Cybersecurity Project Analyst Job at Click Therapeutics, Inc. in New York
Click Therapeutics, Inc., New York, NY, US, 10261
Overview
Join to apply for the Cybersecurity Project Analyst role at Click Therapeutics, Inc.
We are a digital therapeutics company developing FDA-regulated prescription software. This role supports our information security program by helping design, test, implement, and monitor security measures.
This position is based at Clicks headquarters in Tribeca, NYC, with a hybrid model requiring at least 3 days in the office each week.
Responsibilities
- Maintain awareness of emerging cybersecurity threats, regulatory requirements, and industry best practices across Information Security, Application Development, and GRC to drive organizational change.
- Identify and assess vulnerabilities in critical assets, customer networks, and systems; coordinate and manage remediation activities to closure.
- Maintain and mature the Third-Party Risk Management lifecycle, including onboarding, due diligence, re-assessments, and risk mitigation.
- Monitor and track risk, risk exceptions, and compensating controls; ensure risk acceptance processes are documented and approved per governance policies.
- Develop, implement, and maintain risk and compliance programs aligned with NIST, ISO 27001, SOC 2, and CyberEssentials frameworks.
- Create, update, and maintain standard operating procedures (SOPs) and information security policies (ISPs) to ensure alignment with posture and compliance requirements.
- Lead internal and external audits and support compliance efforts, including SOC 2, ISO-27001, and other regulatory frameworks.
- Assist with incident response activities, including triaging alerts and investigating security events to system and network security alerts.
- Lead monthly phishing simulation campaigns and analyze results to strengthen the organizations security awareness.
- Manage and enhance the Security Awareness Training program, ensuring engagement and relevance to emerging threats and best practices.
- Participate in the change management process, ensuring security requirements and impact assessments are properly addressed.
- Collaborate with Cloud and Application engineering teams to provide security-focused guidance during design and implementation phases.
- Work as part of a cross-functional team of engineers and analysts in a respectful, inclusive, and collaborative environment.
- Manage projects under minimal supervision and create progress reports.
Qualifications
- 2+ years of hands-on experience in cybersecurity, information security, or related field.
- Strong eagerness to learn, take initiative, and engage with new tasks.
- Effective verbal, written, and interpersonal communication skills.
- Foundational knowledge of IT risk assessments of potential and current information security risk.
- BS degree in Computer Science, Cyber Security or related field or equivalent work experience.
Preferred Qualifications
- Experience with cloud environments and microservices architecture (e.g., AWS).
- Familiarity with compliance and risk management in regulated industries such as healthcare.
- Working knowledge of common security frameworks (e.g., NIST, SOC 2, ISO27001).
- Familiarity with developing within an agile scrum planning methodology.
- Relevant certifications such as CC, SEC+, CISA, CISM.
Compensation
The base salary range is between $85,000 and $110,000 per year. Final base salary depends on skills, experience, and location. In addition to base salary, Click Therapeutics offers an annual performance-based cash bonus and equity.
Benefits
Great benefits and wealth-building opportunities at a fast-growing company. Competitive salary with annual review, stock options, 5% 401(k) matching, medical, dental, vision, life insurance, voluntary benefits, unlimited PTO, and more.
Equal Opportunity
Click Therapeutics is an equal opportunity employer. We do not discriminate on race, color, religion, sex, sexual orientation, gender identity or expression, national origin, disability, or veteran status. We comply with applicable laws governing nondiscrimination and employment eligibility verification. Applicants may require immigration sponsorship; details are provided in our policies.
Recruitment Security Notice
To avoid phishing scams, use only official Click Therapeutics channels. We will reply from @clicktherapeutics.com addresses, and never request sensitive information via messaging apps. All official postings are on our career page.
#J-18808-Ljbffr