Security Analyst
Validately
We’re UserTesting—the leader in human insight. Our mission is to help organizations craft exceptional customer experiences through fast, actionable feedback.
We empower teams to build the best products and experiences by embedding real human perspectives into every stage of the development process—from ideation to launch. With the world’s strongest participant network, AI-powered analysis, expert services, and seamless integrations, we help companies eliminate guesswork, align stakeholders, and bring customer needs into sharp focus.
Trusted by more than 3,000 organizations worldwide—including 75 of the Fortune 100—UserTesting delivers measurable business outcomes, reduces risk, and helps teams deliver with confidence. Joining our team means being part of a passionate group focused on transforming how companies understand and connect with their customers.
Let’s build experiences people love—together.
Duties/Responsibilities:
Assist customers in understanding and evaluating UserTesting's security profile, both in writing and on calls.
Triage security alerts from security monitoring tools (AV, DLP, SOCaaS).
Respond to security incidents and help keep track of post-incident tasks.
Participate in internal audits and support external audits.
Carry out third-party risk management assessments and risk reviews of external vendors.
Identify and communicate current and emerging security threats.
Identify security gaps in existing and proposed technologies and recommend changes or enhancements.
Contribute to the design and implementation of enterprise-class security systems.
Demonstrates UserTesting’s values through work product and within day to day team interactions
Required Skills/Abilities:
Strong analytical and problem-solving skills.
Strong verbal and written communication skills.
Strong interpersonal and customer communication skills.
Competence and Experience in 1-2 of the following areas:
Incident Response, Third Party Risk Management, Compliance, Vulnerability Management, Data Loss Prevention (DLP), Auditing, Privacy Operations, Identity Access Management, Customer Support
Desirable but not required:
Experience with Security frameworks such as NIST CSF, ISO 27001, SOC2
Experience maintaining policies, procedures, standards and guidelines
Previous experience working with risk assessment methodologies
Physical Requirements:
N/A
Other duties:
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.
UserTesting is an Equal Opportunity Employer and a participant in the U.S. Federal E-Verify program. Women, minorities, individuals with disabilities and protected veterans are encouraged to apply. We welcome people of different backgrounds, experiences, abilities and perspectives. UserTesting will consider qualified applicants with criminal histories in a manner consistent with the San Francisco Fair Chance Ordinance, as applicable.