Information Security Analyst

At Conga, we’ve built a community where our colleagues can thrive. Here you’ll find opportunities to innovate and support growth through individual and team development, all within an environment where every voice is heard.

Conga lines up commercial operations so companies run as connected, smarter businesses. By unifying the people and processes that drive commerce, Conga aligns pricing, quoting, contracting, rebates, and communications so teams stay in sync and buyers keep moving forward. The result is trusted decisions, consistent buyer experiences, and profitable growth. More than 10,000 customers worldwide, including over 50% of the Fortune 100®, trust Conga when commercial complexity is high and global impact is on the line.

Conga is seeking an Information Security Analyst to help shape and maintain a robust information security program. In this role, you’ll work closely with stakeholders across the company to identify and remediate security issues, promote awareness, and ensure compliance with legal, regulatory, and customer requirements. You’ll be part of the Security & Compliance Team, but also operate independently, managing alerts, vulnerabilities, incident response, and risk assessments. Your day-to-day will involve hands-on security operations, cross-functional collaboration, and continuous improvement of security practices.

This role is critical to protecting Conga’s information assets and maintaining trust with customers and partners. By proactively managing threats, vulnerabilities, and compliance, you’ll help safeguard the company’s reputation and ensure business continuity. Your work directly supports Conga’s strategic goals by enabling secure innovation, enhancing customer confidence, and fostering a culture of security awareness across the organization.

• Bachelor’s Degree in Computer Science, Cybersecurity, Engineering, or other relevant subject areas OR equivalent experience.
• 3-4 years of experience in information security, preferably with a focus on IT and product security.
• Foundational knowledge of cloud security principles (AWS, Azure, GCP), DevSecOps practices, and secure software development lifecycle (SDLC).
• Hands-on experience with AI system architecture and endpoints, including model deployment and response mechanisms, paired with a strong foundation in AI governance, data protection, and mitigation of AI-related security risks.
• Hands-on experience with application security and vulnerability management practices.
• Foundational knowledge of at least one or more security/compliance frameworks such as ISO 27001, ISO 27701, SOC, PCI, HIPAA, etc.
• Understanding of privacy frameworks such as GDPR, CCPA, CPRA, etc.

• SaaS industry experience
• CISSP or other security certifications

#LI-AM1

If this sounds like the kind of job you would love in the kind of environment where you would thrive, please click apply. We'd love to hear from you! 

We accept resumes in any format, we suggest using PDF or plain text. These formats help ensure that your resume’s formatting remains intact, making it easier for our recruiters to review your application promptly. 

Studies have shown that women and members of ethnic minorities are less likely to apply to jobs unless they meet every single qualification. At Conga we are dedicated to building a diverse, inclusive, and authentic workplace, so if you’re excited about this role but your experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyway. You just might be the right candidate for this or other roles.  

The information you provide during the application process will be used in accordance with Conga’s Applicant Privacy Statement (https://conga.com/applicant-privacy-statement). By submitting your application, you acknowledge and agree to the terms outlined in this privacy statement.