8 Security Operations jobs in Eagle Mountain

Security Operations and SaaS Security Analyst We’re in an unbelievably exciting area of tech and are fundamentally reshaping the data storage industry. Here, you lead with innovative thinking, grow along with us, and join the smartest team in the industry. This type of work—work that changes the world—is what the tech industry was founded on. So, if you're ready to seize the endless opportunities and leave your mark, come join us. SHOULD YOU ACCEPT THIS CHALLENGE. Operating in a hybrid Security Operations and SaaS Security environment, you are a technical and analytical engineer who thrives on implementing secure solutions, automating the boring stuff, and evolving operations in step with today’s threat landscape. You bring structure and reliability to security operations by managing a modern stack of tools, ensuring SLA-driven service support, and proactively enhancing enterprise SaaS security posture. Your hands-on experience in cloud security, scripting, and compliance frameworks enables you to drive strategic improvements across infrastructure, tooling, and business-facing platforms. You enjoy engaging with multiple teams—from architects and developers to security operations and IT stakeholders to SaaS application owners —to build and maintain secure-by-design environments. You’re comfortable translating business needs into security outcomes, and you take pride in helping your organization stay ahead of emerging risks. ABOUT THE ROLE You are a Security Operations Engineer / SaaS Security Analyst responsible for implementing, maintaining, and optimizing secure technology solutions that align with organizational goals and compliance requirements. In this role, you support a diverse security toolset (e.g., EDR, web content filtering, certificate issuer, domain registrar, SaaS security posture management, etc. ), support incident response, and monitor SaaS environments. Your responsibilities include operating security systems, assessing third-party risks, collaborating on compliance initiatives. You’ll support day-to-day operations, support security events, and contribute to improvements that make our workflows more effective. You’ll collaborate with teams across the organization—from IT to application owners—to support security best practices and help resolve issues as they arise. You’ll also have opportunities to grow your technical skills, work with modern security technologies, and contribute to projects that improve our security posture over time. This is a hands-on role where curiosity, teamwork, and attention to detail are just as important as technical knowledge. If you're interested in a role that blends security engineering and SaaS analysis, this is a great opportunity to build experience and make an impact. RESPONSIBILITIES SaaS Security Analyst Responsibilities Posture Monitoring Across SaaS Applications : Work closely with SaaS application owners and stakeholders and help drive down SaaS security risk findings especially in IAM & access control hygiene such as least privilege enforcement, manage access lifecycle, and implement MFA and role-based access. SaaS Tooling Integration : Integrate posture management tools with existing infrastructure for real-time visibility. Misconfiguration Detection & Remediation : Identify risks in SaaS environments and lead remediation with SaaS owners. Data Flow & Third-party App Oversight : Monitor app integrations and third-party data sharing to minimize exposure. Security Awareness & Enablement : Act as a knowledge resource to help teams adopt secure usage practices for cloud applications. Support Risk Reviews & Compliance Audits : Assist with vendor security reviews, policy enforcement, and audit readiness for SaaS platforms. Security Operations Engineer Responsibilities Manage & Monitor Security Tools : Operate and maintain platforms like EDR, web content filtering, certificate issuer, domain registrar, SaaS security posture management, DMARC, DKIM, etc. System Administration & Runbooks & Enhancements: Execute repeatable tasks on security systems and services (e.g., log ingestion, user provisioning, policy enforcement, proficient with all security toolings) using documented runbooks. Suggest and implement improvements to reduce manual effort and errors. Security Ticket Queue Ownership : Prioritize and resolve service and escalation tickets with SLA accountability. Tool Integration & Automation : Script automations and integrate tools to streamline workflows using Python, PowerShell, etc. Security Strategy Collaboration : Partner with architects, developers, and the SOC to align on infrastructure security, emerging risks, and tool performance. Drive Performance Testing : Conduct stress tests of tooling to ensure robustness without impeding innovation or daily operations. WHAT YOU’LL NEED TO BRING TO THIS ROLE. 5–7+ years of experience in cybersecurity, security operations, or infrastructure security roles. Strong background in IT systems (Windows, Linux, Unix) and cloud platforms (AWS, Azure, Google Cloud). Proven experience operating security operations technology stack toolings. Proficient understanding of compliance obligations and ability to align technical controls with CIS, MITRE, and NIST standards. Proficiency in scripting (Python, PowerShell, Shell) to support automation and integration. DevOps and CI/CD awareness is a plus. CISSP (preferred), CISM, or SANS (GCIH, GCIA) certifications. Security+, AWS/Azure cloud certifications, or vendor-specific security credentials are a bonus. Excellent communicator capable of translating technical issues into business risks and actions. Highly collaborative, with a track record of leading initiatives across multiple teams. Adaptive, trustworthy, and proactive in problem-solving. Bachelor’s degree in Computer Science, Information Assurance, MIS, or a related field—or equivalent experience. We are primarily an in-office environment and therefore, you will be