CLEAR’s mission is to strengthen security and create frictionless experiences for consumers.  We believe you are you and by using your biometrics - your fingerprints, eyes, and face - we keep you moving.  Imagine a world where you can do virtually everything you need to – breeze through the airport, buy a beer at the game, check-in at the doctor’s office, access your office building, and more – without ever pulling out your wallet or phone. Now in 60+ airports and other venues nationwide, you are your ID, credit card, ticket, reservation and more with CLEAR.

We’re defining and leading an entirely new industry, obsessing over our customers, and investing in great people to lead the way. Recently named on CNBC’s Disruptor 50 List and winner of the SXSW Interactive Innovation Award, we're working tirelessly to create frictionless customer experiences for our 4+ million members across the country.

CLEAR is seeking a Cyber Risk Analyst. The right person for this role has a strong drive to solve security challenges within a rapidly expanding environment, and the desire to implement best-in-class security measures using cutting edge technology. This individual will work in Cyber Risk Management, alongside Security Engineering and Security Operations teams, partnering heavily with infrastructure and DevOps teams in a cloud native environment. This individual will have solid experience in cyber & IT regulatory compliance, information assurance and controls assessments, and performing and responding to IT or security audits.

What You Will Do:

  • Lead security control assessments and audits
  • Assist with risk analysis for new / enhanced technology and business processes
  • Support annual enterprise security risk analysis
  • Recommend changes to information security policies
  • Review updates to regulations, frameworks and contracts. (NIST 800-53, PCI-DSS, HIPAA)
  • Communicate updates to tech and business owners
  • Document changes to policy; such as new and enhanced controls
  • Provide tracking procedures to support policies are developed and maintained by technical and business owners
  • Respond to business partner security inquiries & audits and ensure that any findings are remediated in a timely fashion
  • Participate in the selection of information security solutions
  • Evaluate and make recommendations for new software requests for security compliance
  • Respond to inquiries from staff, administrators, service providers, site personnel and outside vendors, to provide technical assistance and support

Who You Are:

  • 3+ years of information systems security or related auditing experience
  • Experience with information systems security standards and practices
  • Familiar with risk management processes (e.g., methods for assessing and mitigating risk)
  • Expertise with cybersecurity and privacy principles and controls used to manage risks related to the use, processing, storage, and transmission of information or data
  • Conversant with system and application security risks, threats and vulnerabilities
  • Familiar with network security architecture concepts: including topology, protocols, components, and principles (e.g., application of defense-in-depth)
  • Understand technology, management, and leadership issues related to organization processes and problem solving
  • Understand the basic concepts and issues related to cyber security and its organizational impact
  • Working knowledge of cloud, container, and network security
  • Excellent oral and written communication skills in both a technical & non-technical environment
  • Strong analytical and problem-solving skills
  • Strong detail orientation, follow-through capabilities and escalation of key issues
  • Ability to work with diverse personalities within various levels of the organization
  • Ability to manage multiple issues at one time
  • Strong ability to analyze, consolidate and communicate complex technical topics to all levels of staff including but not limited to IT executives, business/technical managers, developers and system administrators in verbal and written form
  • Ability to follow documented operational procedures and independently organize, prioritize and follow-up on tasks in a high-pressure environment
  • Can work effectively in a dynamic environment where shifting priorities frequently alters work plans


Apply for this Job

* Required