Cybersecurity Analyst / Senior Cybersecurity Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

Gossamer Bio · 1 week ago

Cybersecurity Analyst / Senior Cybersecurity Analyst

positionSan Diego, California, United States
timeFull-time
remoteOnsite
seniorityMid, Senior Level
money$115K/yr - $160K/yr
date4+ years exp

Gossamer Bio is a biotechnology company focused on developing innovative therapies. The Cybersecurity Analyst will be responsible for supporting the development, implementation, and maintenance of the company’s cybersecurity and information security programs.

BiotechnologyHealth CareTherapeutics
check
Growth Opportunities
check
H1B Sponsor Likelynote

Responsibilities

Monitor, analyze, and respond to security alerts and incidents in coordination with IT teams and external partners
Proactively identify and mitigate threats using advanced cybersecurity tools, threat intelligence feeds, and analytics
Operate and optimize security technologies (SIEM, EDR, firewalls) and implement enterprise-wide security controls and secure configurations
Conduct comprehensive security assessments and audits of IT systems, networks, and third-party vendors to identify vulnerabilities and compliance gaps
Ensure adherence to applicable privacy and security regulations (e.g., GDPR, HIPAA, CCPA, 21 CFR Part 11, FDA, EMA, GxP)
Maintain and enhance incident response and business continuity plans to strengthen organizational resilience
Identify and recommend automation opportunities to improve cybersecurity response, remediation efficiency, and overall program maturity
Support documentation and reporting for security controls, risk mitigation plans, and audit responses
Design and deliver KPIs, dashboards, and metrics to measure security performance and risk posture
Assist in developing and delivering security awareness training and education programs for employees
Stay current on emerging threats, industry trends, and best practices in cybersecurity and privacy

Qualification

Cybersecurity tools proficiencyIncident response leadershipRegulatory compliance knowledgeRisk assessment expertiseExperience in regulated industriesTechnical writing skillsProject managementAnalytical problem-solvingCommunication skillsMentoring abilitiesCollaboration skills

Required

Bachelor's degree in Information Security, Computer Science, Life Sciences, Legal Studies, or a related field
4+ years' experience in cybersecurity roles
Leadership in incident response and security operations
Familiarity with privacy laws and cybersecurity frameworks
Experience in regulated industries (biotech, pharma, healthcare, or medical devices)
Monitor, analyze, and respond to security alerts and incidents in coordination with IT teams and external partners
Proactively identify and mitigate threats using advanced cybersecurity tools, threat intelligence feeds, and analytics
Operate and optimize security technologies (SIEM, EDR, firewalls) and implement enterprise-wide security controls and secure configurations
Conduct comprehensive security assessments and audits of IT systems, networks, and third-party vendors to identify vulnerabilities and compliance gaps
Ensure adherence to applicable privacy and security regulations (e.g., GDPR, HIPAA, CCPA, 21 CFR Part 11, FDA, EMA, GxP)
Maintain and enhance incident response and business continuity plans to strengthen organizational resilience
Identify and recommend automation opportunities to improve cybersecurity response, remediation efficiency, and overall program maturity
Support documentation and reporting for security controls, risk mitigation plans, and audit responses
Design and deliver KPIs, dashboards, and metrics to measure security performance and risk posture
Assist in developing and delivering security awareness training and education programs for employees
Stay current on emerging threats, industry trends, and best practices in cybersecurity and privacy
Working knowledge of privacy regulations: GDPR, HIPAA, CCPA, CPRA, and other global data protection laws
Understanding of biotech/life sciences regulatory landscape (e.g., 21 CFR Part 11, GxP systems)
Familiarity with cloud security principles (e.g., AWS, Azure, or GCP environments)
Awareness of threats and vulnerabilities in life sciences IT environments
Knowledge of industry frameworks (e.g., NIST CSF, ISO/IEC 27701 for privacy)
Security monitoring and incident response
Risk assessment and mitigation planning
Technical writing and policy documentation
Vendor security and cybersecurity due diligence
Project management and cross-functional collaboration
Proficiency with cybersecurity tools and frameworks (e.g., NIST, ISO 27001, CIS Controls)
Strong communication and interpersonal skills
Strong analytical/problem-solving abilities
Ability to mentor junior analysts
Ability to translate complex security and privacy requirements into practical controls and solutions
Ability to handle sensitive data and information with discretion and professionalism
Ability to manage multiple tasks and priorities in a fast-paced environment
Ability to work independently and take initiative while collaborating with cross-functional teams
Ability to interpret and apply regulatory requirements to evolving business models and technologies
Ability to communicate technical concepts to non-technical stakeholders
Ability to thrive in a startup-like environment with a hands-on and proactive mindset

Preferred

Certifications such as CISSP, CISA, CIPP/US, CIPM, or Security+
Experience working in small or mid-sized companies, especially in high-growth environments
Proficiency with security tools (SIEM, EDR/XDR, DLP, SASE/CASB, vulnerability scanners, etc.)
Understanding of third-party risk management in a biotech context
General familiarity with GenAI and process automation

Benefits

Medical, dental and vision insurance
401(k) and 401(k) matching
Long-term incentive plan
Disability plan
Vacation pay
Sick time
Holiday pay
Work, personal and family time off

Company

Gossamer Bio

twittertwittertwitter
company-logo
Gossamer Bio is a biopharmaceutical company focused on the discovery and development of novel and differentiated therapeutic products.
dateFounded in 2015
location
San Diego, California, USA
people-size51-200 employees
web-link
https://www.gossamerbio.com

H1B Sponsorship

Gossamer Bio has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (2)
2024 (2)
2023 (1)
2021 (4)

Funding

Current Stage
Public Company
Total Funding
$812M
Key Investors
MidCap FinancialHillhouse Investment
2023-07-20Post Ipo Equity· $212M
2022-07-13Post Ipo Equity· $120M
2019-05-02Post Ipo Debt· $150M

Leadership Team

leader-logo
Faheem Hasnain
Founder, CEO and Chairman
linkedin
leader-logo
Bryan Giraudo
Chief Financial Officer
linkedin

Recent News

XOMA Royalty Corporation
XOMA Royalty Reports Third Quarter and Year to Date 2025 Financial Results and Highlights Recent Business Achievements
2025-11-14
Morningstar.com
Gossamer Bio Announces Inducement Grant Under Nasdaq Listing Rule 5635(c)(4)
2025-11-08
Business Wire
Gossamer Bio to Participate in Upcoming Investor Conferences
2025-11-08
Company data provided by crunchbase