expected to work from the Santa Clara, CA or Lehi, Utah office in compliance with Pure’s policies, unless you are on PTO, or work travel, or other approved leave. #LI-TH3, #LI-ONSITE Salary ranges are determined based on role, level and location. For positions open to candidates in multiple geographical locations, the base salary range is reflective of the labor market across the applicable locations. This role may be eligible for incentive pay and/or equity. There is no application deadline and we accept applications on an ongoing basis until the job is filled. The annual base salary range is: $114,000 - $248,000 USD WHAT YOU CAN EXPECT FROM US: Pure Innovation : We celebrate those who think critically, like a challenge and aspire to be trailblazers. Pure Growth : We give you the space and support to grow along with us and to contribute to something meaningful. We have been Named Fortune's Best Large Workplaces in the Bay Area, Fortune's Best Workplaces for Millennials and certified as a Great Place to Work! Pure Team : We build each other up and set aside ego for the greater good. And because we understand the value of bringing your full and best self to work, we offer a variety of perks to manage a healthy balance, including flexible time off, wellness resources and company-sponsored team events. Check out purebenefits.com for more information. ACCOMMODATIONS AND ACCESSIBILITY: Candidates with disabilities may request accommodations for all aspects of our hiring process. For more on this, contact us at if you’re invited to an interview. WHERE DIFFERENCES FUEL INNOVATION: We’re forging a future where everyone finds their rightful place and where every voice matters. Where uniqueness isn’t just accepted but embraced. That’s why we are committed to fostering the growth and development of every person, cultivating a sense of community through our Employee Resource Groups and advocating for inclusive leadership. At Pure Storage, diversity, equity, inclusion and sustainability are part of our DNA because we believe our people will shape the next chapter of our success story. Pure Storage is proud to be an equal opportunity employer. We strongly encourage applications from Indigenous Peoples, racialized people, people with disabilities, people from gender and sexually diverse communities, and people with intersectional identities. We also encourage you to apply even if you feel you don’t match all of the role criteria. If you think you can do the job and feel you’re a good match, please apply. Create a Job Alert Interested in building your career at Pure Storage? Get future opportunities sent straight to your email. Apply for this job * indicates a required field First Name * Last Name * Email * Phone * Location (City) Resume/CV * Enter manually Accepted file types: pdf, doc, docx, txt, rtf Enter manually Accepted file types: pdf, doc, docx, txt, rtf Education School Select. Degree Select. Select. Have you previously worked for Pure Storage? * Select. Does the deemed export rule affect your employment by Pure? * Select. US export law restricts Pure from employing citizens of sanctioned nations (such as Syria, Cuba, Iran, and North KoreaFULL LIST ) who do not hold a second nationality or permanent residence in a non-sanctioned nation. Does this rule affect your employment by Pure? Are you authorized to work in the country you are applying to work in? * Select. Will you now or in the future require sponsorship for employment visa status? * Select. Voluntary Self-Identification For government reporting purposes, we ask candidates to respond to the below self-identification survey.Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiringprocess or thereafter. Any information that you do provide will be recorded and maintained in aconfidential file. As set forth in Pure Storage’s Equal Employment Opportunity policy,we do not discriminate on the basis of any protected group status under any applicable law. If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection.As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measurethe effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categoriesis as follows: A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability. A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service. An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense. An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985. Select. Voluntary Self-Identification of Disability Form CC-305 Page 1 of 1 OMB Control Number 1250-0005 Expires 04/30/2026 Voluntary Self-Identification of Disability Form CC-305 Page 1 of 1 OMB Control Number 1250-0005 Expires 04/30/2026 Why are you being asked to complete this form? We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years. Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at . How do you know if you have a disability? A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability. Disabilities include, but are not limited to: Alcohol or other substance use disorder (not currently using drugs illegally) Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDS Blind or low vision Cancer (past or present) Cardiovascular or heart disease Celiac disease Cerebral palsy Deaf or serious difficulty hearing Diabetes Disfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disorders Epilepsy or other seizure disorder Gastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndrome Intellectual or developmental disability Mental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSD Missing limbs or partially missing limbs Mobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supports Nervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS) Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilities Partial or complete paralysis (any cause) Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysema Short stature (dwarfism) Traumatic brain injury Disability Status Select. PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete. #J-18808-Ljbffr

