About Rare
Rare inspires change so people and nature thrive. For over 45 years, across 60 countries, we have inspired and empowered millions of people and their communities to shift their behaviors and practices to protect our shared planet. We are a global leader in driving social change for people and nature and believe that the cumulative power of individual and community action is a vital pathway to safeguarding and restoring our shared waters, lands, and climate. 

Position Overview

The Rare Technology Cybersecurity Analyst plays a critical role in defining and executing the organization's security strategy. This position is anchored around two core functions: overseeing the effectiveness of Rare’s security solutions and establishing a comprehensive security posture through policy development, architectural security design, and targeted training programs. The role is pivotal in selecting security solutions, conducting vulnerability audits, and promoting a culture of security awareness across all departments. 

In this capacity, the Cybersecurity Analyst is expected to carry out systems and network responsibilities and collaborate with program leads to share and implement the security vision. This role demands a visionary leader adept at navigating the complexities of IT security, championing proactive risk management, and aligning security initiatives with Rare’s commitment to innovation and integrity. 

Responsibilities

• Develop and Maintain Security Architecture: Craft and upkeep Rare’s security infrastructure to align with our innovative needs and operational demands. 
• Security Awareness and Training Program: Design and execute a comprehensive security awareness program that cultivates a strong security culture among all employees. 
• Security Documentation: Author, review, and update security policies, standards, baselines, guidelines, and procedures to ensure they meet current best practices and regulatory compliance. 
• Business Continuity and Disaster Recovery: Lead the development of business continuity and disaster recovery plans, customizing them to Rare’s unique risk profile and operational requirements. 
• Technology Evaluation and Procurement: Stay abreast of the latest in IT security technologies and trends. Evaluate, select, and procure security solutions that enhance Rare’s defensive posture and operational efficiency. 
• Deployment of Security Measures: Oversee the deployment and integration of new security technologies, ensuring they are implemented seamlessly and effectively. 
• Systems and Network Security Management: Take on direct responsibilities for systems and network security tasks, safeguarding the integrity, confidentiality, and availability of all data and IT resources. 
• Policy Enforcement and Compliance: Act as a principal enforcer of security policies and practices, advising and ensuring compliance across all departments and business units. 
• Security Assessments: Conduct security assessments, including vulnerability scans and penetration tests, to proactively identify and address potential security threats. 
• Collaboration and Communication: Work closely with program leads and stakeholders to ensure a coordinated and comprehensive approach to security and risk management across the organization. 

Qualifications

• A strong foundation in information security practices, demonstrated through a combination of professional experience, certifications, and continuous learning. 
• Certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or equivalent are highly desirable. 
• At least 5 years of hands-on experience in information security roles, showing a clear track record of managing security systems, developing security architectures, and implementing policies and procedures. 
• Direct experience with a variety of security technologies, including but not limited to firewalls, intrusion detection systems, anti-virus software, authentication protocols, and log management solutions.

Skills

• Exceptional analytical and problem-solving capabilities, with the ability to prioritize and manage multiple projects and issues simultaneously. 
• Strong communication and interpersonal skills, with proficiency in engaging both technical teams and business stakeholders. 
• Demonstrated leadership abilities, including strategic planning, team motivation, and a commitment to achieving organizational security goals. 
• Comprehensive understanding of current security protocols, defenses, and countermeasures. 
• Knowledge of web technologies (applications, services, architectures) and network/web protocols. 

Rare is an equal opportunity employer that is committed to diversity and inclusion in the workplace. We prohibit discrimination and harassment of any kind based on race, color, gender, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic.