Job Summary
Under the supervision of the Vice President of Information Technology, the Senior Analyst, Technology Governance & Controls is responsible for strengthening CGC’s enterprise technology governance framework, internal control environment, and operational risk posture. This role helps ensure that technology-related processes, system access models, vendor relationships, documentation standards, and change practices align with organizational expectations for accountability, audit readiness, and institutional durability. 

The Senior Analyst serves as a key internal resource for access governance, control evidence management, policy administration, risk tracking, vendor oversight support, continuity planning coordination, and governance reporting. This position translates governance expectations into practical, repeatable operating disciplines that support secure and efficient business execution. 

This role is well suited for a proactive professional who can operate effectively in a growing and evolving organization, bring structure where processes continue to mature, and execute with sound judgment, discretion, and a high degree of ownership. Success in this position requires collaboration, professionalism, strong written communication, and the ability to improve how work gets done through practical use of automation, AI tools, and modern workflow capabilities. This role is central to CGC's enterprise governance maturity, maintaining the frameworks, processes, and controls that allow IT systems, data, and vendors to operate with accountability and discipline.

Key Responsibilities

• Support CGC’s enterprise technology governance and control environment through disciplined administration of repeatable oversight processes. 
• Coordinate periodic user access reviews, entitlement recertifications, segregation-of-duties support reviews, and permission validation activities across enterprise systems.
• Maintain repositories of control evidence, approvals, documentation, and artifacts required for audits, internal reviews, external assessments, or regulatory inquiries.
• Administer the lifecycle of technology-related policies, standards, and procedures, including version control, review schedules, approvals, acknowledgments, and publication tracking.
• Support vendor governance and third-party risk management processes, including intake coordination, due diligence documentation, contract control support, and remediation follow-up.
• Maintain governance logs and trackers related to risks, issues, exceptions, incidents, remediation items, and management action plans.
• Administer and monitor the technology change management process including ticket completeness, approval validation, testing evidence review, and record retention within the Technology Service Desk in Jira.
• Coordinate business continuity and disaster recovery governance activities, including inventories, documentation updates, exercise support, and remediation tracking.
• Prepare dashboards, reports, metrics, and presentations related to governance performance, access controls, training completion, vendor reviews, policy status, and control maturity, including PowerBI reporting where applicable.
• Assist in administration of security awareness initiatives, policy acknowledgments, phishing simulations, and workforce education programs.
• Identify opportunities to streamline governance processes through workflow automation, AI-enabled productivity tools, agentic workflows, and improved operating procedures consistent with internal control expectations.
• Partner with Finance, Legal, Risk, Operations, and business stakeholders to improve enterprise accountability and governance practices.
• Handle sensitive information with discretion and professionalism, escalating concerns appropriately.
• Operate with a high degree of ownership, reliability, and judgment in a dynamic environment with evolving priorities.
• Perform other duties as assigned in support of CGC’s mission and operational needs.

Required Skills and Abilities

• Experience in governance, internal controls, risk management, audit support, compliance operations, technology administration, or related business operations environments.
• Demonstrated experience managing documentation, evidence, approvals, trackers, or structured operational processes with strong attention to detail.
• Familiarity with access governance concepts, role-based permissions, and enterprise system control practices.
• Strong organizational skills with the ability to manage multiple priorities and deadlines.
• Excellent written communication and presentation skills.
• Demonstrated ability to operate effectively in evolving environments with changing priorities and developing processes.
• Proven professionalism, discretion, and sound judgment when handling confidential or sensitive matters.
• Demonstrated digital fluency and ability to quickly learn modern platforms and emerging technologies.

Education and Experience

• Bachelor’s degree and 5+ years of directly related experience, or equivalent combination of education and experience.
• Experience supporting technology within financial services, nonprofit, startup, federally funded, or regulated environments.
• Familiarity with frameworks such as COSO, NIST, SOC, ISO 27001, or similar governance/control standards.
• Experience with enterprise platforms such as Vanta, Microsoft 365, PowerBI, Entra ID, Jira, Confluence, Box, NetSuite, Salesforce, or comparable systems.
• Experience supporting vendor management, procurement controls, contract administration, or third-party risk processes.
• Familiarity with workflow automation tools, AI productivity tools, prompt engineering, and emerging agentic workflow concepts.
• Certifications such as CISA, CRISC, Security+, ITIL, PMP, Lean Six Sigma, or similar credentials are a plus.

Compensation and Benefits

• The salary range for the Senior Analyst position is between $117,715.00 – $132,549.00 annually.
• Senior Analyst will be eligible for an annual bonus based on job and organizational performance.
• The benefits offered for the Senior Analyst include health insurance, 401k, vacation leave and sick leave.

This Senior IAM Engineer will own the Okta for Government High (FedRAMP High) tenant, which serves as the enterprise Identity Provider and Identity Governance platform for a 1,500+ user organization. The role is the primary technical resource responsible for the build, enhancement, and operation of key functions, including SSO integrations, Identity Governance (OIG), Lifecycle Management, Workflows automation, and Adaptive MFA policy.

In the first three months, you will help develop the core program documentation and workflows. You will collaborate with external teams like IT, Legal and People to integrate into company processes. You will work with our technical security experts to build Identity and Access management processes and procedures.

Responsibilities

• Own the Okta for Government High (FedRAMP High) tenant — configuration, health, lifecycle, and security posture
• Manage Universal Directory: on-prem AD Agent sync, HRIS attribute mastering, profile mappings, and group rules
• Build and maintain all SSO app integrations via the Okta Integration Network (OIN) using SAML, OIDC, and SCIM
• Own and maintain Okta Adaptive MFA policies: factor enrollment rules, risk-based step-up authentication, FIDO2/YubiKey/PIV/CAC configuration
• Maintain the Okta System Log to Microsoft Sentinel log streaming pipeline and retention configuration
• Own Okta Identity Governance (OIG): entitlement catalog, access certification campaign setup, SoD policy rules, and access request workflow design
• Own, Build and Maintain Okta Lifecycle Management: JML automation rules, HRIS connector configuration, and auto-provisioning and deprovisioning into all connected applications, access review triggers, and automated remediation
• Design, build, and document all Okta-side enhancements including new app onboarding, policy changes, and IGA configuration updates
• Write test cases for all Okta-side changes; execute UAT jointly with the Identity Governance & Operations Analyst before production promotion
• Support Identity Operations Specialist on Tier 2 Okta escalations and Workflow troubleshooting
• Assist Identity Governance & Operations Analyst with OIG campaign configuration and certification reporting

Requirements:

• 4+ years of hands-on Okta administration and engineering experience
• Demonstrated experience with Okta SSO app integrations via SAML 2.0 and OIDC
• Experience with Okta Lifecycle Management and HRIS connector configuration
• Experience building Okta Workflows for provisioning automation
• Experience with Okta Adaptive MFA policy configuration including FIDO2/WebAuthn and hardware token enrollment
• Experience with Okta Universal Directory including AD Agent deployment and profile mastering

Compliance Requirements: this role will be subject to US Federal regulations, therefore:

• Must be a U.S. Citizen or Lawful Permanent Resident (Green Card holder) — U.S. Person 
• Ability to obtain and maintain a security clearance or pass a background investigation consistent with CUI access
  
  

Preferred Qualifications:

• Experience with Okta for Government High (FedRAMP High) or FedRAMP Moderate environments — strong preference
• Okta Identity Governance (OIG) experience — access certifications, SoD, entitlement management
• Experience federating Okta to Microsoft Entra ID / GCCH as a SAML Service Provider
• Familiarity with CMMC, ITAR, GDPR, SOX, SOC 2 compliance requirements
• Experience with SCIM 2.0 provisioning to downstream applications
• Okta Identity Governance certification (preferred)

The approximate base salary range for this position is $126,887 - $166,127. The total compensation package includes base, bonus, equity, and a range of benefit options found on our career site.

Location: This role is based out of our College Park, Boulder, CO, or Bothell, WA offices, or can be remote in the US. 
Travel: Up to 1 week per quarter
Job ID:  1460

We are looking for a versatile SOC analyst to join the team and write, tune and respond to alerts covering the entire environment from endpoints to cloud infrastructure. This exciting opportunity empowers you to ensure the right alerts come in and you don’t burn out on false positives. We are a forward thinking organization that leverages AI. Your work would take place during regular business hours. Weekend coverage will be necessary. From time to time evenings as well. The expectation is that we build for 24x7 coverage but you will be asked to step in to assist the team.

Responsibilities:

• Review and triage security alerts from a wide variety of sources across the organization
• Carefully tune rules to reduce false positives
• Write new rules to ensure appropriate MITRE ATT&CK framework coverage
• Escalate potential incidents
• Assist in any incident response activities
• Ability to run projects from beginning to end
• Work with Engineering and IT on visibility coverage and detection       

Qualifications:

• 2+ years responding to alerts
• Familiar with MITRE ATT&CK framework
• Comfortable writing and tuning detection rules
• Experience triaging alerts and establishing if an event rises to an incident
• Varied exposure to a variety of application, SaaS, cloud and end point logs
• Strong communication skills towards technical and non-technical people
• Preference for people who have experienced a real life security incident that they detected                   

If you are interested in this opportunity, please apply with your resume and cover letter. We are an equal opportunity employer and welcome all qualified candidates to apply.

Why Join BitGo?

Disrupting an industry takes vision, innovation, passion, technical chops, drive to deliver, collaboration, and execution. Join a team of great people who strive for excellence and personify our corporate values of ownership, craftsmanship, and open communication. We are looking for new colleagues who bring innovative ways of thinking and problem solving, and who want risks to be part of the team that changes the world’s financial markets.

Here are some of the benefits* of working at BitGo:

• Competitive base salary, bonus and stock options
• 100% company paid health insurance for employee, partner and dependents
• Up to 4% 401k company match
• Paid parental leave, Paid vacation
• Free commuter/parking pass; 5 min from Caltrain
• Free custom lunches, dinners and snacks 
• Computer equipment and workplace furniture to suit your needs
• Great colleagues and inspiring startup environment
• *Benefits may vary based on location 

Cryptocurrencies are the most disruptive change the financial services industry has seen in years. Join us and you’ll be able to look back and say you were part of the team that transformed investing.

Pay Transparency Notice: Depending upon your leveling and location, the compensation for this role averages between $115,000 - $145,000 USD base salary. Equity, an annual performance bonus and the benefits outlined below are also a part of this role's package.

We are looking for a versatile SOC analyst to join the team and write, tune and respond to alerts covering the entire environment from endpoints to cloud infrastructure. This exciting opportunity empowers you to ensure the right alerts come in and you don’t burn out on false positives. We are a forward thinking organization that leverages AI. Your work would take place during regular business hours. Weekend coverage will be necessary. From time to time evenings as well. The expectation is that we build for 24x7 coverage but you will be asked to step in to assist the team.

Responsibilities:

• Review and triage security alerts from a wide variety of sources across the organization
• Carefully tune rules to reduce false positives
• Write new rules to ensure appropriate MITRE ATT&CK framework coverage
• Escalate potential incidents
• Assist in any incident response activities
• Ability to run projects from beginning to end
• Work with Engineering and IT on visibility coverage and detection       

Qualifications:

• 2+ years responding to alerts
• Familiar with MITRE ATT&CK framework
• Comfortable writing and tuning detection rules
• Experience triaging alerts and establishing if an event rises to an incident
• Varied exposure to a variety of application, SaaS, cloud and end point logs
• Strong communication skills towards technical and non-technical people
• Preference for people who have experienced a real life security incident that they detected                   

If you are interested in this opportunity, please apply with your resume and cover letter. We are an equal opportunity employer and welcome all qualified candidates to apply.