Security Operations Engineer, Zscaler SASE Specialist We’re in an unbelievably exciting area of tech and are fundamentally reshaping the data storage industry. Here, you lead with innovative thinking, grow along with us, and join the smartest team in the industry. This type of work—work that changes the world—is what the tech industry was founded on. So, if you're ready to seize the endless opportunities and leave your mark, come join us. SHOULD YOU ACCEPT THIS CHALLENGE. Working in an agile ecosystem, the Zscaler Secure Access Service Edge (SASE) SME and Security Operations Engineer comfortably uses their networking expertise and understanding of the dynamic environment with a variety of technologies, people, and processes to expediently design, deploy, troubleshoot and solve Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) issues by asking the right questions in the right scenarios and engaging with the right technical groups as needed. While their primary role is a Zscaler SASE SME, they are also adept in security operations support functions of tool administrations, integrations, and automations. The successful candidate thrives on the challenge of troubleshooting, isolating, and resolving networking, systems, or applications related issues and has the uncanny ability to connect and communicate effectively and clearly with relevant groups from users to technical groups to management. S/he has the ability to develop simple yet creative solutions for systemic problems. When not slaying or taming the Zscaler dragon, the candidate enjoys managing and perfecting security operations, ensuring timely resolutions and optimizing known issue patterns. Additionally, the Security Operations Engineer ensures operational excellence with runbooks, process creation, and automates the boring stuff for maximum efficiency. About the Role We’re seeking a Zscaler SASE Specialist and Security Operations Engineer who thrives in an agile, dynamic environment. Leveraging extensive networking expertise, you will play a dual role: As a Zscaler Subject Matter Expert (SME) , you will design, deploy, and troubleshoot Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) solutions. As a Security Operations Engineer , you’ll manage security tools, automate processes, and ensure operational excellence. This role demands technical mastery, creative problem-solving, and exceptional communication skills. You’ll troubleshoot complex issues, streamline security operations, and proactively improve processes. Key Responsibilities Design, deploy, and troubleshoot ZIA/ZPA solutions with a focus on system optimization and incident resolution. Serve as the primary point of contact for Zscaler-related support tickets, ensuring timely resolution and adherence to SLAs. Administer Zscaler configurations, including firewall rules, URL filtering, and policy changes. Analyze configurations and alerts to recommend tuning adjustments and potential detection rules. Generate actionable metrics that demonstrate clear security outcomes. Create and update runbooks and support documentation. Security Operations Support Duties Manage and prioritize the security ticket queue to ensure SLA compliance and accountability. Execute system administration tasks using established runbooks, identifying opportunities for enhancement. Assist with integrating and automating security tools to optimize workflows. Support incident management, change control, and risk management processes. WHAT YOU’LL NEED TO BRING TO THIS ROLE. Technical Expertise Comprehensive knowledge of security controls, LAN/WAN networking, and cloud/public cloud implementations. Proficiency in networking protocols (HTTP, SMTP, FTP, DNS), troubleshooting tools (Ping, Traceroute, tcpdump, Wireshark), and VPN technologies. Strong understanding of security technologies like firewalls, IDS/IPS, web proxies, SIEM, and endpoint security. Experience with operating systems (macOS, Windows, Linux). Familiarity with scripting languages (Python, Shell, Perl). Certifications (Preferred) Zscaler Certified Cloud Administrator (ZCCA-IA), Zscaler Certified Cloud Professional (ZCCP), or equivalent Zscaler certifications. Industry certifications such as CompTIA Network+, CCNA/CCNP, CISSP, or Security+. Soft Skills Exceptional verbal and written communication. Strong collaboration and stakeholder engagement. Creative problem-solving and the ability to propose innovative solutions. Nice-to-Have Skills Experience with additional Zscaler products (e.g., ZDX). Incident response, threat triage, and log analysis expertise. Familiarity with cloud security, and data correlation. We are primarily an in-office environment and therefore, you will be expected to work from the Santa Clara, California or the Lehi, Utah office in compliance with Pure’s policies, unless you are on PTO, or work travel, or other approved leave. Relocation Assistance Provided. #LI-ONSITE Salary ranges are determined based on role, level and location. For positions open to candidates in multiple geographical locations, the base salary range is reflective of the labor market across the applicable locations. This role may be eligible for incentive pay and/or equity. There is no application deadline and we accept applications on an ongoing basis until the job is filled. The annual base salary range is: $128,000 - $272,000 USD WHAT