Who We Are
At ThrivePass, we’re on a mission to help employees and businesses Thrive—because benefits should be more than just checkboxes. Through personalized benefits technology, data-driven insights, and meaningful experiences, we empower companies to support their teams in ways that truly matter.
We don’t just talk about culture—we build it. Everything we do is rooted in our CARE values:
We don’t just talk about culture—we build it. Everything we do is rooted in our CARE values:
- Courageous – We embrace new challenges and fresh ideas.
- Authentic – We show up as our true selves and value transparency.
- Resourceful – We find creative solutions and make things happen.
- Excellent – We hold ourselves accountable and take pride in our work.
At ThrivePass, performance isn’t just about hitting goals—it’s about how you show up. We invest in our employees’ growth and encourage bold thinking, collaboration, and continuous learning. Join us in shaping the future of employee benefits!
What You’ll Do
As an Information Security Analyst, you’ll play a critical role in helping ThrivePass manage and mitigate information security risks as we continue to scale. This is a unique opportunity to join a rapidly growing tech company and take ownership of bringing security risks under explicit management control. Your work will help ensure the confidentiality, integrity, and availability of our systems and data across the organization. You will:
Governance, Risk & Compliance (GRC)
- Identify and communicate gaps between ThrivePass policies, procedures, and relevant regulations
- Monitor compliance levels of internal teams and third parties using KPIs and KRIs
- Collaborate with Legal, Software Development, Product, Sales, and Marketing teams to assess current and emerging regulatory requirements
- Scale global regulation requirements through proactive definition of security controls and a security management system
- Support the development and execution of new compliance policies and procedures
- Ensure proper documentation and rapid remediation of identified deviations
- Develop test cases to prevent reoccurrence of deviations
- Lead completion of client security questionnaires
- Work with corporate training and development to ensure employees understand their role in the compliance program
Policy & Training
- Create and maintain policies, procedures, and guidelines aligned with ThrivePass’s information security framework
- Support awareness initiatives to reinforce employee knowledge of compliance requirements
- Develop tools and strategies to assess the health of security controls and adherence to policies and procedures
Security Operations & Monitoring
- Monitor systems and networks for potential security issues
- Perform real-time monitoring, handling, investigation, and escalation of security events
- Analyze and identify trends from a wide range of security and network devices
- Conduct continuous control monitoring and implement automation where possible
Incident Response & Vulnerability Management
- Investigate security breaches and other cybersecurity incidents
- Document security breaches and assess potential damage
- Install and operate security tools such as firewalls and encryption programs
- Perform internal penetration testing
- Work with the security team to uncover and resolve network vulnerabilities
- Fix detected vulnerabilities to maintain a high-security standard
- Research and recommend security enhancements
Audit, Reporting & Continuous Improvement
- Own and lead internal and external audit efforts
- Ensure documentation, tracking, and remediation of audit findings
- Stay current on IT security trends, technologies, and industry standards
- Recommend improvements to strengthen ThrivePass’s overall security posture
What You Bring
We’re looking for someone who’s not just checking boxes but truly excited to make an impact. Here’s what helps you shine in this role:
- A drive to innovate in employee benefits and make complex processes feel effortless.
- A team-first attitude—we thrive when we collaborate.
Must Have
- Experience with integrating security into the software development lifecycle
- Experience in managing technical teams on mid- to large-scale, fast-paced IT, security, or product implementations
- Experience with Rest API development
- Experience working with security frameworks such as NIST, GDPR, SOC 2, HIPAA, and PCI-DSS
- Technical understanding of cloud concepts and Microsoft Azure
- Proficiency with programming and scripting languages used at ThrivePass, including .NET, Angular, and SQL
- Familiarity with CI/CD pipelines, Docker, Git repositories, and versioning tools such as Azure DevOps, GitHub, or Bitbucket
- Strong critical-thinking and problem-solving skills
- Excellent collaboration and influencing skills across internal teams, clients, and third parties
- Strong written communication skills with the ability to create clear, well-documented processes
- Proactive mindset with a strong focus on security, compliance, and continuous improvement in a fast-moving environment
Portfolio Link
To be considered for the position, please include your portfolio link in the email when submitting your application.
Why You'll Love Working Here
We're an inclusive and welcoming environment for all. ThrivePass is committed to fostering a workplace where everyone feels valued and respected. We do not and shall not discriminate based on race, color, religion (creed), gender, gender expression, age, national origin (ancestry), disability, marital status, sexual orientation, or military status in any of our activities or operations.
- A culture that values courageousness, authenticity, resourcefulness, and excellence (we don’t just say it—we live it).
- Opportunities to grow, learn, and level up your skills.
- A team that genuinely enjoys working together and celebrating wins.
- Competitive benefits package because we believe in walking the talk when it comes to employee well-being.
Salary Offered
Join Us!
If this role sounds like your next great adventure, we’d love to hear from you. Apply today and let’s build something amazing together! 🚀