Why Join BitGo?

Disrupting an industry takes vision, innovation, passion, technical chops, drive to deliver, collaboration, and execution. Join a team of great people who strive for excellence and personify our corporate values of ownership, craftsmanship, and open communication. We are looking for new colleagues who bring innovative ways of thinking and problem solving, and who want risks to be part of the team that changes the world’s financial markets.

Here are some of the benefits* of working at BitGo:

• Competitive base salary, bonus and stock options
• 100% company paid health insurance for employee, partner and dependents
• Up to 4% 401k company match
• Paid parental leave, Paid vacation
• Free commuter/parking pass; 5 min from Caltrain
• Free custom lunches, dinners and snacks 
• Computer equipment and workplace furniture to suit your needs
• Great colleagues and inspiring startup environment
• *Benefits may vary based on location 

Cryptocurrencies are the most disruptive change the financial services industry has seen in years. Join us and you’ll be able to look back and say you were part of the team that transformed investing.

Pay Transparency Notice: Depending upon your leveling and location, the compensation for this role averages between $115,000 - $145,000 USD base salary. Equity, an annual performance bonus and the benefits outlined below are also a part of this role's package.

The Compliance team at MongoDB manages the strategy, execution, and maintenance of our global security certifications and regulatory requirements. We ensure that our cloud database products meet the rigorous security standards required by our customers in the most highly regulated industries worldwide.

We act as the primary interface between external auditors and our internal Product, Engineering, and Legal teams. Our goal is to translate complex regulatory requirements into scalable operational processes, maintaining a compliant and audit-ready posture across our diverse portfolio.

The Program Manager / Senior Analyst is a mid-to-senior level individual contributor role responsible for leading high-stakes audits and specialized compliance workstreams. Unlike the Analyst level, this role takes full ownership of complex international frameworks—such as IRAP and ENS High—and manages the relationship with our Financial Services customers during audit deep-dives. You will lead internal audit cadences and perform gap analyses for new market expansions.

Responsibilities:

• Lead the end-to-end execution of specialized external audits (e.g., ENS High, IRAP, ISO 22301) and coordinate all phases from initial scoping to final certification
• Serve as the lead point of contact for Financial Services customer audits, facilitating meetings, responding to security questionnaires, and defending our control environment to external stakeholders
• Lead internal audit cadences and drive the POA&M tracking process, ensuring technical teams remediate findings within required SLAs
• Map new regulatory requirements to our central control framework, performing gap analyses to identify where existing controls can be leveraged for new certifications
• Conduct NIST CSF or similar maturity assessments to monitor the effectiveness of the Compliance Program and report findings to team leads
• Author and review customer-facing security documentation, ensuring it accurately reflects our technical controls and architectural guardrails
• Partner with Engineering and Product leads to implement compliance-by-design, ensuring future product roadmaps align with global regulatory shifts

Requirements:

• 7+ years in GRC, Information Security, or IT Audit, specifically within a high-growth SaaS/Cloud environment
• Deep understanding of cloud security principles (AWS/GCP/Azure) and a proven track record leading technical audits for ISO 27001, SOC 2, or ENS High
• Solid grasp of audit processes, terminology, and risk assessment standards. Certifications such as CISA, CRISC, CISSP, or ISO Lead Implementer are highly preferred
• Exceptional ability to lead meetings with external customers and auditors, translating technical complexities into business risk and compliance assurance
• Advanced proficiency in Jira for tracking control performance data and managing high-volume remediation workflows
• Practical experience performing gap analyses and maturity assessments at an enterprise level

Responsibilities & Expectations

• You are expected to be a subject matter expert who can operate with minimal supervision
• You don't just track tasks; you own the success of the program
• You are expected to navigate complex audit negotiations with external parties and drive internal technical teams toward compliance milestones without disrupting innovation

Scope & Complexity

• The scope is international and technically diverse. You will manage overlapping audit cycles across different global jurisdictions (e.g., Spain, Australia, US) and complex industry sectors
• You are responsible for identifying how a single technical control can satisfy multiple global regulatory requirements simultaneously

Authority & Impact

• You have the authority to lead audit engagements and represent MongoDB’s security posture to sophisticated Financial Services customers
• Your impact is direct: by securing and maintaining these certifications, you enable our sales organization to close enterprise-level deals in highly regulated markets

Expertise

• You will be recognized as an expert in implementing our Common Controls Framework
• You move beyond general compliance to become a specialist in how MongoDB’s architecture satisfies specific, high-bar standards like IRAP and ENS High. You are the go-to for mapping technical evidence to regulatory intent

Leadership

• Leadership in this role is demonstrated through influence and mentorship. While you may not have direct reports, you lead cross-functional project teams through intense audit cycles and mentor junior analysts on audit methodology, documentation standards, and professional communication

About MongoDB

MongoDB is built for change, empowering our customers and our people to innovate at the speed of the market. We have redefined the database for the AI era, enabling innovators to create, transform, and disrupt industries with software. MongoDB’s unified database platform, the most widely available, globally distributed database on the market, helps organizations modernize legacy workloads, embrace innovation, and unleash AI. Our cloud-native platform, MongoDB Atlas, is the only globally distributed, multi-cloud database and is available across AWS, Google Cloud, and Microsoft Azure.

With offices worldwide and over 60,000 customers, including 75% of the Fortune 100 and AI-native startups, relying on MongoDB for their most important applications, we’re powering the next era of software.

Our compass at MongoDB is our Leadership Commitment, guiding how and why we make decisions, show up for each other, and win. It’s what makes us MongoDB. 

To drive the personal growth and business impact of our employees, we’re committed to developing a supportive and enriching culture for everyone. From employee affinity groups, to fertility assistance and a generous parental leave policy, we value our employees’ wellbeing and want to support them along every step of their professional and personal journeys. Learn more about what it’s like to work at MongoDB, and help us make an impact on the world!

MongoDB is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process. To request an accommodation due to a disability, please inform your recruiter.

MongoDB, Inc. provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type and makes all hiring decisions without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

REQ ID: 1273402295

Description:

The Information Security Risk Analyst is the operational engine of the internal risk program. While the Senior IRM Analyst and Risk Director define the strategic roadmap, the Analyst ensures the daily execution of that strategy. They are responsible for the "production line" of risk assessment: taking raw signals from the business, processing them through the established methodology, and outputting actionable risk decisions (Remediation or Acceptance).

The ultimate objective of this role is Reduction of Uncertainty. By managing the program effectively, the IRM Analyst ensures that MongoDB’s leadership has a clear, quantified view of the top risks facing the enterprise. They transform the Risk Register from a static spreadsheet into a dynamic governance tool that drives accountability.

The IRM Analyst must not be afraid to be in the trenches with the Engineering and Product teams. They are the primary face of the "Risk Intake Process," guiding stakeholders through the methodology. They are the gatekeeper of quality, ensuring that no risk enters the register until it has been properly scoped and quantified.

Responsibilities:

Risk Identification & Assessment

• Execute risk assessments under senior guidance - perform scoping, inherent risk scoring, control assessment, and residual risk calculation using established methodology
• Conduct risk identification intake, manage the flow of requests from Jira Service Desk and the Issue Intake Tracker, review incoming submissions against entry criteria, assign Risk IDs, and replicate validated risks into the Risk Register
• Act as the Triage Officer for incoming risk submissions, determine whether submissions represent strategic risks, operational issues, or duplicates. Filter noise to focus the team on signals
• Develop risk scenarios for in-scope assets by working with asset owners and risk owners , identify threat communities, threat events, and impact categories
• Draft Risk Assessment Memos that tell a cohesive story from risk statement to risk rating to actionable recommendation. Progressively build toward independently authored memos that require minimal review notes
• Monitor and flag emerging risk signals , including AI-related risks (model integrity, data poisoning, shadow AI, third-party AI dependencies) , and escalate with documented analysis for integration into the risk framework

Control Identification, Mapping & Assessment

• Identify and document controls that mitigate assessed risks , map controls to specific risk scenarios and applicable framework requirements (NIST SP 800-53, ISO 27001, SOC 2)
• Assess the design adequacy of controls , evaluate whether each control is appropriately designed to address the risk it is mapped to, and document findings with supporting rationale
• Assess the operating effectiveness of controls , collect and evaluate evidence to determine whether controls are functioning as designed over the assessment period, and document results
• Document control gaps and support remediation tracking , maintain clear records of where controls are missing, partially effective, or require compensating controls. Track remediation progress
• Maintain control-to-framework mappings to ensure risk assessment outputs directly support audit and certification evidence packages (FedRAMP, SOC 2, ISO 27001, PCI-DSS)

Risk Categorization & Governance

• Apply the established risk taxonomy and categorization methodology consistently across all assessed risks
• Process risk acceptance requests in Jira , validate completeness, ensure documented context and stakeholder sign-off, confirm time-bound conditions, and flag concerns to the Senior lead
• Maintain the Risk Register, risk inventory, and supporting trackers with obsessive attention to data integrity, no missing dates, undefined owners, or stale entries. A Risk Register with governance gaps is a program failure

Reporting & Stakeholder Engagement

• Contribute to KRI data collection and dashboard inputs , support accurate, timely reporting that feeds executive risk dashboards and governance forum materials
• Engage directly with technical stakeholders (engineering, product, infrastructure teams) during risk assessments , ask informed questions, gather evidence, and document findings
• Progressively build the technical fluency to lead stakeholder conversations independently , develop working proficiency in cloud-native architectures, SaaS security models, and common technical controls (IAM, encryption, network segmentation, logging/monitoring)
• Translate technical findings into clear, business-relevant risk language in all written work products

Policy, Process & Governance Hygiene

• Support drafting and maintaining risk procedures, guidelines, and assessment templates across the IRM program scope
• Execute governance hygiene , data quality, tracker maintenance, workflow adherence, evidence organization, and documentation standards
• Manage the risk assessment pipeline in Jira, create and maintain workflows, dashboards, and use JQL to track the assessment ticket lifecycle

Requirements:

Experience & Education:

• 3–5 years of experience in Information Security, Governance, Risk, and Compliance (GRC), or Enterprise Risk Management
• Experience performing risk assessments — including risk identification, inherent/residual risk scoring, and documentation of findings
• Experience identifying, documenting, and evaluating controls — including assessment of design adequacy and operating effectiveness
• Strong working knowledge of NIST CSF, NIST SP 800-30/39/53, and ISO/IEC 27005 — ability to use these frameworks as a library of controls and risk guidance
• Advanced proficiency in Excel/Google Sheets (pivot tables, VLOOKUP, complex formulas) for risk data analysis and reporting
• Jira proficiency — managing projects, creating workflows and dashboards, and using JQL
• Ability to write clear, concise, and defensible Risk Assessment Memos
• Obsessive attention to detail regarding data integrity and documentation quality
• Foundational understanding of cloud-native architectures and common technical controls (IAM, encryption, logging/monitoring, network segmentation) — with a commitment to building deeper technical fluency
• Awareness of AI risk concepts and willingness to develop expertise in emerging AI risk and regulatory landscape
• A strong track record of collaborating effectively across teams and levels
• Bachelor's degree in Cybersecurity, Information Systems, Business Administration, or a related field
• Certifications: At least, one of the following certifications is required - CRISC, CISM, CISSP, or CISA

About MongoDB

MongoDB is built for change, empowering our customers and our people to innovate at the speed of the market. We have redefined the database for the AI era, enabling innovators to create, transform, and disrupt industries with software. MongoDB’s unified database platform, the most widely available, globally distributed database on the market, helps organizations modernize legacy workloads, embrace innovation, and unleash AI. Our cloud-native platform, MongoDB Atlas, is the only globally distributed, multi-cloud database and is available across AWS, Google Cloud, and Microsoft Azure.