YOU CAN EXPECT FROM US: Pure Innovation : We celebrate those who think critically, like a challenge and aspire to be trailblazers. Pure Growth : We give you the space and support to grow along with us and to contribute to something meaningful. We have been Named Fortune's Best Large Workplaces in the Bay Area, Fortune's Best Workplaces for Millennials and certified as a Great Place to Work! Pure Team : We build each other up and set aside ego for the greater good. And because we understand the value of bringing your full and best self to work, we offer a variety of perks to manage a healthy balance, including flexible time off, wellness resources and company-sponsored team events. Check out purebenefits.com for more information. ACCOMMODATIONS AND ACCESSIBILITY: Candidates with disabilities may request accommodations for all aspects of our hiring process. For more on this, contact us at if you’re invited to an interview. WHERE DIFFERENCES FUEL INNOVATION: We’re forging a future where everyone finds their rightful place and where every voice matters. Where uniqueness isn’t just accepted but embraced. That’s why we are committed to fostering the growth and development of every person, cultivating a sense of community through our Employee Resource Groups and advocating for inclusive leadership. At Pure Storage, diversity, equity, inclusion and sustainability are part of our DNA because we believe our people will shape the next chapter of our success story. Pure Storage is proud to be an equal opportunity employer. We strongly encourage applications from Indigenous Peoples, racialized people, people with disabilities, people from gender and sexually diverse communities, and people with intersectional identities. We also encourage you to apply even if you feel you don’t match all of the role criteria. If you think you can do the job and feel you’re a good match, please apply. Create a Job Alert Interested in building your career at Pure Storage? Get future opportunities sent straight to your email. Apply for this job indicates a required field First Name * Last Name * Email * Phone * Location (City) Resume/CV * Enter manually Accepted file types: pdf, doc, docx, txt, rtf Enter manually Accepted file types: pdf, doc, docx, txt, rtf Education School Select. Degree Select. Select. Have you previously worked for Pure Storage? * Select. Does the deemed export rule affect your employment by Pure? * Select. US export law restricts Pure from employing citizens of sanctioned nations (such as Syria, Cuba, Iran, and North KoreaFULL LIST ) who do not hold a second nationality or permanent residence in a non-sanctioned nation. Does this rule affect your employment by Pure? Are you authorized to work in the country you are applying to work in? * Select. Will you now or in the future require sponsorship for employment visa status? * Select. Voluntary Self-Identification For government reporting purposes, we ask candidates to respond to the below self-identification survey.Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiringprocess or thereafter. Any information that you do provide will be recorded and maintained in aconfidential file. As set forth in Pure Storage’s Equal Employment Opportunity policy,we do not discriminate on the basis of any protected group status under any applicable law. If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection.As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measurethe effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categoriesis as follows: A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability. A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service. An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense. An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985. Select. Voluntary Self-Identification of Disability Form CC-305 Page 1 of 1 OMB Control Number 1250-0005 Expires 04/30/2026 Voluntary Self-Identification of Disability Form CC-305 Page 1 of 1 OMB Control Number 1250-0005 Expires 04/30/2026 Why are you being asked to complete this form? We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years. Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at . How do you know if you have a disability? A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability. Disabilities include, but are not limited to: Alcohol or other substance use disorder (not currently using drugs illegally) Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDS Blind or low vision Cancer (past or present) Cardiovascular or heart disease Celiac disease Cerebral palsy Deaf or serious difficulty hearing Diabetes Disfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disorders Epilepsy or other seizure disorder Gastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndrome Intellectual or developmental disability Mental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSD Missing limbs or partially missing limbs Mobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supports Nervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS) Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilities Partial or complete paralysis (any cause) Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysema Short stature (dwarfism) Traumatic brain injury Disability Status Select. PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete. #J-18808-Ljbffr

