Information Security Analyst

Roadie, a UPS Company, is a logistics management and crowdsourced delivery platform. Founded in 2014, Roadie offers businesses fast, flexible and asset-light logistics solutions for last-mile delivery. Roadie enables local delivery to more than 95% of U.S. households by providing access to more than 200,000 independent drivers nationwide – allowing businesses to offer their customers delivery optionality for almost any industry, from airlines to artisans.

Under the supervision of the Head of Tech Ops, the Information Security Analyst is responsible for ensuring the security and integrity of Roadie’s information systems. This role includes conducting audits for HIPAA and SOC 2 compliance, analyzing security systems and applications, and assisting with helpdesk tickets related to information security. The ideal candidate will have a strong understanding of security protocols, compliance requirements, and effective problem-solving skills.

What You’ll Do

• Conduct regular audits to ensure compliance with Roadie policies, procedures, standards, and external controls such as HIPAA and SOC 2
• Develop, implement, and maintain policies and procedures to ensure ongoing compliance
• Prepare and maintain documentation for all audit processes and findings
• Coordinate with external auditors and facilitate the audit process
• Identify and rectify compliance gaps, ensuring all corrective actions are taken

• Partner with InfoSec team to monitor security systems and analyze potential threats or vulnerabilities
• Investigate and respond to security incidents, providing detailed reports and recommendations
• Perform regular vulnerability assessments
• Maintain up-to-date knowledge of cybersecurity threats and trends
• Assist with help desk tickets related to information security, providing timely and effective solutions
• Support end-users in resolving security-related issues
• Develop and enforce security policies and procedures
• Conduct training sessions and create educational materials to raise awareness of security protocols,best practices and policies among employees
• Stay informed about the latest industry standards and updates to compliance requirements
• Work closely with IT and other departments to ensure comprehensive security measures are in place
• Communicate effectively with stakeholders about security risks and mitigation strategies
• Provide regular updates and reports to senior management on security status and incidents

What You Bring

• 2-3 years of experience in information security, including audit and compliance work
• Familiarity with HIPAA and SOC 2 compliance requirements
• Strong understanding of security protocols, systems, and best practices
• Experience with vulnerability assessment tools and techniques
• Experience with incident response methodology
• Excellent analytical, problem-solving, and attention to detail
• Strong written and verbal communication skills, with demonstrated ability to communicate with stakeholders at all levels
• Good judgment with ability to handle sensitive information with discretion and confidentiality
• A bias for action, thriving in a fast-paced environment
• Relevant certifications such as CISSP, CISM, or CISA are preferred

Why Roadie?

• Competitive compensation packages
• 100% covered health insurance premiums for yourself
• 401k with company match
• Tuition and student loan repayment assistance (that’s right - Roadie will contribute directly to your existing student loans!)
• Flexible work schedule with unlimited PTO
• Monthly 3-day weekends
• Monthly WFH stipend
• Paid sabbatical leave- tenured team members are given time to rest, relax, and explore
• The technology you need to get the job done