree in Computer Science, Cyber Security, or related field or equivalent work experience.
Preferred Qualifications
- Experience with cloud environments and microservices architecture (e.g., AWS).
- Familiarity with compliance and risk management in regulated industries such as healthcare.
- Working knowledge of security frameworks (e.g., NIST, SOC 2, ISO 27001).
- Familiarity with Agile Scrum planning methodology.
- Relevant certifications (e.g., CC, SEC+, CISA, CISM).
Compensation & Benefits
The base salary range is $85,000 – $110,000, with final base salary depending on skills, experience, and location. In addition to base salary, Click Therapeutics offers an annual performance-based cash bonus and a generous equity package. Benefits include medical, dental, vision, life insurance, 401(k) with 5% match, unlimited PTO, and more.
Equal Opportunity
Click Therapeutics is an equal opportunity employer. We do not discriminate on the basis of race, color, religion, sex, sexual orientation, age, gender identity or expression, national origin, disability, or veteran status. We comply with applicable laws governing nondiscrimination and employment eligibility verification. Applicants must have authorization to work in the U.S. and, where applicable, sponsorship considerations will be evaluated in context.