With offices worldwide and over 60,000 customers, including 75% of the Fortune 100 and AI-native startups, relying on MongoDB for their most important applications, we’re powering the next era of software.

Our compass at MongoDB is our Leadership Commitment, guiding how and why we make decisions, show up for each other, and win. It’s what makes us MongoDB. 

To drive the personal growth and business impact of our employees, we’re committed to developing a supportive and enriching culture for everyone. From employee affinity groups, to fertility assistance and a generous parental leave policy, we value our employees’ wellbeing and want to support them along every step of their professional and personal journeys. Learn more about what it’s like to work at MongoDB, and help us make an impact on the world!

MongoDB is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process. To request an accommodation due to a disability, please inform your recruiter.

MongoDB, Inc. provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type and makes all hiring decisions without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

Req ID: 1273425625

The Information Security Risk Team at MongoDB is the operational engine of the internal and third-party risk programs. Situated within the Assurance, Risk, and Compliance (ARC) organization, the team is responsible for the "Reduction of Uncertainty" across the enterprise. We view this team as the "Operational Commander" of the risk function. The team oversees the entire lifecycle of risk identification, assessment, and treatment, ensuring that MongoDB’s leadership has a clear, quantified view of the top risks facing the organization. We are not just a compliance function; we are a "Risk Intelligence" unit that empowers the business to "Think Big" while keeping our eyes wide open to the risks we accept.

As the Senior Information Risk Analyst, you will serve as the subject matter expert and primary executor of our risk function. Reporting directly to the Risk Director, you will be responsible for conducting and owning the lifecycle of internal security assessments (annual + ad-hoc), applying risk methodology, producing risk memos and working with asset/risk owners across the business that powers MongoDB’s growth. This is a pivotal moment for our Risk function as we scale operations to meet the demands of a $100B+ database market while navigating an increasingly rigorous regulatory landscape (DORA, FedRAMP, NIS2).

This role can be based remotely in the United States.

Responsibilities

Program Maturity

• Risk Assessment Methodology Implementation: Lead the strategic roadmap to integrate the risk matrix into the risk framework
• Regulatory Governance: Ensure the risk program complies with global regulations, specifically DORA (EU) regarding ICT registers and FedRAMP Rev 5 supply chain controls. Maintain the Supply Chain Risk Management (SCRM) plan and oversee strict boundary protections for the "Atlas for Government" environment
• Policy & Procedure Ownership: Maintain the Information Risk Management Procedure (ISQMS), ensuring that risk identification, assessment, and treatment processes are documented, updated annually, and followed consistently across the organization

Operational Execution

• Experience conducting technical security risk assessments (infrastructure, cloud, application-level). Including experience in evaluating control effectiveness through technical evidence (configurations, logs, architecture diagrams)
• Workflow Orchestration: Own the end-to-end risk assessment process
• Inherent Risk Scoring: Validate the team’s application of the Risk Scoring formula.   Apply the risk scoring formula for baseline scores based on breach history (last 12 months) and weighted impact
• Ensure the risk acceptance process has the right level of information and the appropriate stakeholders
• Ticket Hygiene: Actively manage the Jira backlog to prevent "frozen tickets”

Monitoring and Reporting

• Conduct annual enterprise security risk assessments and ad-hoc assessments as triggered by material changes, incidents, or new initiatives
• Identify risk scenarios for the in-scope assets by working with the asset and risk owners
• Assess the inherent risk and residual risk based on established risk assessment methodology and control assessments
• Synthesize the analysis into high-quality, Risk Assessment Memos. These documents must tell a cohesive story, moving from the "Risk Statement" to the "Calculation Logic" to the final "Risk Rating"
• Manage the risk acceptance process in JIRA, review for appropriateness and accuracy
• Maintain the Risk Management Dashboard and report on accurate risk metrics

Requirements

• Professional Experience: 10+ years of experience in Information Security, Governance, Risk & Compliance (GRC)
• Hands-on experience conducting enterprise-level security risk assessments end-to-end, including scoping, threat modeling, control evaluation, and executive reporting
• Evaluate control effectiveness using technical evidence (configs, logs, architecture diagrams)
• Perform threat modeling using established methodologies (STRIDE, MITRE ATT&CK)
• Deep operational understanding of risk assessment methodologies (NIST SP 800-30) and standard control frameworks (NIST CSF, NIST SP 800-53, ISO 27001, SOC 2, SIG Core/Lite, CAIQ)
• Regulatory Knowledge: Comprehensive knowledge of DORA, NIS2, FedRAMP Rev 5 (specifically Supply Chain/SCRM), GDPR, and PCI-DSS requirements
• Ability to write executive-level risk reports that translate technical flaws into business risks
• A strong track record of collaborating effectively across teams and levels to influence change
• Education: Bachelor’s degree in a relevant field (Cybersecurity, Business, Information Systems)
• Certifications: CRISC, CCSP, CISSP, CISA, relevant cloud certifications

About MongoDB

MongoDB is built for change, empowering our customers and our people to innovate at the speed of the market. We have redefined the database for the AI era, enabling innovators to create, transform, and disrupt industries with software. MongoDB’s unified database platform, the most widely available, globally distributed database on the market, helps organizations modernize legacy workloads, embrace innovation, and unleash AI. Our cloud-native platform, MongoDB Atlas, is the only globally distributed, multi-cloud database and is available across AWS, Google Cloud, and Microsoft Azure.

With offices worldwide and over 60,000 customers, including 75% of the Fortune 100 and AI-native startups, relying on MongoDB for their most important applications, we’re powering the next era of software.

Our compass at MongoDB is our Leadership Commitment, guiding how and why we make decisions, show up for each other, and win. It’s what makes us MongoDB. 

To drive the personal growth and business impact of our employees, we’re committed to developing a supportive and enriching culture for everyone. From employee affinity groups, to fertility assistance and a generous parental leave policy, we value our employees’ wellbeing and want to support them along every step of their professional and personal journeys. Learn more about what it’s like to work at MongoDB, and help us make an impact on the world!

MongoDB is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process. To request an accommodation due to a disability, please inform your recruiter.

MongoDB, Inc. provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type and makes all hiring decisions without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

Req ID: 1273387742

As the Cybersecurity Analyst Tier 2, you are responsible for overseeing and managing Tier 2 level threat response in our client’s Security Operations Center. Your role involves working with a team of security analysts and engineers who monitor, detect, analyze, and respond to security incidents and threats in an organization's IT environment at the Tier 2 Level. Additionally, you play a critical role in analyzing and resolving cyber threats or escalating incidents for Tier 3 response as necessary.  Technical expertise, and a deep understanding of cybersecurity concepts are essential for success in this role. This role is ONSITE in our SOC located in Rockville, MD.  US Citizenship is required for consideration.

Role and Responsibilities 

• Respond promptly and effectively to security incidents and threats discovered by CSOC Analyst Level I and carry out effective Level II analysis of incidents.
• Remediation of incidents and escalation when necessary to Tier 3 support
• Initial assessment of the scope of the attack and affected systems
• Accurately document cases during investigations and effectively communicate findings to Level I Analyst or escalation team to ensure complete handover of work streams.
• Continuously improve incident management processes through periodic threat hunting exercises, knowledge optimization effort building, and by comprehensive diagnosis and analysis of incident trends.
• Follow the issue tracking, escalation policies and work effectively across all CSOC tiers as the technical competence requires.
• Dedicated monitoring and analysis of cyber security events by use of SOC tools
• Incident Response generation and reporting IAW established procedures.
• Provide Level II technical support in CSOC operations and activities.
• Provide daily/weekly updates on CSOC operations and developments.
• Conduct Forensic analysis and respond to data call activities.
• Generate quality technical reports containing methodologies, findings, and recommendations.
• Work with external stakeholders to understand operational needs and develop effective processes.
• Maintain a current understanding of industry trends, emerging cyber threats, and new solutions which may impact CSOC activities.
• Collaborate with CSOC SME to ensure optimal performance using CSOC technology.
• Identify, reverse engineering and de-obfuscating digital content related to an incident.

 Qualifications:

3-5+ years of experience within a Level Tier 2 cybersecurity environment; experience in a leadership role is preferred.

Bachelor’s in information technology, Computer Science, or a related field; or relevant, commensurate work experience

Robust Certification Portfolio including Security+ and one or more of the following preferred: Network+, CEH, Azure or Cloud Certification, and Splunk Core Certified Power User.

Vulnerability/cyber incident management framework

Experience with advanced technologies such as: Splunk SaaS, Splunk Enterprise Security, Splunk SaaS UBA, Crowdstrike, Tenable, Forescout, zScaler, Bigfix, MaaS-360 (IBM MaaS-360), and Encase for forensic investigations, Fireeye, Cortex XSOAR, Cortex XDR, and Prisma-Access

Prior HHS experience a plus

Compensation: The salary range for this position is $115,000 to $120,000 per year based and is based on experience and certifications levels.

Benefits: Health, dental, and vision insurance; 401(k) with employer match; paid time off; professional development opportunities.

#LI-OnSite

As the Cybersecurity Analyst Tier 2, you are responsible for overseeing and managing Tier 2 level threat response in our client’s Security Operations Center. Your role involves working with a team of security analysts and engineers who monitor, detect, analyze, and respond to security incidents and threats in an organization's IT environment at the Tier 2 Level. Additionally, you play a critical role in analyzing and resolving cyber threats or escalating incidents for Tier 3 response as necessary.  Technical expertise, and a deep understanding of cybersecurity concepts are essential for success in this role. This role is ONSITE in our SOC located in Rockville, MD.  US Citizenship is required for consideration.

This role is full-time and requires the ability to work 6 PM to 6 AM on weekends and 2 fixed shifts during the work week.

Role and Responsibilities 

• Respond promptly and effectively to security incidents and threats discovered by CSOC Analyst Level I and carry out effective Level II analysis of incidents.
• Remediation of incidents and escalation when necessary to Tier 3 support
• Initial assessment of the scope of the attack and affected systems
• Accurately document cases during investigations and effectively communicate findings to Level I Analyst or escalation team to ensure complete handover of work streams.
• Continuously improve incident management processes through periodic threat hunting exercises, knowledge optimization effort building, and by comprehensive diagnosis and analysis of incident trends.
• Follow the issue tracking, escalation policies and work effectively across all CSOC tiers as the technical competence requires.
• Dedicated monitoring and analysis of cyber security events by use of SOC tools
• Incident Response generation and reporting IAW established procedures.
• Provide Level II technical support in CSOC operations and activities.
• Provide daily/weekly updates on CSOC operations and developments.
• Conduct Forensic analysis and respond to data call activities.
• Generate quality technical reports containing methodologies, findings, and recommendations.
• Work with external stakeholders to understand operational needs and develop effective processes.
• Maintain a current understanding of industry trends, emerging cyber threats, and new solutions which may impact CSOC activities.
• Collaborate with CSOC SME to ensure optimal performance using CSOC technology.
• Identify, reverse engineering and de-obfuscating digital content related to an incident.

 Qualifications:

3-5+ years of experience within a Level Tier 2 cybersecurity environment; experience in a leadership role is preferred.