Remote - Please Note: This is a remote position available in the state listed on this job. Additionally, employment with BambooHR is contingent on passing both a background and credit check.

Essential Job Duties

The Security Analyst II is responsible for maintaining and improving the security posture of the organization by protecting system boundaries, keeping computer systems and network devices hardened against attacks, and securing highly sensitive data. This role involves analyzing security measures, identifying potential vulnerabilities, and implementing solutions to mitigate risks. The Security Analyst II will work closely with IT teams, management, and other stakeholders to ensure the organization's security policies and procedures are effectively implemented and maintained.

You will:

• Own cloud security incident response, ensuring rapid and effective handling of security incidents in cloud environments.
• Monitor and analyze security alerts from various sources, including intrusion detection systems, firewalls, and other security tools.
• Conduct vulnerability assessments and penetration testing to identify potential security weaknesses.
• Investigate security incidents and breaches, perform root cause analysis, and implement corrective actions.
• Develop and maintain security policies, procedures, and guidelines in accordance with industry best practices and regulatory requirements.
• Collaborate with IT and development teams to ensure secure design and implementation of systems and applications.
• Assist in the development and delivery of security awareness training for employees.
• Stay up-to-date with the latest security trends, threats, and technologies to proactively address potential risks.
• Participate in security audits and assessments, both internal and external.
• Provide guidance and support to junior security analysts and other IT staff.
• Prepare and present reports on security incidents, vulnerabilities, and overall security posture to management.
• Leverage AI and machine learning technologies to enhance threat detection, automate routine security tasks, and improve incident response times.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field, or equivalent work experience.
• 3-5 years of experience in information security or a related field.
• Strong understanding of security principles, techniques, and technologies.
• Experience with security tools such as SIEM, IDS/IPS, firewalls, and antivirus software.
• Proficiency in identifying problems and developing effective solutions.
• Experience with AI tools to tackle cloud security challenges.
• Proficiency with AWS and cloud security best practices.
• Familiarity with regulatory requirements and industry standards such as ISO 27001, NIST, GDPR, and PCI-DSS.
• Excellent problem-solving skills and attention to detail.
• Strong communication skills, both written and verbal.
• Relevant certifications such as CISSP, CISM, GSEC, CEH, or CompTIA Security+ are preferred.

• This position may require occasional on-call work or after-hours support.
• The role may involve working in a high-pressure environment to address security incidents and threats.

• You can patiently help others who are having difficult technical problems that may take a significant amount of time
• You love technology and see it as a hobby on top of a career
• You are an AWS Cloud Practitioner
• AI at BambooHR: At BambooHR, we believe in leveraging cutting-edge technology to empower people and transform HR. We're actively integrating AI into our solutions and workflows to enhance efficiency and drive innovation. To that end, we're looking to our existing team members and future hires to share this forward-thinking mindset: individuals who are curious about AI's potential, eager to learn and adapt, and ready to explore how intelligent tools can elevate their work along with BambooHR'simpact on setting people free to do great work. Join us in reimagining the future of HR!

• A Great Company Culture that has been recognized by multiple organizations like Inc, and Salt Lake Tribune
• Comprehensive health, life, and disability insurance
• Generous leave policies that include 4 weeks of vacation, 12 company holidays, parental leave, and volunteer time off so you can enjoy quality of life
• 401k plans with up to 6% company match
• $2000 Paid-Paid Vacation bonus
• EAP through Headspace
• Check out all our benefits that benefit you

Our mission is to SAVE AND IMPROVE LIVES BY EMPOWERING HEALTHCARE CONSUMERS. Come be part of remarkable.

How you can make a difference

The Senior Security IAM Analyst plays a key role in implementing and enhancing HealthEquity's enterprise-wide Identity and Access Management (IAM) Program. This position focuses on improving processes related to access certification, reconciliation, and administration, while also supporting behavioral analytics. The analyst will identify IAM risks and improvement opportunities, and collaborate with business and technology teams to ensure compliance and secure access management.

What you'll be doing

Access Governance:
• Collaborate with Internal Audit, IT Compliance, IAM Architecture, IAM Access Operations, and business units to gather audit evidence and conduct walkthroughs.
• Develop and implement access governance controls to meet regulatory and security standards.
• Execute role and user access certifications to ensure SOX and SOC compliance.
• Design, develop, and execute SOX IT General Controls (ITGCs).
• Serve as a liaison for internal and external auditors regarding SOX/SOC assessments.
• Work with application owners to resolve business and technical issues related to ITGCs.
• Identity Lifecycle Management:
• Enhance and implement IAM controls for identity lifecycle processes (e.g., access requests, administration, termination monitoring, reconciliation).
• Identify automation opportunities and support the design and validation of automated processes.
• Lead cross-functional teams to complete IAM projects and enforce best practices and regulatory standards.
• Risk Management:
• Collaborate with the cybersecurity team to respond to incidents and implement corrective actions.
• Promote a security-first culture while maintaining customer service standards.
• Act as a subject matter expert (SME) in IAM, identifying risks and recommending mitigation strategies.
• Team Collaboration:
• Partner with IAM architecture, access operations, IT development, and business units to implement and improve IAM controls.
• Coordinate with cross-functional teams to support IAM initiatives.

