Senior Security Risk Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

Procore Technologies · 2 hours ago

Senior Security Risk Analyst

positionAustin, TX
timeFull-time
remoteOnsite
senioritySenior Level
money$112K/yr - $154K/yr
date6+ years exp

Procore Technologies is seeking a highly motivated Senior Security Risk Analyst to join their Governance, Risk, and Compliance (GRC) organization. The role focuses on security risk management, partnering with various teams to identify, assess, and manage security risks across the technology ecosystem.

ConstructionInternetSaaSSoftware
check
Growth Opportunities
check
H1B Sponsor Likelynote

Responsibilities

End-to-End Risk Management: Manage the full lifecycle of security risks and issues—from initial discovery through to resolution. You’ll partner with owners to identify risk treatments (remediation, mitigation, or acceptance) that are practical and aligned with business goals
Technical Risk Translation: Act as a "translator" between technical teams and the business. You’ll take complex findings and business issues and turn them into clear, actionable risk statements that stakeholders at all levels can understand
Cloud & SaaS Security Partnership: Collaborate with Engineering and Security Architect teams to evaluate the security posture of our technology ecosystem. You’ll assess risks and configuration issues related to IAM, network security, pen tests, and our internal SaaS application stack
Risk Analysis: Apply the right tool for the job to score and prioritize issues. This includes using qualitative methods for daily triage and learning to apply quantitative models (FAIR) to help the business understand the potential financial impact of high-priority risks
Operational Optimization & Automation: Help us move away from manual tracking. You’ll identify opportunities to automate risk workflows and reporting, making our GRC processes "DevOps-friendly" and scalable
Risk Governance & Register Management: Maintain the risk register, including ownership, treatment plans, and residual risk assessments. You’ll track Key Risk Indicators (KRIs) and help build dashboards that give leadership a real-time view of our security health
Compliance Enablement: You will support risk-based alignment with security frameworks such as ISO/IEC 27001, SOC 2, and NIST CSF / NIST 800-53

Qualification

Cloud SecurityRisk ManagementTechnical Risk TranslationRisk MethodologySecurity FrameworksAnalytical SkillsIndependent ContributorDevOps FamiliarityCertifications CRISCCertifications CISMCertifications CISSPGRC Platform ExperienceCommunication SkillsProblem-Solving Skills

Required

Bachelor's degree and 6+ years of direct experience in cloud security, cybersecurity engineering, or technical risk management
Experience working in high-growth SaaS or cloud-native environments is required
Understanding of cloud infrastructure security (AWS, GCP, or Azure) and security frameworks (NIST CSF, ISO 27001)
Be able to interpret the outputs of Security Architects and SecOps teams, understanding network diagrams, attack paths, and vulnerability reports
Proficiency in qualitative risk assessment methodologies and awareness of quantitative methodologies like FAIR
Strong technical depth with a risk-based, pragmatic mindset
Capable of translating complex technical issues into business impacts
Exceptional communication and presentation skills, with the ability to interact effectively with stakeholders at all levels
Provide critical thinking with strong analytical and problem-solving abilities
Proven ability to work independently, take ownership of tasks, and prioritize effectively in a dynamic environment
Comfortable operating in fast-moving environments with evolving architectures

Preferred

Familiarity with DevOps, CI/CD security controls, and Infrastructure security
Certifications such as CRISC, CISM, CISSP or cloud provider certifications
Experience utilizing a GRC platform for risk registering

Company

Procore Technologies

twittertwittertwitter
Glassdoor4.3
company-logo
Procore Technologies, Inc. (NYSE: PCOR) is a leading technology partner for every stage of construction.
dateFounded in 2002
location
Carpinteria, California, USA
people-size1001-5000 employees
web-link
https://www.procore.com/en-sg

H1B Sponsorship

Procore Technologies has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (37)
2024 (45)
2023 (35)
2022 (51)
2021 (43)
2020 (14)

Funding

Current Stage
Public Company
Total Funding
$654.02M
Key Investors
12 West CapitalGlobal Secure InvestD1 Capital Partners
2023-09-21Post Ipo Secondary· $4.07M
2021-05-20IPO
2020-07-10Secondary Market

Leadership Team

leader-logo
Ajei Gopal
President and Chief Executive Officer and Member, Board of Directors
linkedin
leader-logo
Benjamin Singer
Chief Legal Officer & Corporate Secretary
linkedin

Recent News

legacy.thefly.com
Procore acquires Datagrid to accelerate AI strategy in construction
2026-01-21
Business Wire
Procore Acquires Datagrid to Accelerate AI Strategy and Deliver Enhanced Data Integration for Customers
2026-01-20
Crunchbase News
Exclusive: Luxury Presence Raises $22M Series C For AI-Powered Marketing Aimed At Real Estate Agents
2026-01-08
Company data provided by crunchbase