Bachelor’s in information technology, Computer Science, or a related field; or relevant, commensurate work experience

Robust Certification Portfolio including Security+ and one or more of the following preferred: Network+, CEH, Azure or Cloud Certification, and Splunk Core Certified Power User.

Vulnerability/cyber incident management framework

Experience with advanced technologies such as: Splunk SaaS, Splunk Enterprise Security, Splunk SaaS UBA, Crowdstrike, Tenable, Forescout, zScaler, Bigfix, MaaS-360 (IBM MaaS-360), and Encase for forensic investigations, Fireeye, Cortex XSOAR, Cortex XDR, and Prisma-Access

Prior HHS experience a plus

Compensation: The salary range for this position is $115,000 to $120,000 per year based and is based on experience and certifications levels.

Benefits: Health, dental, and vision insurance; 401(k) with employer match; paid time off; professional development opportunities.

#LI-OnSite

As the Cybersecurity Analyst Tier 3, you are responsible for overseeing and managing the daily activities of the Security Operations Center for our federal customer. Your role involves helping to lead a team of security analysts and engineers who monitor, detect, analyze, and respond to security incidents and threats in an organization's IT environment. As a Cybersecurity Analyst T3, you play a critical role in safeguarding the organization's assets, data, and reputation from cyber threats. Leadership skills, technical expertise, and a deep understanding of cybersecurity concepts are essential for success in this role. The physical worksite for this position is located in Rockville, MD.  This position requires that ability to obtain and retain a public trust level security clearance. An active CISSP, CISM, or CISA is required for consideration for this position.  US Citizenship is required for this role.

Role and Responsibilities

• Team Management: You are managing highly complex cybersecurity issue resolution while training and mentoring Tier 1 and Tier 2 Analysts. This involves hiring, training, and mentoring security analysts, engineers, and other team members. You will help ensure that each team member understands their roles, responsibilities, and goals within the SOC.
• Effectively communicate information to stakeholders of all levels.
• Incident Response: Coordinating the response to security incidents is a crucial aspect of your role. When a security incident occurs, you will help guide the team in analyzing and containing the threat, mitigating the impact, and initiating recovery procedures.
• Security Monitoring and Detection: Overseeing the continuous monitoring of security events and alerts to identify potential security breaches or threats. This includes analyzing logs, network traffic, and security tools to detect anomalous behavior and suspicious activities.
• Threat Intelligence: Keeping abreast of the latest security threats, vulnerabilities, and attack techniques is essential. You will be responsible for integrating threat intelligence into your SOC's processes and ensuring the team is well-informed about emerging risks.
• Incident Analysis and Reporting: The Tier 3 team will investigate and analyze security incidents to understand their root cause and potential impact. You will generate incident reports for both technical and non-technical stakeholders, including management and relevant authorities.
• Security Tooling and Technology: Evaluating and implementing security technologies, such as SIEM (Security Information and Event Management) systems, intrusion detection/prevention systems, and other security tools that enhance the SOC's capabilities.
• Process Improvement: Continuously improving SOC procedures, workflows, and playbooks to streamline incident response and enhance overall security operations.
• Collaboration: Working closely with other teams in the organization, such as IT, network operations, compliance, and legal, to ensure effective communication and coordination during security incidents.
• Compliance and Regulations: Ensuring that the SOC operates in compliance with relevant security standards, regulations, and policies.
• Training and Awareness: Conducting regular security awareness training for employees to enhance the overall security posture of the organization.

Qualifications:

• 5+ years of experience within a cybersecurity environment; including 3+ years of experience in a cybersecurity SOC leadership role is required.
• Bachelor’s degree in computer science, or a related field; or 5+ years of commensurate work experience in lieu of a degree.
• Endpoint and network security experience required.
• Experience in a security operations center, or similar environment, and identifying indications of compromise or attack and responding to incidents.
• Robust certification credentials such as: CISSP, CISM, CISA, required, additional certifications such as Network+, CEH, SANS FOR578: Cyber Threat Intelligence, SANS FOR508: Advanced Incident Response, Threat Hunting, and Digital Forensics, Splunk Core Certified Advanced Power User, Splunk Administrator, and Splunk SOAR administrator are preferred.
• Knowledge of MITRA attached framework.
• Vulnerability/cyber incident management framework
• Experience in SOC Tier 3, mentoring a team of cybersecurity professionals.
• Experience with digital forensics and process
• Knowledge of Splunk, Crowdstrike, tenable, forescout, Xscalar, BigFix, MS360, Encase, Fireeye, Cortex SOAR XDR, Prisma

Preferred Skills and Experience:

• IDS, IPS, EDR, ATP, Malware defenses and monitoring experience.
• Threat hunting experience preferred.
• Knowledge of common adversary tactics and techniques, e.g., obfuscation, persistence, defense evasion, etc.
• Working knowledge of incident response procedures.
• Experience with SQL query construction preferred.
• Experience administering and supporting Windows OS (both workstations and server) and one of the following: Apple or Linux-based operating systems.
• Fundamental understanding of network traffic analysis including TCP/IP, routing, switching, protocols, etc.
• Strong understanding of Windows event log analysis
• Experience with enterprise information security data management - SIEM experience a plus.
• Programming and scripting skills a plus.
• Excellent troubleshooting and analytical thinking skills
• Strong documentation and communication skills
• Advanced Cyber Security certifications preferred but not required.
• Excellent customer service skills

Compensation: The salary range for this position is $130,000 to $140,000 per year based and is based on experience and certifications levels.

Benefits: Health, dental, and vision insurance; 401(k) with employer match; paid time off; professional development opportunities.

#LI-OnSite

This training program is designed to provide a transitioning service member with a comprehensive, hands-on experience in a civilian Security Operations Center. The program will leverage the fellow’s existing military cybersecurity knowledge and translate it to commercial tools, processes, and a corporate environment.

The goal is for the fellow to become a qualified Tier 2 SOC Analyst or Information Security Engineer, capable of in-depth incident investigation, threat hunting, and contributing to overall security posture of the organization and the workforce.

You Will:

• Support Security Incidents, ensuring that any serious threats and impacts are understood, mitigated and learnt from with speed and professionalism
• Conduct Investigations, digging into the context of situations and determining if a threat exists and taking action to prevent it
• Collaborate cross-functionally with information security, legal, human resources, executive teams, external (developers & customers) and the security community
• Work collaboratively with other teams in security and engineering to support (and sometimes lead) high profile events or responses to vulnerabilities
• Produce Security response procedures including, runbooks, IRPs, workflows and automations, as well as internal briefings
• Threat Hunt for anomalous activity in our signals, determine if these outliers are threats or expected behavior

You Are:

• In alignment with the SkillBridge program, candidates must meet the following criteria:
  • Have served at least 180 continuous days of active duty
  • Are within 180 days of separation or retirement from military service
  • Will receive an honorable discharge
  • Have completed the Transition Assistance Program (TAP)
  • Additionally, written permission from the unit commander is needed before your start date.
• A detailed thinker who enjoys exploring and collecting the details and considering how they impact what you’re doing
• An eager problem solver who is drawn to issues rather than avoidant of it
• A team player who enjoys winning as a team member and holds yourself to a high standard to enable the group
• Compelled by our mission to protect Roblox’s users from harm and protect the safe space we’ve created

During SkillBridge participation, Service members continue to receive military compensation and remain covered by their military benefits. You can find more information here.

You may redact age, date of birth, and dates of attendance/graduation from your resume if you prefer.

Working at Thoropass

At Thoropass, we’re redefining how modern companies achieve and maintain compliance. As the audit-first compliance partner, we pair deep audit expertise with advanced technology to deliver unmatched accuracy, efficiency, and confidence at every stage of the compliance journey.

Our mission is to raise the bar for the industry—helping organizations not only meet requirements but demonstrate trust as a competitive advantage. We believe compliance done right enables innovation, accelerates growth, and protects what matters most.

Joining Thoropass means working alongside auditors, engineers, and compliance experts who are setting a new standard for how compliance and audit should work—collaborative, transparent, and built for the real world. Together, we’re shaping the future of enterprise-grade compliance.

Our Values 

These are the behaviors and skills we look for in our people. Living by these values ensures we are building a team that can grow together and deliver the best possible outcomes for each other and our customers.

• Take thoughtful risk: We solve for today while being considerate of tomorrow—creatively leveraging our tools and abilities to hit ambitious goals.
• Own the outcome: We take accountability for our impact—on our customers, our teammates, and our industry. We follow through with excellence and integrity in everything we do.
• Be curious, ask, and learn: We always seek to better understand our industry and our customers. We don’t shy away from mistakes—using every bit of data to learn and iterate.
• Win together: Compliance is a team sport. We proactively engage with one another and check our egos at the door in search of the best ideas.
• Move the needle: Our goals are lofty for a reason. We set clear expectations, give direct feedback, and challenge ourselves to close the gap between those goals and results.

What We Do

Thoropass is the audit-first compliance partner for growing and enterprise organizations that expect more from their compliance programs. We combine deep audit expertise with advanced technology to help customers achieve, maintain, and scale compliance with precision and confidence.

Through our integrated platform, customers can manage compliance programs, complete audits, and access complementary services like penetration testing—all supported by our in-house audit firm and team of security and compliance experts.

From SOC 2 and ISO 27001 to PCI, HIPAA, and HITRUST, we deliver high-quality audits and continuous compliance management that scales with our customers’ growth. Our audit-first approach ensures every engagement meets the highest standards of accuracy, independence, and efficiency—whether you’re a scaling SaaS company or an enterprise expanding globally.

Founded in 2019 and headquartered in New York, Thoropass is backed by leading investors including J.P. Morgan, PayPal Ventures, Fin Capital, Centana, Canapi, and Bain Capital. With a global team across 18+ countries, we’re building the future of compliance—one audit at a time.

About the Role

The Director of Product Marketing is a key leadership role responsible for driving the development and execution of product marketing and customer evangelism strategies that fuel the company’s growth. At the core of this role is the mandate to unblock and elevate the story that CISOs and security leaders care about—crystallizing Thoropass’s value proposition in a way that sales can confidently deliver and that translates into measurable improvements in win rates.

You’ll be our expert at the intersection of the industry, competition, and our customers. Your goal is to be a catalyst for all GTM teams—marketing, sales, partners—equipping them with a powerful, repeatable narrative rooted in buyer needs, especially those of CISOs. You will report to the VP of Marketing and immediately manage one direct report, with the opportunity to grow your team. You’ll lead cross-functional projects that drive product awareness, internal enablement, and customer engagement.

We love collaborating and seeing each other succeed—teamwork is everything. We set clear expectations through quarterly OKRs and align our goals to company-level revenue targets. We’re a data-driven team with visibility into performance. In partnership with the VP of Marketing, you will develop quarterly plans and annual strategies, recommending the budget, channels, and resources needed to drive product awareness, adoption, and a compelling CISO-ready narrative that accelerates deal momentum. The marketing team at Thoropass is highly visible across the organization and a core driver of our current and future growth.

