Manager, IT Security Analyst
Kura Oncology, Inc.
2 hours ago
Remote friendly (United States)
United States
$156,586 - $185,630 USD yearly
IT
Reporting to the Senior Director of IT and Facilities, the IT Security Analyst is the primary operational lead for cybersecurity, vendor risk, and data privacy programs at Kura. Strengthens security posture, supports regulatory/audit requirements, and improves detection, response, and risk management in a regulated life sciences environment.
Responsibilities
- Mature cybersecurity program to meet evolving regulatory and data privacy requirements.
- Own/admin third-party risk management & data privacy platform (configuration, assessments, remediation tracking, reporting).
- Coordinate vendor security assessments and remediation.
- Operate managed security services (alert triage, incident response coordination, use case tuning, reporting).
- Lead/support security incident response (investigate, contain, remediate, document).
- Oversee vulnerability management (scanning, reporting, remediation coordination).
- Support security testing activities (assessments, penetration testing, disaster recovery exercises, tabletop simulations).
- Improve cybersecurity awareness/training.
- Evaluate and implement security tools/technologies; support patch management and monitor security controls/configurations.
- Own IT security audit readiness (evidence collection, documentation, control validation).
- Provide risk-based recommendations and stay current on threats/regulatory best practices.
Job Qualifications
- 7+ years progressive experience in information security/cybersecurity operations/risk management.
- 3+ years in regulated life sciences (pharma/biotech/medical device) preferred.
- Experience with third-party risk & data privacy platforms; SIEM/EDR/MDR/MSSP and vulnerability/endpoint tools.
- Knowledge of NIST CSF, ISO 27001, SOC 2, SOX IT controls, 21 CFR Part 11.
- Audit/regulatory inspection experience; ability to translate requirements into controls; strong communication, analytical/investigative skills; discretion/integrity.
- Bachelorβs degree (or equivalent). CISSP/CISM/CRISC/Security+ preferred.
Compensation & Benefits
- Base range: $156,586β$185,630/year.
- Bonus; 401K + employer contributions; generous stock options; ESPP; 20 days PTO start; 18 holidays; paid paternity/maternity leave; catered lunches; home office setup; lifestyle stipend; commuter stipend (Boston).
Responsibilities
- Mature cybersecurity program to meet evolving regulatory and data privacy requirements.
- Own/admin third-party risk management & data privacy platform (configuration, assessments, remediation tracking, reporting).
- Coordinate vendor security assessments and remediation.
- Operate managed security services (alert triage, incident response coordination, use case tuning, reporting).
- Lead/support security incident response (investigate, contain, remediate, document).
- Oversee vulnerability management (scanning, reporting, remediation coordination).
- Support security testing activities (assessments, penetration testing, disaster recovery exercises, tabletop simulations).
- Improve cybersecurity awareness/training.
- Evaluate and implement security tools/technologies; support patch management and monitor security controls/configurations.
- Own IT security audit readiness (evidence collection, documentation, control validation).
- Provide risk-based recommendations and stay current on threats/regulatory best practices.
Job Qualifications
- 7+ years progressive experience in information security/cybersecurity operations/risk management.
- 3+ years in regulated life sciences (pharma/biotech/medical device) preferred.
- Experience with third-party risk & data privacy platforms; SIEM/EDR/MDR/MSSP and vulnerability/endpoint tools.
- Knowledge of NIST CSF, ISO 27001, SOC 2, SOX IT controls, 21 CFR Part 11.
- Audit/regulatory inspection experience; ability to translate requirements into controls; strong communication, analytical/investigative skills; discretion/integrity.
- Bachelorβs degree (or equivalent). CISSP/CISM/CRISC/Security+ preferred.
Compensation & Benefits
- Base range: $156,586β$185,630/year.
- Bonus; 401K + employer contributions; generous stock options; ESPP; 20 days PTO start; 18 holidays; paid paternity/maternity leave; catered lunches; home office setup; lifestyle stipend; commuter stipend (Boston).