At Vidyard, we make life easier for sellers, marketers and corporate communicators. Our video messaging tools, digital sales room platform, and other products are used by Microsoft, LinkedIn, and thousands of other companies. We're passionate about elevating our customers, our teammates, our communities, and ourselves.
About the Role
Vidyard is looking for a Senior Security Analyst to join our IT & Security team. Reporting to the Manager, IT & Security, you will work alongside our talented group of Vidyardians currently comprising the IT & Security team to grow and shape our security framework, as well as provide insight and collaboration with the Product and Engineering teams during the software development process. The Senior Security Analyst will be a pivotal role on the IT & Security team, and will lend their experience and mentorship expertise in secure software development and secure Engineering practices to the rest of the team, navigating exciting and new technology, and leveling up Vidyard’s posture and framework while also growing and shaping their own skills.
This role is new to the team, and tailored toward a candidate who is excited about cybersecurity, secure coding, and secure development practices, while also looking for an avenue to display their own talents and leadership skills with a team that is eager to grow, and eager to learn. This is a remote role open to candidates located in Canada.
About the Team
Our IT & Security team consists of the Manager, IT & Security, and IT & Security Specialists. This fully cross-functional team manages all IT and Security requests and requirements, manages our security framework, obligations, and compliance initiatives. Working closely with all other teams within Vidyard, the IT & Security team is positioned to provide world class support both to Vidyardians and our current and prospective clients throughout the sales enablement process. In addition, the team works alongside the Product and Engineering teams to ensure the security and protection, availability, and confidentiality of customer data remains top of mind and a company-wide priority.
What You’ll Work On
Strategy and Policy Development
- Lead the development, implementation and maintenance of Security policies and procedures
- Work alongside management to define protocols that align with Vidyard’s objectives, goals, and compliance initiative
Threat Analysis and Risk Assessment
- Perform advanced screening and risk assessment and analysis to proactively identify and resolve Security threats and vulnerabilities
- Develop and lead the implementation of risk management strategies
- Stay updated with trends and threats, using this intelligence to anticipate and guard against bad actors or exploits
Incident Response and Management
- Lead the Security team’s responses to Security events or incidents in conjunction with Security leadership, and assist in remediation efforts.
- Conduct analysis and post-mortems to identify root causes and recommend changes, working in conjunction with Security leadership, and mentoring Security staff throughout
Monitoring and Analysis
- Monitor security access and identify any anomalies or breaches to company assets.
- Instrument security tooling (SIEM systems, etc) to collect and analyze data, identifying potential threats
- Review and action logs and reports as needed
- Monitor and respond to security tickets that are more advanced, and assist others with more complex issues
Software Development Lifecycle
- Requirement gathering and risk assessment during initial planning phases of software development process; work closely with product design and development teams
- Conduct threat modeling and risk assessments early in the process of development, to inform of security requirements and the overall design of the product
- Secure coding practices; provide guidelines and best practices to developers and engineering Vidyardians
- Ensure that security controls are integrated into the framework of our products, to protect the integrity of Vidyard and customer data
- Ongoing testing and secure coding review; perform regular audits and checks to maintain the overall security posture at Vidyard during the development process
Team Leadership and Development
- Mentor and provide guidance to Security team members, enhancing their skills and capabilities
- Champion and lead Security initiatives, setting clear goals and expectations, and manage longer term projects in conjunction with Security leadership.
- Foster a culture of continuous growth and improvement, and support and contribute to the learning and development of the entire Security team
What You’ll Bring to this Role and Your New Team:
- ~ 6+ years of experience in cybersecurity at software development or SaaS companies
- Experience with mentorship is preferred, as this will be a pivotal role in the Security team.
- Experience with software development lifecycle and secure coding practices is preferred, as this role will be uniquely positioned to guide these processes
- Deep expertise in the OWASP Top 10 and a thorough understanding of web application security principles and common vulnerabilities.
- Expertise in cloud security, preferably in AWS, with a strong understanding of cloud security best practices.
- Strong communication and collaboration skills, with the ability to work effectively across teams and influence stakeholders.
Our Tech Stack
- Cloud Compliance Platforms
- SIEM products
- Network Security (eg. WAF, Security Groups)
- Cloud Security Tooling (eg. AWS Inspector)
- Static Application Security Testing (SAST) Tools
- Dynamic Application Security Testing (DAST) Tools
Job descriptions can be overwhelming. At Vidyard we are motivated to drive change together and deeply value the unique experiences, abilities and opinions you possess, so if this role sounds like your next adventure, but you don’t feel entirely qualified, apply! We value candidates who own it, and if you’re relentlessly resourceful too, you might be exactly who we are looking for. As we also value user obsession, we prioritize our users, customers and community so you can expect to hear from our team even if you are not selected to move forward.
What You’ll Love about Vidyard:
- Competitive pay
- Comprehensive, flexible benefits on day one*
- Wellness allowance to spend on what's important to you
- Flexible hours + unlimited vacation + programs to support travel while working, enabling you to live your best life
- Access to Inkblot, a digital mental health platform + $1,500/person/year for mental health coverage*
- Allowance to support your ongoing growth and development
- Parental leave top-up
- Paid volunteer hours
- Employee resource groups to empower and drive change at Vidyard and in our communities
- RRSP match*
- Stock options
- Flexible holiday program
- Home office stipend
- Flexibility to work in the place that brings out your best: whether you thrive in the comfort of your home office, or are local to, and prefer the energy of our collaboration space in Kitchener, Ontario, Canada, there is flexibility for all. Although we default to remote-first there will be occasional in-person meetings/events purposefully designed for connection and collaboration.
We thank all applicants for your interest in Vidyard. Only those applicants selected for an interview will be contacted. Unsolicited resumes from Agencies will not be accepted.Vidyard is an equal opportunity employer. Applicants who require reasonable accommodation to complete the application and/or interview process should notify us at recruitment@vidyard.com.