Qualifications

• 10+ years of experience in a growth marketing role, with 5–7 years in Product Marketing
• 3+ years in B2B SaaS
• Experience in high-growth startup environments with evolving competition
• People management experience
• Hands-on field experience—you've run demos, told product stories, and refined messaging directly with customers and prospects
• Experience building and running an analyst relations program
• Strong partnership experience with content and demand teams to build messaging that resonates with technical and executive buyers
• Exceptional written and verbal communication skills, with the ability to craft a narrative that breaks through to CISOs and clearly articulates value
• Demonstrated empathy and understanding of how to partner with Sales, Partnerships, and Customer Success
• Experience working directly with C-level executive teams
• Bonus: Experience translating complex security, compliance, and product concepts into clear, compelling value propositions that improve sales effectiveness
  
  

Responsibilities

• Unlock a compelling story that CISOs care about, clearly explaining Thoropass’s differentiators and enabling Sales to sell with confidence—ultimately improving conversion and win rates
• Be a catalyst for growth by enabling all GTM teams to understand our buyers, their pain points, and the value Thoropass uniquely provides
• Partner with Demand Gen to develop campaigns that accurately target our ICP and reinforce a CISO-ready value narrative
• Collaborate with Sales Enablement and Customer Success to ensure sales materials, messaging frameworks, and training clearly convey our value and resonate with security and compliance leaders
• Support the development of networking and education experiences that bring customers and prospects together, reinforcing our market story
• Build and execute an analyst relations program with regular engagement to strengthen our leadership position and validate our narrative
• Conduct market research and analysis to inform product positioning, messaging, and GTM strategies—grounding our story in real customer insight
  
• Lead cross-functional initiatives to ensure cohesive and effective product launches; recommend pricing strategies and customer engagement programs that reinforce value
• Drive thought leadership and industry presence through conference speaking, content development, and expert commentary—advancing Thoropass’s voice in conversations that matter to CISOs
• Communicate plans, expectations, and results to senior leadership and marketing peers
• Be a supportive teammate who contributes to a collaborative, high-performance culture

Compensation & Benefits

• Compensation range for this position is $180,000 - $200,000 base salary + bonus & equity - placement will be based on experience, skills and location
• Quarterly variable compensation based on performance
• Exceptional health, vision, and dental care
• Early equity in a fast-growing company
• Hybrid work-from-home model
• Unlimited PTO
• Home office equipment stipend
• Monthly wellness & Wi-Fi stipend
• Learning and development stipend
• Dog-friendly office & pet insurance!

ABOUT THE TEAM

Anduril's Detection and Response team is looking for a Security Operations Analyst to be the watchtower for Anduril's critical defense technologies. As a SecOps Analyst on the detection and response team, you'll be responsible for monitoring and responding to adversarial activity while helping incorporate key detection feedback loops with the detection engineering team. As a Senior SecOps Analyst, you will serve as an incident commander alongside other senior analysts. When not responding to threats, you'll be asking questions of our data sets, conducting threat hunting and data normalization operations across the organization to understand user behavior and identify anomalies. 

WHAT YOU'LL DO

• Triage and respond to alerts / incidents covering multiple disciplines including, but not limited to, phishing, endpoints, cloud infrastructure and services, and SaaS applications
• Build and optimize tailored detection signatures, response playbooks, and response automation using detection-as-code principles
• As the frontline of DNR, you will lead the feedback loop for detections, ensuring alerts are fine tuned to reduce false positives
• Participate in threat modeling scenarios with cross-functional partners to understand weaknesses across Cloud, Mobile, Endpoints, and other environments incorporating findings into security controls and/or detection signatures
• Organize and conduct threat hunting and data baselines to identify anomalous patterns in data
• Participate in an on-call rotation responding to security events and conducting incident response investigations while effectively communicating findings to key stakeholders. As a Senior SecOps Analyst, you will serve as an incident commander as necessary.
• Proactively collaborate with a wide range of stakeholders, guiding detection and response maturity of key worlds, leading incidents and large-scale data baselines, and being responsible with mentoring and guiding junior analysts.

REQUIRED QUALIFICATIONS

• Experience in security monitoring, log analysis, and detection engineering within large data sets across endpoint, network, and a wide variety of application log sources
• Experience in Python development, specifically contributing to a shared codebase used for automating SOC operations
• Must have experience with one or more SIEM languages (SPL, KQL, SQL)
• Experience conducting analysis in a data lake environment
• Broad range of practical security knowledge across the spectrum of endpoint, network, identity, application, and cloud infrastructure
• Knowledge of attacker tactics, techniques, and procedures (TTPs) across Windows, Linux, MacOS, AWS/Azure, etc.
• Strong communication skills and experience collaborating with internal and external stakeholders
• Must be able to obtain and hold a U.S. Top Secret security clearance

PREFERRED QUALIFICATIONS

• Experience conducting incident response in the Cloud (AWS, Azure, GCP)
• Digital Forensics and/or reverse engineering experience is a plus!

ABOUT THE TEAM

Anduril's Detection and Response team is looking for a Security Operations Analyst to be the watchtower for Anduril's critical defense technologies. As a SecOps Analyst on the detection and response team, you'll be responsible for monitoring and responding to adversarial activity while helping incorporate key detection feedback loops with the detection engineering team. As a Senior SecOps Analyst, you will serve as an incident commander alongside other senior analysts. When not responding to threats, you'll be asking questions of our data sets, conducting threat hunting and data normalization operations across the organization to understand user behavior and identify anomalies. 

WHAT YOU'LL DO

• Triage and respond to alerts / incidents covering multiple disciplines including, but not limited to, phishing, endpoints, cloud infrastructure and services, and SaaS applications
• Build and optimize tailored detection signatures, response playbooks, and response automation using detection-as-code principles
• As the frontline of DNR, you will lead the feedback loop for detections, ensuring alerts are fine tuned to reduce false positives
• Participate in threat modeling scenarios with cross-functional partners to understand weaknesses across Cloud, Mobile, Endpoints, and other environments incorporating findings into security controls and/or detection signatures
• Organize and conduct threat hunting and data baselines to identify anomalous patterns in data
• Participate in an on-call rotation responding to security events and conducting incident response investigations while effectively communicating findings to key stakeholders. As a Senior SecOps Analyst, you will serve as an incident commander as necessary.
• Proactively collaborate with a wide range of stakeholders, guiding detection and response maturity of key worlds, leading incidents and large-scale data baselines, and being responsible with mentoring and guiding junior analysts.

REQUIRED QUALIFICATIONS

• Experience in security monitoring, log analysis, and detection engineering within large data sets across endpoint, network, and a wide variety of application log sources
• Experience in Python development, specifically contributing to a shared codebase used for automating SOC operations
• Must have experience with one or more SIEM languages (SPL, KQL, SQL)
• Experience conducting analysis in a data lake environment
• Broad range of practical security knowledge across the spectrum of endpoint, network, identity, application, and cloud infrastructure
• Knowledge of attacker tactics, techniques, and procedures (TTPs) across Windows, Linux, MacOS, AWS/Azure, etc.
• Strong communication skills and experience collaborating with internal and external stakeholders
• Must be able to obtain and hold a U.S. Top Secret security clearance

PREFERRED QUALIFICATIONS

• Experience conducting incident response in the Cloud (AWS, Azure, GCP)
• Digital Forensics and/or reverse engineering experience is a plus!

ABOUT THE TEAM

Anduril's Detection and Response team is looking for a Security Operations Analyst to be the watchtower for Anduril's critical defense technologies. As a SecOps Analyst on the detection and response team, you'll be responsible for monitoring and responding to adversarial activity while helping incorporate key detection feedback loops with the detection engineering team. As a Senior SecOps Analyst, you will serve as an incident commander alongside other senior analysts. When not responding to threats, you'll be asking questions of our data sets, conducting threat hunting and data normalization operations across the organization to understand user behavior and identify anomalies. 

WHAT YOU'LL DO

• Triage and respond to alerts / incidents covering multiple disciplines including, but not limited to, phishing, endpoints, cloud infrastructure and services, and SaaS applications
• Build and optimize tailored detection signatures, response playbooks, and response automation using detection-as-code principles
• As the frontline of DNR, you will lead the feedback loop for detections, ensuring alerts are fine tuned to reduce false positives
• Participate in threat modeling scenarios with cross-functional partners to understand weaknesses across Cloud, Mobile, Endpoints, and other environments incorporating findings into security controls and/or detection signatures
• Organize and conduct threat hunting and data baselines to identify anomalous patterns in data
• Participate in an on-call rotation responding to security events and conducting incident response investigations while effectively communicating findings to key stakeholders. As a Senior SecOps Analyst, you will serve as an incident commander as necessary.
• Proactively collaborate with a wide range of stakeholders, guiding detection and response maturity of key worlds, leading incidents and large-scale data baselines, and being responsible with mentoring and guiding junior analysts.

REQUIRED QUALIFICATIONS

• Experience in security monitoring, log analysis, and detection engineering within large data sets across endpoint, network, and a wide variety of application log sources
• Experience in Python development, specifically contributing to a shared codebase used for automating SOC operations
• Must have experience with one or more SIEM languages (SPL, KQL, SQL)
• Experience conducting analysis in a data lake environment
• Broad range of practical security knowledge across the spectrum of endpoint, network, identity, application, and cloud infrastructure
• Knowledge of attacker tactics, techniques, and procedures (TTPs) across Windows, Linux, MacOS, AWS/Azure, etc.
• Strong communication skills and experience collaborating with internal and external stakeholders
• Must be able to obtain and hold a U.S. Top Secret security clearance

PREFERRED QUALIFICATIONS

• Experience conducting incident response in the Cloud (AWS, Azure, GCP)
• Digital Forensics and/or reverse engineering experience is a plus!

ABOUT THE TEAM

Anduril's Detection and Response team is looking for a Security Operations Analyst to be the watchtower for Anduril's critical defense technologies. As a SecOps Analyst on the detection and response team, you'll be responsible for monitoring and responding to adversarial activity while helping incorporate key detection feedback loops with the detection engineering team. As a Senior SecOps Analyst, you will serve as an incident commander alongside other senior analysts. When not responding to threats, you'll be asking questions of our data sets, conducting threat hunting and data normalization operations across the organization to understand user behavior and identify anomalies. 

WHAT YOU'LL DO

• Triage and respond to alerts / incidents covering multiple disciplines including, but not limited to, phishing, endpoints, cloud infrastructure and services, and SaaS applications
• Build and optimize tailored detection signatures, response playbooks, and response automation using detection-as-code principles
• As the frontline of DNR, you will lead the feedback loop for detections, ensuring alerts are fine tuned to reduce false positives
• Participate in threat modeling scenarios with cross-functional partners to understand weaknesses across Cloud, Mobile, Endpoints, and other environments incorporating findings into security controls and/or detection signatures
• Organize and conduct threat hunting and data baselines to identify anomalous patterns in data
• Participate in an on-call rotation responding to security events and conducting incident response investigations while effectively communicating findings to key stakeholders. As a Senior SecOps Analyst, you will serve as an incident commander as necessary.
• Proactively collaborate with a wide range of stakeholders, guiding detection and response maturity of key worlds, leading incidents and large-scale data baselines, and being responsible with mentoring and guiding junior analysts.

REQUIRED QUALIFICATIONS

• Experience in security monitoring, log analysis, and detection engineering within large data sets across endpoint, network, and a wide variety of application log sources
• Experience in Python development, specifically contributing to a shared codebase used for automating SOC operations
• Must have experience with one or more SIEM languages (SPL, KQL, SQL)
• Experience conducting analysis in a data lake environment
• Broad range of practical security knowledge across the spectrum of endpoint, network, identity, application, and cloud infrastructure
• Knowledge of attacker tactics, techniques, and procedures (TTPs) across Windows, Linux, MacOS, AWS/Azure, etc.
• Strong communication skills and experience collaborating with internal and external stakeholders
• Must be able to obtain and hold a U.S. Top Secret security clearance

PREFERRED QUALIFICATIONS

• Experience conducting incident response in the Cloud (AWS, Azure, GCP)
• Digital Forensics and/or reverse engineering experience is a plus!

