Senior Information Security Specialist

Job Description

Halcyon is seeking a Senior Information Security Specialist to advance its cybersecurity and GRC programs. The ideal candidate will play a crucial role in strengthening the company's security posture by coordinating across teams, managing third-party risk, supporting compliance initiatives, and maturing internal security processes and documentation.

Responsibilities:

• Perform and maintain third-party risk assessments and track vendor remediation activities.
• Support coordination and analysis of internal and external security testing.
• Develop, track, and follow up on corrective action plans for identified security gaps or audit findings.
• Collaborate with managed security service providers and internal stakeholders to monitor and manage security events and escalations.
• Partner with engineering and operations teams to ensure implementation of security and compliance requirements.
• Assist in developing, maintaining, and communicating information security policies, standards, and procedures.
• Coordinate security incident response planning, disaster recovery testing, and business continuity exercises.
• Monitor and support enforcement of technical and administrative security controls across the enterprise.
• Stay current with evolving security and privacy regulations and frameworks.

Requirements:

• 5+ years of experience in information security, GRC, or IT risk management.
• Strong understanding of cybersecurity concepts, controls, and risk frameworks.
• Demonstrated experience with third-party risk management processes and tooling.
• Proven ability to coordinate security testing and vulnerability management efforts.
• Excellent communication, documentation, and cross-functional collaboration skills.
• Ability to assess and implement technical and administrative controls across cloud and hybrid environments.
• Experience with regulatory compliance and audit support in fast-paced environments.

Halcyon offers:

• Comprehensive healthcare (medical, dental, and vision) with premiums paid in full for employees and dependents.
• 401k plan with a generous employer contribution.
• Short and long-term disability coverage, basic life and AD&D insurance plans.
• Medical and dependent care FSA options.
• Flexible PTO policy.
• Parental leave.
• Generous equity offering.