Senior Security Analyst

About The Position

Requirements

• Over 5 years of experience in the trenches of Security Operations or Incident Response
• Deep technical expertise in cloud security services across a multi-cloud environment – solid understanding of cloud-native security logging and identity management, as well as experience in responding to cloud infrastructure security alerts (compute, containers, serverless, networking).
• Extensive experience building and tuning high-fidelity alerts in modern SIEMs (e.g., Panther, Snowflake, or Splunk) and EDR platforms (e.g., SentinelOne, Crowdstrike).
• Strong proficiency in Python or Go to build "security-as-code" tools, automate repetitive SOC tasks, and integrate disparate security APIs.

Nice To Haves

• DFIR across Android IoT devices, or OT systems and networks

Responsibilities

• Advanced Incident Investigation: Lead deep-dive investigations into complex security incidents escalated from Tier 1, utilizing SIEM, EDR, and Cloud telemetry to determine scope and impact.
• Containment & Remediation: Execute immediate containment strategies (e.g., host isolation, account resets, firewall blocks) and coordinate with IT and Engineering teams for full-system remediation across multiple operating systems (Windows, MacOS, Linux)
• Post-Incident Analysis: Author comprehensive After Action Reports (AARs) that identify root causes and provide actionable recommendations to senior Cybersecurity leadership to prevent recurrence.
• Mentorship: A passion for raising the bar for the entire team by mentoring junior analysts and conducting security awareness sessions across the company.
• Cloud Defender: Deep technical expertise in cloud security services across a multi-cloud environment – solid understanding of cloud-native security logging and identity management, as well as experience in responding to cloud infrastructure security alerts (compute, containers, serverless, networking).
• Detection Engineering: Extensive experience building and tuning high-fidelity alerts in modern SIEMs (e.g., Panther, Snowflake, or Splunk) and EDR platforms (e.g., SentinelOne, Crowdstrike).
• Automation First: Strong proficiency in Python or Go to build "security-as-code" tools, automate repetitive SOC tasks, and integrate disparate security APIs.
• Collaboration: Forge partnerships across Cybersecurity, Engineering, and Product teams to help coordinate actions as part of responding to security events–from exercise driven scenarios to real-world events.
• “Own It” Mindset: You don't wait for a ticket to fix a gap; you identify the risk, propose the solution, and drive it to completion.

Benefits

• Use what you need PTO: We seriously mean it, plus 11 company holidays and your birthday off!
• Fully-paid health benefits plan for employees: including Medical, Dental, and Vision and an HSA match.
• Family Leave: All employees receive 12 weeks of 100% paid parental leave. Birthing parents are eligible for an additional 6-8 weeks of physical recovery time.
• Fertility & Family Benefits: We have partnered with Maven, a complete digital health benefit for starting and raising a family. We will reimburse $10,000 a year for adoption, surrogacy, or fertility.
• Mental Health: All employees receive an annual subscription to Headspace.
• Caregiver Support: We have partnered with Cariloop to provide our employees with caregiver support
• Carta Tax Advisor: Employees receive 1:1 sessions with Equity Tax Advisors who can address individual grants, model tax scenarios, and answer general questions.
• WFH Stipend: $150 per month to cover the costs of working from home.
• Productivity Stipend: $250 per year to use on Audible, Calm, Masterclass, Duolingo, Grammarly and so much more.
• Home Office Stipend: A one-time $750 to help you create your dream office.