Reports to: Senior Director, Adversary Tactics

Location: Remote US

Compensation Range: $200,000.00 to $225,000.00 base plus bonus and equity

What We Do:

Cybercrime is growing, and more businesses are getting hit by threats that used to target only the biggest organizations. That pushes defenders like us to operate at the highest level, and it deepens our need for good people who want to make a meaningful impact.

Founded in 2015 by former NSA cyber operators, Huntress is a remote-first team working to make enterprise-grade cybersecurity accessible to businesses of all sizes. We work closely with security teams and service providers protecting complex environments, often without the time or headcount to handle it all. That’s why we build our technology in-house and back it with a 24/7 human-led Security Operations Center (SOC). As a result, our platform is never disconnected from the experts who manage it, ensuring our customers' protection.

Huntress now secures more than 5M endpoints and 11M identities worldwide. Those numbers keep growing because more businesses rely on us to help carry the load and operate with more confidence. Every day, you can see that commitment in how we stand with our customers and how we show up for each other.

About the Role:

The Huntress Adversary Tactics team has the unique honor to wake up every morning knowing we’re going to make hackers regret targeting our partners and customers. We’re looking for someone who wants to pour their creativity into researching, hunting, and uncovering threats in our customer networks. Competitive candidates have experience building a threat intelligence program utilizing internal and external threat data. Candidates should also have experience creating Threat Intelligence reports, advocating for product enhancements, and public speaking. 

Threat Intelligence Analysts aggregate threat data from the previous month and build out reports for our customers. These reports may also be used for marketing and help show the value of what Huntress provides to customers and the community. Threat Intelligence Analysts are also responsible for writing blog posts and marketing materials regarding emerging threat trends. They also work closely with Security and Product Researchers to obtain more context on threat data.  

Familiarity with product management, scripting/development, incident response, malware analysis, configuration management, and antivirus technologies is an additional way to differentiate yourself.

As you can imagine, success doesn’t happen in a vacuum. An effective analyst fosters highly collaborative environments between the Product, Marketing, and Security teams to accelerate our mission and secure the 99% of businesses that fall below the enterprise poverty line. This collaboration is needed to produce and prioritize a unified technical vision that ultimately delivers our most impactful features and capabilities.

Are you ready for the challenge?

Responsibilities:

• Conducts research on emerging adversary tradecraft to help make decisions on operationalizing our data
• Responsible for aggregating threat data to build out reports for customers to show Huntress’ value, and inform them of various threats that have been seen and reported
• Responsible for creating reports for marketing to show Huntress’ value to the larger community
• Promote Huntress’ reputation through media interaction, public speaking, and blogs
• Works with the Sr. Director of Adversary Tactics, the Security Operations Center, Product, and others to develop the Product and threat operations roadmap
• Provides technical leadership for some members of the Security team
• Supports the professional development of researchers in the organization through coaching and mentorship
• Responsible for enhancing Huntress visibility by ingesting and utilizing IOCs from external threat intel sources 
• Responsible for blog posts and other marketing materials regarding threat trends
• Responsible for building a threat intelligence program that makes use of our internal threat data

Qualifications:

• 7-10+ years of experience in threat intelligence within the cybersecurity industry
• Experience with SIEM tools for scaled log analysis
• Familiarity with detection engineering, detection logic, i.e., Sigma Rules
• Experience researching and scoping threat hunt missions
• Foundational development experience across multiple platforms (e.g., Windows and/or macOS), C/C++, GoLang, and Python (nice to have)
• Proficient knowledge of Windows and/or macOS subsystems and how they interact both at the user and kernel level (nice to have)
• Understanding of cybersecurity, threat actors, and end-to-end threat life cycle, including one or more of the following: digital forensics, malware research, incident response, vulnerabilities, and exploits
• Experience with 3rd-party intelligence tools, feeds, and reputation services
• Experience conducting OSINT gathering and analysis
• Excellent written and verbal communication skills
• Familiarity with utilizing AI in workflows 

What We Offer: 

• 100% remote work environment - since our founding in 2015
• Generous paid time off policy, including vacation, sick time, and paid holidays
• 12 weeks of paid parental leave
• Highly competitive and comprehensive medical, dental, and vision benefits plans 
• 401(k) with a 5% contribution regardless of employee contribution
• Life and Disability insurance plans
• Stock options for all full-time employees 
• One-time $500 reimbursement for building/upgrading home office
• Annual allowance for education and professional development assistance 
• $75 USD/month digital reimbursement
• Access to the BetterUp platform for coaching, personal, and professional growth

Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are. 

We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status.  

We do discriminate against hackers who try to exploit businesses of all sizes.

Accommodations: 

If you require reasonable accommodation to complete this application, interview, or pre-employment testing or participate in the employee selection process, please direct your inquiries to accommodations@huntresslabs.com. Please note that non-accommodation requests to this inbox will not receive a response. 

Huntress uses artificial intelligence tools to assist in reviewing and evaluating job applications, including resume screening, skills assessment, and candidate matching and comparisons. These AI tools support our human recruiters in the initial review process, but do not make final hiring decisions without human involvement. By submitting your application, you acknowledge this use of AI in our recruitment process. Please review our Candidate Privacy Notice for more details on our practices and your data privacy rights.

#BI-Remote 

Cybersecurity Analyst 

InfoSec Organization •  Reports to CISO  •  On-site 

About the Role 

We are hiring a Cybersecurity Analyst to own our day-to-day security monitoring function and produce the evidence required to achieve and maintain our cybersecurity certification. This role is the operational core of our cybersecurity organization, responsible for managing alert triage across our cybersecurity tool stack, coordinating with our managed SOC partner, documenting security events, and keeping our monitoring and incident response activities continuously evidenced and ready for review. 

This is a hands-on, high-accountability role reporting directly to the CISO. You will work closely with our InfoSec Engineer, Compliance Program Manager, and our managed security operations partner. You will help set up and monitor our security tool stack, which spans endpoint protection, network detection, secure web access, application control, and identity management. You establish the monitoring cadence that keeps our security posture visible and our compliance evidence current. 

The Immediate Mission 

You will be assisting in getting the organization assessment ready: 

• Take ownership of daily alert triage across our security tool stack, reviewing and dispositioning alerts before they age without review 
• Serve as the internal liaison to our managed SOC partner, receiving their monitoring reports, validating their outputs, and integrating their work into our compliance evidence.
• Build and maintain the incident log, ensuring every security event is captured, classified, and closed with supporting documentation.
• Produce audit log evidence demonstrating that our systems are monitored, logs are retained, and events are reviewed on a consistent schedule.
• Deliver regular monitoring reports to our compliance tracking platform, ensuring up-to-date evidence flows into our central repository.
• Coordinate with the Compliance Program Manager to ensure monitoring and incident response evidence is organized and ready for assessor review.

What You’ll Own 

Security Monitoring and Alert Triage 

• Own daily triage of alerts from our network detection platform and other security tools, reviewing, classifying, escalating, and documenting dispositions.
• Serve as the primary internal point of contact for our managed security operations partner, receiving daily and weekly alert summaries, validating completeness, and tracking open items to closure.
• Maintain the security event log, a running record of alerts, dispositions, escalations, and outcomes that serve as core compliance evidence 
• Identify patterns in alert data and surface recurring issues to the InfoSec Engineer for remediation.
• Ensure continuous monitoring coverage is documented and demonstrable, a direct requirement of the cybersecurity framework we are certifying against 

Incident Response Documentation 

• Own the incident log, documenting every security event from detection through closure, including timeline, classification, containment actions, and resolution.
• Coordinate with our managed security operations partner on incident triage, escalation, and post-incident reporting, ensuring their outputs are captured and integrated into our internal records.
• Maintain the Incident Response Plan as a living document, updating it based on lessons learned and ensuring it reflects actual operational procedures.
• Produce incident response evidence for our compliance assessment, including incident logs, escalation records, containment documentation, and post-incident reviews.
• Support the Compliance Program Manager in mapping incident documentation to the applicable compliance controls.

Log Management and Audit Evidence 

• Pull and organize log samples from our endpoint protection, network security, web access, application control, and identity management platforms, demonstrating that logging is active and coverage is comprehensive.
• Document log configuration, including retention settings, coverage scope, and alert thresholds, as evidence that our monitoring posture meets compliance requirements 
• Produce regular monitoring reports to our compliance tracking platform, ensuring the system reflects the current operational status 
• Coordinate with the InfoSec Engineer to ensure logging is enabled and configured correctly across all systems in scope.
• Maintain organized evidence packages, including log samples, triage records, and monitoring reports, ready for assessor review.

Managed SOC Coordination 

• Serve as the day-to-day operational liaison to our managed security operations partner, tracking deliverables, validating report quality, and escalating gaps to the CISO.
• Ensure monitoring outputs from our security partner are received on schedule and integrated into internal compliance records.
• Own the deliverable log, tracking what has been received, what is outstanding, and what has been incorporated into evidence packages.
• Coordinate with the Compliance Program Manager to ensure third-party security operations outputs satisfy our compliance requirements.

Continuous Monitoring and Compliance Platform 

• Maintain our compliance tracking platform as the operational source of truth for monitoring evidence, uploading reports, log reviews, and control status updates on a regular cadence 
• Support the Compliance Program Manager in maintaining continuous compliance readiness after certification 
• Flag gaps in monitoring coverage, log retention, or incident documentation to the CISO and Compliance Program Manager 
• Participate in periodic control effectiveness reviews, providing operational data and evidence to support ongoing assessments 

Basic Qualifications 

• 3 or more years in cybersecurity operations, SOC analyst, or cybersecurity monitoring role 
• Hands-on experience with endpoint protection, network detection, or security event management platforms in an operational capacity, including reviewing alerts, triaging events, and documenting outcomes 
• Demonstrated ability to write and maintain incident response documentation, such as incident logs, incident reports, and post-incident reviews 
• Experience working with or alongside a managed security operations provider, receiving their output, and integrating it into internal security operations 
• Familiarity with audit logging requirements and log review processes, including an understanding of what logging coverage means and how to demonstrate it 
• Organized, detail-oriented, and able to maintain documentation quality under day-to-day operational pressure 
• Comfortable working in a lean security organization where you own your domain independently 

Preferred Qualifications 

• Direct experience supporting a formal cybersecurity compliance effort, with an understanding of how operational security outputs map to compliance evidence 

Our current security tool stack and the experience we are looking for: 

• Endpoint protection and detection — we use CrowdStrike 
• Network detection and response — we use Darktrace 
• Secure web gateway and network security — we use Zscaler 
• Application allows listing and execution control — we use ThreatLocker 
• Identity and access management event monitoring — we use Okta 
• Compliance tracking and evidence management — we use Vanta 
• Relevant certifications are a plus but not required. We recognize Security+, CySA+, GCIA, GCIH, and CISA as strong signals for this role. Candidates working toward or eligible for CISSP are equally welcome. 
• Familiarity with compliance-driven security environments, where day-to-day monitoring and incident documentation are part of a larger audit and certification process, is a plus but not required.
• Familiarity with security information and event management platforms such as Splunk, Microsoft Sentinel, or Chronicle, relevant as we continue to build out our log aggregation capabilities 
• A bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field is a plus. Equivalent hands-on experience, military cybersecurity training, or industry certifications are equally considered. 

