Senior Security Analyst - IV

This role is ideal for a seasoned security professional (5+ years of experience) who thrives in a fast-paced environment and is passionate about reducing operational overhead through automation and process optimization.

About Citrine Informatics

At Citrine we’re using generative Artificial Intelligence to enable our customers to usher in the next generation of sustainable high-performing materials and chemicals.

We’re the leader in AI for materials and chemicals. Our no-code SaaS platform gives product developers researchers and engineers access to domain-specific data management and AI tools. Our models propose new ways to combine ingredients and processes that are most likely to outperform helping companies discover and deploy innovative sustainable high-performing materials and chemicals up to 98% faster than traditional R&D approaches.

Citrine regularly wins awards for innovation and sustainability earning spots on the CB Insights AI 100 list and the Inc. 5000 list of fastest-growing private companies in the US. Our customers include leading organizations such as LyondellBasell Braskem Grace Synthomer and Syensqo. We also collaborate with researchers from world-renowned institutions on cutting-edge research at the intersection of AI and the physical sciences.

We are ISO 27001 certified and handle sensitive customer data making security a fundamental pillar of our operations. Our security team partners with engineering compliance and customer teams to ensure a seamless efficient and secure experience .

Our team is ambitious with our goals passionate about our vision driven by our sustainability mission and eager to grow and learn from each other. We’re headquartered in California with team members throughout North America and Europe. We’re growing quickly and we’re looking for the best to join us!

About the Role

As a Senior Security Analyst you will play a critical role in optimizing security processes automating workflows and improving the efficiency of security operations . You will manage tactical security operations and strategic risk management ensuring a scalable frictionless security posture while supporting compliance automation and continuous process enhancements.

This role is ideal for a seasoned security professional (5+ years of experience) who thrives in a fast-paced environment and is passionate about reducing operational overhead through automation and process optimization .

Responsibilities

• Security Operations & Incident Response

• Continuously refine and automate security monitoring detection and response processes to improve efficiency.

• Develop and implement proactive threat detection by optimizing SIEM rules log collection and alert handling.

• Lead vulnerability management efforts ensuring a streamlined automated patching and remediation process.

• Partner with engineering teams to integrate security into DevOps workflows with minimal friction.

Governance Risk & Compliance (GRC) & Audit Management

• Own and optimize the annual ISO 27001 and similar audits ensuring minimal disruption through automation and efficient evidence collection.

• Continuously refine compliance workflows for GDPR CCPA and other regulatory requirements to improve efficiency.

• Automate security risk assessments streamlining reporting and remediation tracking.

• Develop lightweight effective security policies that support compliance without adding unnecessary complexity.

• Lead security awareness programs ensuring training is engaging relevant and easy to adopt across the company.

Security Engineering Optimization & Automation

• Identify and eliminate inefficiencies in security operations reducing manual effort and improving response times.

• Leverage automation to improve logging monitoring alerting and threat detection workflows.

• Continuously evaluate security tools and technologies prioritizing those that enhance automation and reduce operational overhead.

• Work with DevOps and engineering teams to embed security in CI/CD pipelines with minimal disruption to development velocity.

• Drive a culture of continuous improvement proactively seeking ways to make security processes leaner faster and more user-friendly.

Skills and Experience

• 5+ years of experience in a security-focused role (Security Analyst Security Engineer or similar).

• Extensive background in incident response SOC operations and cloud security (AWS preferred).

• Experience optimizing and managing security audits (ISO 27001 SOC 2 or similar).

• Hands-on expertise in identity and access management SIEM endpoint security and vulnerability management .

• Experience automating security workflows using scripting (Python Bash PowerShell) or API-based integrations.

• Demonstrated ability to balance security and usability ensuring security measures do not create unnecessary friction for users.

• Process-driven mindset always looking for ways to streamline and improve security operations.

• Excellent communication and leadership skills able to translate security concepts into actionable business-friendly solutions.

Nice-to-Haves

• Security certifications such as CISSP CISM Security+ ISO 27001 Lead Auditor or AWS Security Specialty .

• Experience in SaaS and cloud-first environments particularly in security-conscious industries.

• Knowledge of zero-trust architectures and advanced authentication mechanisms .

• Familiarity with container security (Docker Kubernetes) and DevSecOps principles .

• Studies have shown that women and underrepresented minorities are less likely to apply to jobs unless they meet every single qualification listed. Citrine Informatics is invested in creating a diverse authentic and inclusive team so if you’re excited about this role but your past experience doesn’t perfectly align with what you read above please consider applying anyways!

Our Core Values

Citrine Informatics recognizes that its most valuable asset is its people. We have created our set of Core Values to encourage support and invest in our team as they work to innovate and support a more sustainable world. Our Core Values reflect our ongoing commitment to continuously invest in nurturing our talent and our people-first approach to conducting business.

- We take pride in and recognize the successes and growth of ourselves and our colleagues. We support each other in our growth.

- We prototype and collect data to make good decisions. We question that data and are constantly iterating to find the best solution.

- We are all owners of Citrine and make decisions like owners. We work autonomously with personal and organizational accountability.

- We commit to building a diverse and inclusive community within Citrine and actively promote equity and belonging.

- We are tirelessly committed to creating value for our customers .

- We exist to help our customers accelerate the development of sustainable products that are critical to the future of both our planet and our industry.

Compensation and Pay Transparency

At Citrine we want your path to career growth to be transparent straightforward fair and easily accessible -- starting with your application and interview process. The annual salary range(s) listed below reflect the level(s) we are considering for this position (please note that there may be unique situations where you may fall outside of this range). Where you fall within the range(s) will depend on how your experience and skills align to our internal leveling system as we learn more about you throughout the interview process.

$142000 USD - $160000 USD

*Range(s) listed are for full-time employees based in the United States only.

Accommodations

Citrine is an inclusive work environment and we are committed to ensuring equal opportunity in employment for qualified persons with disabilities. Please email us at [email protected] or inform your recruiter if you require any reasonable accommodations throughout the recruiting process.

Benefits (for full-time US-based positions)

4 different medical benefit plan options

Dental Vision FSA and HSA plans

4% 401k company match

Personal financial advisor and basic free legal guidance

$5000 annual continuing education budget

$600 equipment budget

Unlimited PTO and 15 holidays

12 weeks of paid parental leave

Company-sponsored personal development courses

Mentoring Program (internal and external)

DE&I events

Swag parties entertainment budget

FLEX hours and location