What you will need to be successful

• Bachelor's degree in Information Systems, Computer Science, Computer Engineering, or a related field, or equivalent experience.
• Minimum of 5 years of experience in access administration for on-premises, cloud, and third-party applications.- Strong understanding of IAM principles and tools such as SailPoint IdentityNow, NERM, BeyondTrust, Active Directory, and Entra ID.
• Proficient in documenting standard operating procedures.
• Experience leading audit walkthroughs and responding to audit inquiries.
• Skilled in Excel and PowerShell scripting.
• Basic knowledge of server and database administration.
• Ability to work in a fast-paced environment, manage priorities, and influence peers and leadership.
• Strong analytical, communication, and problem-solving skills.- Preferred certifications include CISA, CISSP, CISM, CompTIA Security+, or similar.

#LI-Remote

This is a remote position.

The actual compensation offer is determined based on job-related knowledge, education, skills, experience, and work location. This position will be eligible for performance-based incentives as part of the total compensation package, in addition to a full range of benefits including:

• Medical, dental, and vision

• HSA contribution and match

• Dependent care FSA match

• Uncapped paid time off

• Paid parental leave

• 401(k) match

• Personal and healthcare financial literacy programs

• Ongoing education& tuition assistance

• Gym and fitness reimbursement

• Wellness program incentives

Why work with HealthEquity

HealthEquity has a vision that by2030 we will make HSAs as wide-spread and popular as retirement accounts. We are passionate about providing a solution that allows American families to connect health and wealth. Join us and discover a work experience where the person is valued more than the position. Click here to learn more.

You belong at HealthEquity!

HealthEquity, Inc. is an equal opportunity employer, and we are committed to being an employer where no matter your background or identity - you feel welcome and included. We ensure equal opportunity for all applicants and employees without regard to race, age, color, religion, sex, sexual orientation, gender identity, national origin, status as a qualified individual with a disability, veteran status, or other legally protected characteristics. HealthEquity is a drug-free workplace. For more information about our EEO policy, or about HealthEquity's applicant disability accommodation, drug-free-workplace, background check, and E-Verify policies, please visit our Careers page.

HealthEquity uses Microsoft Copilot to transcribe screening interviews between candidates and their direct Talent Partner for note taking and interview summaries. By scheduling a screening interview with us, you consent to Microsoft Copilot's AI technology recording and transcribing your interview with your Talent Partner. This information will be reviewed for accuracy and then used by HealthEquity to summarize the interview, ensure accuracy, and facilitate our hiring process. We take privacy seriously. You have the option to opt out. If you wish to opt out of this Microsoft Copilot transcription, please notify your Talent Partner in advance of the interview. If we do not receive an opt-out request from you, we will assume that you consent to the use of Microsoft Copilot.

HealthEquity is committed to your privacy as an applicant for employment. For information on our privacy policies and practices, please visit HealthEquity Privacy.

At Motorola Solutions, we believe that everything starts with our people. We're a global close-knit community, united by the relentless pursuit to help keep people safer everywhere. Our critical communications, video security and command center technologies support public safety agencies and enterprises alike, enabling the coordination that's critical for safer communities, safer schools, safer hospitals and safer businesses. Connect with a career that matters, and help us build a safer future.

The Senior Information Security Compliance Analyst is a key member of the VS&A Information Security team, responsible for ensuring the organization maintains compliance with applicable regulatory, statutory, and contractual requirements, as well as internal security policies and standards. The role involves conducting assessments, monitoring compliance efforts, managing risk, and providing expert guidance to stakeholders to ensure the organization's information security posture aligns with industry best practices and frameworks. The ideal candidate will have a strong understanding of compliance frameworks, excellent analytical skills, and the ability to communicate effectively with both technical and non-technical stakeholders.