Compensation

• Cybersecurity Analyst: $110,000 - $140,000
• Leveling and base salary are determined by job-related skills, education level, experience level, and job
• performance
• You will be eligible for long-term incentives in the form of stock options and/or long-term cash awards
• Offer compensation also includes the ability to purchase company stock through the Employee Stock Purchase Plan

About Zone & Co: 

Zone & Co is on a mission to empower finance professionals to drive strategic growth through seamless, intelligent operations. We build cloud-native software solutions on Oracle NetSuite, automating complex financial processes like billing, accounts payable, reporting, and reconciliation. Our vision is to unlock the full strategic potential of finance by infusing the ERP with the intelligence and automation needed for truly transformative operations. Join our rapidly growing team as we redefine financial efficiency for scaling businesses worldwide.

The Role: We are seeking a meticulous and proactive Security and Privacy Compliance Analyst to help safeguard our organization and our customers' data. Reporting directly to the Director of IT, Security and Compliance, you will play a critical role in maturing our governance, risk, and compliance (GRC) programs. In this position, you will bridge the gap between technical security controls and regulatory requirements, ensuring that Zone & Co's rapidly expanding suite of financial software maintains the highest standards of data protection and privacy.

This role requires a strong foundational knowledge of major security frameworks and privacy regulations, a keen eye for detail in auditing internal processes, and the ability to clearly communicate compliance postures to both internal engineering teams and enterprise customers.

Essential Job Functions:

• Compliance Framework Governance: Lead the management and continuous scaling of Zone & Co’s core security compliance frameworks, specifically SOC 2 Type II and ISO 27001.
• Privacy Operations Leadership: Govern global data privacy operations to ensure strict, ongoing alignment with GDPR, CCPA/CPRA, and other emerging data protection laws.
• Customer Trust & Revenue Enablement: Serve as the primary security liaison for enterprise customers, directly supporting the sales cycle by demonstrating and communicating a robust, mature security posture.
• Risk & Audit Management: Manage the organization's internal audit program and oversee the third-party vendor risk lifecycle to proactively identify and mitigate vulnerabilities.

Responsibilities, Duties, and Tasks:

• Audit Coordination: Coordinate evidence collection, manage project timelines, and partner directly with external auditors during annual compliance assessments.
• Privacy Assessments: Conduct Data Privacy Impact Assessments (DPIAs) for new products and process Data Subject Access Requests (DSARs) within mandated SLAs.
• Questionnaires & Trust Center: Accurately and efficiently complete incoming vendor security questionnaires from prospects and maintain up-to-date documentation in our customer-facing Trust Center.
• Internal Control Testing: Design and execute internal audits to test whether technical and administrative controls are operating effectively. Track control gaps and drive engineering/IT remediation efforts.
• Vendor Risk Reviews: Evaluate the security and privacy postures of prospective and existing third-party vendors and sub-processors through comprehensive risk assessments.
• Policy & Training Development: Draft, update, and publish internal security policies, standard operating procedures (SOPs), and incident response plans. Develop and administer engaging company-wide security and privacy awareness training.

What You'll Bring (Qualifications and Experience):

• Experience: 3+ years of direct experience in IT Audit, Information Security, Privacy Operations, or GRC (Governance, Risk, and Compliance), preferably within a B2B SaaS, FinTech, or cloud technology environment.
• Deep Domain Expertise: Hands-on experience working with established compliance frameworks (SOC 2, ISO 27001) and navigating global privacy legislation (GDPR, CCPA).
• SaaS/Cloud Acumen: A solid understanding of cloud computing architectures (AWS, Azure, GCP) and enterprise software environments. Familiarity with ERP systems (like NetSuite) is a strong plus.
• Analytical & Problem-Solving Skills: Proven ability to translate complex regulatory requirements into actionable, practical controls for IT and engineering teams without stifling innovation.
• Exceptional Communication: Outstanding written and verbal communication skills. You must be able to write clear policies, translate technical risks for business leaders, and confidently answer complex customer security questions.
• Education & Certifications: Bachelor’s degree in Information Systems, Cybersecurity, Business, or a related field. Relevant industry certifications such as CISA, CISM, CIPP/E, CIPP/US, or Security+ are highly preferred.

About the Role:

The GRC Analyst, Federal & Customer Programs is responsible for the hands-on analysis, documentation, and operational execution of the company's security governance, risk, and compliance obligations. This role sits at the intersection of customer contracts, regulatory frameworks, and the company's security control environment — translating external requirements into clear, traceable internal commitments and evaluating how well current capabilities satisfy them. The GRC Analyst reviews incoming contractual security language, maps obligations to applicable frameworks and existing controls, produces compliance matrices and gap analyses, owns the operational risk assessment process, contributes to governance and policy lifecycle activities, and supports audit, assessment, and customer inquiry activities.

A meaningful portion of this role is dedicated to ongoing contract and requirements analysis as new programs are awarded and existing programs evolve. The GRC Analyst serves as the security function's primary reviewer of incoming contractual cybersecurity language and works directly with legal and sourcing on flow-down negotiation and redlines. Candidates who enjoy careful reading of contractual and regulatory text — and who want this to be a substantial part of their day-to-day work — will find this role a strong fit.

This is a detail-oriented, writing-intensive role requiring strong analytical judgment, fluency across multiple compliance frameworks, and the ability to work effectively with legal, sourcing, program management, engineering, and security operations stakeholders.

Key Responsibilities:

Contract & Requirements Analysis

• Review customer contracts, statements of work, security annexes, CDRLs, data protection addenda, and flow-down clauses to identify cybersecurity, privacy, and information handling obligations applicable to the company.
• Extract and catalog specific security requirements from contractual language, and translate them into structured, testable statements suitable for traceability and control mapping.
• Compare identified requirements against the company's current product scope, control environment, and certification posture to determine where compliance is already met, partially met, or requires new implementation work.
• Produce gap analyses, compliance matrices, and Requirements Traceability Matrix (RTM) artifacts that clearly communicate the state of compliance for a given contract, program, or system.
• Serve as the security function's primary point of contact for legal and sourcing during contract review, redline cycles, and flow-down negotiation, including review of subcontractor and supplier flow-down language.

Framework Mapping & Interpretation

• Maintain working proficiency across the frameworks relevant to the company's regulatory and contractual posture, including NIST SP 800-171, NIST SP 800-53, NIST CSF, CMMC, ISO 27001, FedRAMP, and applicable European frameworks such as NIS2 and GDPR.
• Map controls across frameworks to minimize duplicated work and enable consistent responses to overlapping requirements; contribute to a shared control inventory used by compliance, security, and program teams.
• Interpret framework language and authoritative guidance (NIST publications, DoD guidance, regulator FAQs) in the context of specific company systems and business scenarios and escalate ambiguity for formal risk decisions when appropriate.

Governance, Policy & ISMS Support

• Contribute to the maintenance of the company's Information Security Management System (ISMS) documentation set, including keeping control descriptions, evidence references, and scope statements accurate and current.
• Support the policy and standard lifecycle, including periodic review cycles, version control, exception governance, and clarification of control owner accountability.
• Produce compliance posture reporting and audit readiness metrics for governance forums and leadership review, including framework coverage, finding aging, and remediation progress.

Deliverable Writing & Artifact Contribution

• Draft and revise compliance deliverables including System Security Plans (SSP), Plans of Action & Milestones (POA&M), policy and standard content, control narratives, customer security questionnaire responses, and audit artifacts.
• Author clear, concise written responses to customer, auditor, and regulator inquiries, calibrated to the technical level of the audience and consistent with approved company positioning.

Risk Assessment & Treatment

• Own the operational risk assessment process and the supporting risk register, including conducting periodic and event-driven risk assessments, documenting current state, identifying deficiencies, and developing risk treatment recommendations.
• Route risk acceptance and exception decisions to the appropriate decision authority with the underlying analysis and documentation prepared for review; track decisions and ensure follow-through on conditions or expirations.
• Track open compliance findings and remediation activities, prepare status updates, and flag aging or high-severity items for escalation.

Third-Party & Supply Chain Risk

• Contribute to vendor and supplier security review activities, including evaluating vendor security questionnaires, reviewing supplier control attestations, and assessing residual risk for inclusion in procurement and program decisions.
• Support assessment of subcontractor and supplier flow-down compliance, including coordinating with sourcing and program management on supplier security obligations and remediation.

Audit & Assessment Support

• Support internal and external audit, assessment, and certification activities, including C3PAO engagements, ISO 27001 surveillance audits, customer assessments, and regulator inquiries.
• Coordinate evidence collection with system owners and control operators; validate that evidence is accurate, complete, and appropriately scoped before submission.
• Participate in assessor and auditor interviews as a subject matter contributor on specific controls and artifacts.

Cross-Functional Collaboration

• Partner with legal and sourcing on contract review, redlines, and flow-down language; with security program management on milestones, schedules, and audit coordination; and with security engineering and IT on evidence, control implementation detail, and remediation planning.
• Serve as a knowledgeable point of contact for internal teams seeking to understand what a given regulatory or contractual requirement means in practice.

What Success Looks Like in Year One

• Established a repeatable contract review intake process with legal and sourcing, including a maintained library of standard cybersecurity flow-down clauses and review turnaround expectations.
• Produced an end-to-end Requirements Traceability Matrix for at least one active federal program, traceable from contract clauses through framework controls to evidence sources.
• Stood up the operational risk register and routine risk reporting cadence, with at least one full assessment cycle completed and risk treatment decisions documented.
• Maintained the ISMS documentation set in audit-ready condition through at least one external assessment or surveillance cycle.

Required Qualifications:

• Five or more years of progressive experience in cybersecurity governance, risk, and compliance; IT audit; or a closely related discipline, with substantial hands-on exposure to framework interpretation and contract requirement analysis.
• Demonstrated working knowledge of NIST SP 800-171 and NIST SP 800-53, including control families, assessment procedures, and common implementation patterns.
• Experience contributing to SSP and POA&M artifacts, compliance matrices, or Requirements Traceability Matrices in a regulated environment.
• Practical experience supporting at least one formal audit, certification, or assessment cycle (for example CMMC, ISO 27001, SOC 2, FedRAMP, or comparable).
• Strong technical writing skills, including the ability to produce accurate, concise, and audience-appropriate compliance documentation. Writing samples may be requested as part of the interview process.
• Demonstrated comfort and interest in reading contractual and regulatory language carefully and translating it into specific, actionable internal requirements. This is a core part of the role, not an occasional task.
• Comfort working across multiple stakeholder groups — legal, sourcing, engineering, IT, security operations, and program management — and adjusting communication style accordingly.
• Bachelor's degree in Information Security, Information Systems, Business, a related field, or equivalent practical experience.

Preferred Qualifications:

• Direct experience with CMMC 2.0 assessment preparation, including familiarity with DFARS 252.204-7012 and 48 CFR Part 204.
• Familiarity with ISO 27001, FedRAMP, SOC 2, NIS2, GDPR data security obligations, or EU dual-use export control regimes.
• Experience handling Controlled Unclassified Information (CUI) in accordance with NARA and DoD requirements.
• Exposure to aerospace, defense, space, or other regulated technology environments.
• Experience reviewing or negotiating cybersecurity flow-down language in customer or supplier contracts.
• Working familiarity with Governance, Risk, and Compliance (GRC) tooling such as ServiceNow GRC, Archer, Hyperproof, Drata, Vanta, or equivalent.
• Industry certifications such as CISA, CRISC, CISSP, CGRC (formerly CAP), ISO 27001 Lead Implementer / Lead Auditor, CMMC Registered Practitioner (RP), or CMMC Certified Professional / Certified Assessor (CCP / CCA).
• Active US security clearance, or eligibility to obtain one.

