Senior Security Analyst

About The Position

Requirements

• Deep experience in triaging, investigating, and remediating security events and incidents across multiple technology stacks.
• Strong experience with SIEM (e.g., Splunk, Panther, Sentinel), EDR (e.g. SentinelOne, CrowdStrike), and other security tooling (e.g., CASB, SSE, SWG).
• Working knowledge of Terraform and Infrastructure as Code principles to secure and scale detection/response infrastructure.
• Solid understanding and a proven ability to apply detection engineering and threat modeling concepts using MITRE ATT&CK or similar frameworks.
• Excellent judgement and the ability to handle ambiguity and make balanced decisions when working with complex situations.
• Demonstrated ability to mentor peers, raise technical standards, and influence team maturity.
• Proven ability to proactively collaborate with cross-functional teams to influence security priorities and guide risk-based decisions.
• Excellent written and verbal communication skills, including the ability to effectively communicate cybersecurity risk across technical and non-technical audiences.
• 6+ years of experience in incident management, detection engineering, and security operations.

Responsibilities

• Lead investigation and response efforts for security incidents, and coordinate with internal stakeholders and external partners when necessary.
• Own detection use-case development and write and tune alerts to improve signal-to-noise ratio across our environments.
• Maintain and continually improve security incident response plans, playbooks, and related documentation.
• Apply Terraform to ensure consistent, secure, and scalable infrastructure deployment and detection pipelines.
• Develop and maintain internal tooling and automations to improve analyst efficiency for alert triage, IOC enrichment, and evidence collection.
• Elevate the Security team by coaching peers, mentoring junior analysts, and setting high standards for detection quality and incident handling.
• Own and execute technical security projects, including scoping, building, testing, deploying, and iterating.
• Conduct threat hunting and utilize threat intelligence to proactively identify and mitigate emerging risks.
• Participate in on-call rotation and continuously improve readiness and handovers.

Benefits

• Carta's compensation package includes a market competitive salary, equity for all full time roles, exceptional benefits, and, for applicable roles, commissions plans.