Key Responsibilities:

Compliance Management:

• Ensure the organization complies with relevant regulatory requirements (e.g., GDPR, HIPAA, CCPA/CPRA) and industry standards (e.g., ISO 27001, SOC 2, NIST CSF, PCI DSS).
• Develop, implement, and maintain information security policies, standards, and guidelines.
• Conduct regular audits and assessments to identify gaps and ensure adherence to compliance frameworks.

Risk Assessment and Mitigation:

• Participate in risk assessments to evaluate potential security threats and vulnerabilities.
• Collaborate with cross-functional teams to remediate compliance gaps and reduce risks.
• Track and manage risk exceptions, ensuring appropriate documentation and approvals.

Audit Support:

• Act as the primary liaison for internal and external audits, including regulatory audits, client security assessments, and third-party audits.
• Prepare and provide evidence to demonstrate compliance with applicable standards and requirements.
• Monitor and track the completion of audit findings and corrective actions.

Continuous Improvement:

• Stay up to date with changes in regulatory and compliance requirements, as well as industry trends.
• Recommend and implement improvements to the compliance program to address evolving risks and requirements.
• Participate in the development and enhancement of security and compliance tools, processes, and frameworks.

Preferred Knowledge:

• Understanding of EU and UK compliance regulations, laws and frameworks.

Qualifications:

Education and Experience:

• Bachelor's degree in Information Security, Computer Science, Information Technology, or a related field; or equivalent work experience.
• 5+ years of experience in information security, compliance, or related roles.
• Experience working with regulatory requirements and industry frameworks (e.g., GDPR, HIPAA, ISO 27001, NIST, SOC 2, PCI DSS).

Technical Skills:

• Strong understanding of risk assessment methodologies, control frameworks, and compliance requirements.
• Hands-on experience with compliance management tools and GRC platforms.
• Proficiency in participating in audits and managing remediation plans.
• Familiarity with cloud security and third-party risk management.
• Comfortable using AI tools for compliance efforts

Certifications (Preferred):

• Certified Information Systems Auditor (CISA)
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)

Target Base Salary Range: $100,000 - $150,000

Consistent with Motorola Solutions values and applicable law, we provide the following information to promote pay transparency and equity. Pay within this range varies and depends on job-related knowledge, skills, and experience. The actual offer will be based on the individual candidate.

#LI-CA1

• Bachelors Degree
• 5+ years of experience in information security, compliance, or related roles
• Legal authorization to work in the U.S. indefinitely is required. Employer work permit sponsorship is not available for this position

Our U.S.Benefitsinclude:

• Incentive Bonus Plans
• Medical, Dental, Visionbenefits
• 401K
• 10 Paid Holidays
• GenerousPaidTime Off Packages
• Employee Stock Purchase Plan
• PaidParental & Family Leave
• and more!

EEO Statement

Motorola Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion or belief, sex, sexual orientation, gender identity, national origin, disability, veteran status or any other legally-protected characteristic.

We are proud of our people-first and community-focused culture, empowering every Motorolan to be their most authentic self and to do their best work to deliver on the promise of a safer world. If you'd like to join our team but feel that you don't quite meet all of the preferred skills, we'd still love to hear why you think you'd be a great addition to our team.

We're committed to providing an inclusive and accessible recruiting experience for candidates with disabilities, or other physical or mental health conditions. To request an accommodation, please complete thisReasonable Accommodations Formso we can assist you.

At Qualtrics, we create software the world's best brands use to deliver exceptional frontline experiences, build high-performing teams, and design products people love. But we are more than a platform-we are the creators and stewards of the Experience Management category serving over 18K clients globally. Building a category takes grit, determination, and a disdain for convention-but most of all it requires close-knit, high-functioning teams with an unwavering dedication to serving our customers.

When you join one of our teams, you'll be part of a nimble group that's empowered to set aggressive goals and move fast to achieve them. Strategic risks are encouraged and complex problems are solved together, by passing the mic and iterating until the best solution comes to light. You won't have to look to find growth opportunities-ready or not, they'll find you. From retail to government to healthcare, we're on a mission to bring humanity, connection, and empathy back to business. Join over 5,000 people across the globe who think that's work worth doing.

GRC Analyst, Security - Provo

Why We Have This Role

We create software that the world's best brands use to deliver exceptional frontline experiences, build high-performing teams, and design products people love. Serving over 20,000 clients globally, we are more than a platform-we are the creators and stewards of the Experience Management category. This GRC Security Analyst role is essential to maintaining and advancing our governance, risk, and compliance posture amid rapid growth and evolving regulatory landscapes. You will collaborate closely with cross-functional teams including legal, security, product, and compliance to identify, assess, and mitigate risks, ensuring Qualtrics meets rigorous security certifications and regulatory requirements. Your work will directly impact how we protect our customers and enable trusted innovation.

How You'll Find Success

• Manage and maintain compliance with industry standards such as FedRAMP, ISO 27001, SOC 2, HITRUST, and emerging AI governance frameworks.

• Take initiative to understand complex compliance frameworks and work entrepreneurially to implement effective controls.

• Communicate clearly and influence stakeholders across teams to build trust and alignment.

• Apply strong analytical skills to assess risks and develop actionable remediation plans.

• Collaborate effectively with legal, security, product, and customer teams.

• Navigate and support external audits, customer audits and certification processes.

• Demonstrate ownership of governance processes and continuous improvement.

How You'll Grow

• Deepen expertise in commercial and/ federal security compliance programs which can include ISO 27001, TISAX, FedRAMP High, IRAP and others.

• Expand leadership and project management skills through cross-team initiatives and audit coordination.

• Gain exposure to AI security and privacy compliance aligned with NIST AI Risk Management Framework.

• Develop advanced skills in risk assessment, supplier risk management, and security assurance.

Things You'll Do

• Lead, assist and coordinate internal and external security audits and assessments to achieve and maintain certifications.

• Analyze and interpret regulatory requirements across multiple frameworks and translate them into actionable compliance programs.

• Partner with product and engineering teams to ensure security controls meet customer and regulatory expectations.

• Monitor and report on remediation progress and compliance metrics.

• Support customer security reviews, questionnaires, and risk assessments.

• Drive continuous improvement through automation in GRC processes, tools, and documentation.

What We're Looking For On Your Resume

• Bachelor's degree in IT, Information Systems, or related discipline.

• 1-3 years of experience in governance, risk, and compliance roles within information security.

• Experience with IT security assessments, control testing, and compliance programs such as FedRAMP Moderate/High, PCI and SOC 2.

• Familiarity with other assessments such as ISO 27001, HITRUST, SSAE18, Protected B, SOX, or TISAX is a plus.

• Proven ability to work cross-functionally and influence without direct authority.

• Strong written and verbal communication skills.

• Project management experience managing partner expectations and audit schedules.

• Relevant security certifications are a plus, such as SSCP, Security+, CISSP, CISM, CIPP, or CISA.

• Experience with AI models is a plus.

What You Should Know About This Team

• The GRC team is a collaborative, high-performing group dedicated to protecting Qualtrics and its customers through proactive risk management and compliance.

• We work closely with legal, security, product, and customer success teams, as well as external auditors and partners.

• The team embraces strategic risk-taking and continuous learning.

• You will be positioned as a key enabler of business success through security assurance and compliance excellence.

Our Team's Favorite Perks and Benefits

• Access to ongoing professional development, certifications, and security training.

• Hybrid work model with purposeful in-office collaboration days.

• Inclusive culture committed to diversity, equity, and belonging.

• Competitive health, wellness, and financial benefits.

• Frequent team events, creative office spaces, and a strong emphasis on work/life integration.

The Qualtrics Hybrid Work Model : Our hybrid work model is elegantly simple: we all gather in the office three days a week; Mondays and Thursdays, plus one day selected by your organizational leader. These purposeful in-person days in thoughtfully designed offices help us do our best work and harness the power of collaboration and innovation. For the rest of the week, work where you want, owning the integration of work and life.

Qualtrics is an equal opportunity employer meaning that all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other protected characteristic.

?

Applicants in the United States of America have rights under Federal Employment Laws:Family & Medical Leave Act ( ,Equal Opportunity Employment ( ,Employee Polygraph Protection Act (

Qualtrics is committed to the inclusion of all qualified individuals. As part of this commitment, Qualtrics will ensure that persons with disabilities are provided with reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please let your Qualtrics contact/recruiter know.

Not finding a role that's the right fit for now? Qualtrics Insiders is the one-stop shop for all things Qualtrics Life. Sign up for exclusive access to content created with you in mind and get the scoop on what we have going on at Qualtrics - upcoming events, behind the scenes stories from the team, interview tips, hot jobs, and more. No spam - we promise! You'll hear from us two times a month max with fresh, totally tailored info - so be sure to stay connected as you explore your best role and company fit.