Spire operates a hybrid work model, and this position will require you to work a minimum of three days per week in the office.

Access to US export-controlled software and/or technology may be required for this role. If needed, Spire will arrange the necessary licenses—this is not something candidates need to have before applying. #LI-DC1

The Mission

Panther is building the future of SOC automation through AI agents that fundamentally change how security teams operate. Our vision is to enable SOC teams to cover 5-10x more data without proportionally scaling headcount by automating the most time-intensive analyst work: alert triage, analysis, and risk validation. We're building intelligent agents that leverage our data pipeline and alerting capabilities to create a SOC team extension that gets smarter over time through collective intelligence.

The Team + Role

You'll build and lead Panther’s agentic team focused on AI-powered SOC analyst solutions that sit at the intersection of security and cutting-edge ML engineering. This is a customer-centric product engineering leadership role where you'll own the execution of our product roadmap, be the bridge between Engineering and Product Management, and you’ll build and lead the team through change alongside our customers, the industry and within the security domain. We're building autonomous security capabilities for alert triage, interactive chat, detection code generation, and text-to-search, all deeply integrated with Panther's ingestion pipeline. This role is ideal for a leader who combines strong people management skills and B2B product engineering experience within the security domain; SOC automation and XDR.

What You'll Need

• Leadership & People Management:
  • 5+ years of people management experience leading product engineering teams
  • Proven track record of hiring, developing, and retaining high-performing engineers
  • Experience managing cross-disciplinary teams and owning all aspects of people leadership
  • Strong partnership skills with recruiting teams to scale headcount effectively

• Business & Product Acumen:
  • Experience working in product-sales environments with direct customer exposure
  • Experience operating in ambiguous environments and making strategic decisions with incomplete information
  • Track record of owning the partnership between Product, Design and Engineering to define vision and roadmap
  • Experience owning user-facing product features from conception to delivery

• Technical Foundation:
  • Experience scaling a team focused on building agentic products and driving ai lead outcomes.
  • Technical depth to participate in architecture discussions and unblock teams on complex design decisions
  • AWS experience preferred (serverless architectures, cloud infrastructure)
  • Cybersecurity background is a nice-to-have but not required
  • Familiarity with modern engineering stacks (Golang, React, TypeScript, GraphQL) helpful

• Mindset:
  • Customer-obsessed: You understand that your team's integrations are the first experience customers have with Panther
  • Owner mentality: You take responsibility for outcomes, not just outputs
  • Team-focused: You prioritize team health, growth, and sustainability alongside delivery

What You'll Do

• • Lead and grow Panther's AI team — hire, develop, and retain engineers working at the intersection of security and AI, building the capabilities that will define Panther's next chapter as a mature AI SOC platform.
  • Own the AI team's delivery — drive execution of the roadmap across autonomous alert triage, interactive chat, detection code generation, and text-to-search, balancing velocity with technical quality.
  • Build Panther's SOAR capabilities using AI infrastructure — lead the team in developing a next-generation Security Orchestration, Automation, and Response solution that leverages Panther's AI infrastructure, MCP integrations, and AI policy framework to automate analyst workflows at scale.
  • Shape the AI SOC platform strategy — partner with Product and the Director of Engineering to define and evolve the roadmap across critical verticals: agentic triage, MCP-powered integrations, AI policies, and collective intelligence.
  • Drive technical direction without coding — participate actively in architecture discussions, challenge design decisions, unblock the team on complex problems, and raise the bar on how we build agentic systems, LLM pipelines, and security automation.
  • Operate with a security-first mindset — collaborate with the broader engineering org on reliability, on-call health, and security practices, ensuring AI features meet the trust and compliance standards Panther's customers expect.
  • Contribute to engineering-wide leadership — participate in hiring loops, share learnings across teams, and help shape how Panther builds and scales its engineering organization as we grow.

We believe in transparency throughout our process — including how we approach AI.

We recognize that AI tools can enhance productivity and support high-quality work. Candidates are welcome to use AI tools for assistance when preparing application materials and completing take-home assignments. If AI use is not permitted for a specific assessment, we will indicate that clearly in the instructions. During live interviews, we ask that candidates not use AI tools to generate or supply real-time answers. This includes reading from AI-generated responses or prompts during conversational, behavioral, or technical discussions. These conversations are designed to understand your individual thinking process, problem-solving approach, and ability to communicate your ideas.

We also use AI tools to support our recruiting processes; hiring decisions are made by our team, not AI.

Reasonable Accommodations
We are committed to providing equal opportunity to all candidates. If you require the use of an AI-based tool or any other assistive technology as a reasonable accommodation for a disability or medical condition, please notify us prior to your interview. We will engage in an interactive process to determine what arrangements are appropriate for your situation. Accommodation requests are handled individually and in accordance with applicable law.

About Panther

Panther makes security teams smarter and faster than attackers.

We're building the AI SOC platform that modern security teams need. Our Detection-as-Code approach, cloud-native architecture, and powerful security data lake help teams detect and respond to threats at scale. Security teams at leading companies use Panther to protect their organizations without the overhead and costs of legacy SIEM solutions.

Founded by security practitioners who lived the pain of protecting large organizations, we've raised $140M from Coatue, Lightspeed, ICONIQ Growth, Snowflake Ventures, and others. We're a global, remote-first company serving customers worldwide.

Our culture is built on flexibility, transparency, and collaboration. We operate by three core values: Create Customer Love, Be an Owner, and Take Care of the Team. We believe diverse perspectives make us better, and that building great security technology should also mean building a rewarding place to work.

The Perks

• Competitive equity in a well-established cybersecurity company
• Unlimited PTO with a 15-day minimum, plus local federal holidays
• Latest tech equipment and budget for your personalized setup
• Comprehensive health and benefits coverage
• Remote-first culture built for distributed teams

Panther Labs is an Equal Opportunity Employer. The Company prohibits discrimination and harassment on the basis of: race, color, national origin, ancestry, sex (including pregnancy, childbirth, breastfeeding), gender, gender identity, gender expression, sexual orientation, marital status, age, religious creed, physical disability, mental disability, genetic information, military or veteran status, or any other status protected by law. All employment decisions are decided on the basis of qualifications, merit, and business need.

The annual cash compensation target: $180,000-$250,000 depending on experience

About us

Radiant Security is building the most advanced AI SOC platform, featuring unbounded alert triage, investigation, and response for security teams at scale. Our platform ingests alerts from across an organization's entire security stack (SIEM, EDR, identity, cloud) and uses AI to triage, investigate, and surface what actually matters. We're replacing alert fatigue with clear signal, so analysts can focus on real threats.

We're a small, fast-moving team. We ship continuously, stay close to customers, and hold ourselves to a high standard. Our product touches the daily workflows of security teams, and decisions we make have a direct impact on how quickly threats get resolved.

Join us and boost your career with hands-on AI experience.

The role

We're looking for a Senior PM to own Radiant's analyst-facing product — the case management, triage, and workflow surface that security teams use every day. You'll be responsible for understanding what those users actually struggle with, translating that into the right product investments, and driving them to delivery.

This is a strategy and execution role. You'll spend meaningful time with customers, develop a sharp point of view on where the product needs to go, and partner with design and engineering to get there quickly.

What you'll do

• Own the roadmap for Radiant's analyst-facing product — from case management and alert triage to investigation workflows and response actions.
• Conduct interviews, join calls, review usage data, and develop a genuine understanding of how security teams work.
• Translate customer pain into well-defined problems and prioritized— then drive those bets through design and engineering to deliver outcomes.
• Write tight PRDs, including clear problem framing, defined scope, explicit acceptance criteria.
• Work directly with customers and prospects across the sales and success cycle such as demos, onboarding, business reviews.
• Partner with go-to-market on positioning, release communication, and documentation.

Things we're looking for

• 5 years of product management experience owning B2B SaaS application products
• Strong customer intuition. You're comfortable going from a handful of conversations to a clear diagnosis of the problem.
• Strategic clarity. You can look at a messy problem space and articulate a crisp point of view on what to build and why, without needing consensus to form an opinion.
• Good UX judgment. You can engage meaningfully in design decisions and push back when a solution doesn't serve the user — but you partner with designers rather than direct them.
• Urgency. You treat shipping as the default, not the exception. You're comfortable making a call with 70% of the information and adjusting from there.
• Excellent written communication. Your PRDs are clear enough that engineers can build from them without a walkthrough.
• Collaborative but opinionated. You build trust by being easy to work with and earn credibility by being right often enough.

Nice to have

• Background in cybersecurity, SOC operations, or adjacent enterprise SaaS (ITSM, observability, incident response). 
• Experience with AI-native product workflows — you've thought carefully about how to present machine-generated outputs in an easy to consume interface. 
• Prior startup experience where you wore more than one hat and worked with minimal process. 

About Radiant Security

Radiant Security is building the most advanced AI SOC platform, featuring unbounded alert triage, investigation, and response for security teams at scale. Our platform ingests alerts from across an organization's entire security stack (SIEM, EDR, identity, cloud) and uses AI to triage, investigate, and surface what actually matters. We're replacing alert fatigue with clear signal, so analysts can focus on real threats.

We're a small, fast-moving team. We ship continuously, stay close to customers, and hold ourselves to a high standard. Our product touches the daily workflows of security teams, and decisions we make have a direct impact on how quickly threats get resolved.

Join us and boost your career with hands-on AI experience.

The Role

Cybersecurity generates more signal than any human team can process. The AI Engineer's job is to change that.

In this role, you'll build the agentic systems that turn overwhelming alert volume into clear, confident decisions — pipelines where AI agents collaborate, reason, and escalate the way the best analysts do, but at machine speed and scale. This isn't prompt experimentation in a notebook. You'll own the full lifecycle of production pipelines: the retrieval systems that surface the right context, the routing logic that sends data where it needs to go, the DAG that encodes the decision structure of a real security problem, and the agents themselves that reason over it all.

Every layer is yours. Every improvement is measurable. And the problems you're solving — faster triage, fewer missed threats, less analyst burnout — are ones that matter.

What you’ll do:

DAG Design & Pipeline Orchestration

• Design and implement the DAG-based pipeline architecture. Decompose complex cybersecurity workflows into well-scoped pipeline stages and define data contracts between them.

Context Retrieval & Data Routing

• Build the retrieval and enrichment systems that feed agents the context they need: structured lookups, vector search, tool calls, API integrations, or database queries. Design routing logic that directs incoming data to the appropriate pipeline entry point or agent branch. Ensure that every agent in the pipeline receives exactly the context it needs.

Agent Development & Prompt Engineering

• Design and build individual agents with well-scoped, production-ready prompts tailored to specific cybersecurity tasks (e.g., alert classification, entity extraction, severity scoring, false positive filtering). Apply systematic prompt optimization techniques, iterating based on measurable outcomes rather than intuition.

LLM Lifecycle Management

• Evaluate new or alternative LLMs using structured methodologies and project-specific metrics when a model substitution is warranted (e.g., upgraded model version, cost optimization, latency requirements).

Production Operations & Evaluation

• Monitor pipeline performance end-to-end in production — latency, accuracy, cost, failure modes, and per-stage quality — and drive continuous improvement across all layers. Build and curate labeled datasets from production telemetry for evaluation, regression testing, and fine-tuning purposes.

Things we’re looking for

Required Qualifications

• Strong programming skills in Python; 5 years of experience building and deploying production services end-to-end.
• Hands-on experience with LLM APIs (e.g., OpenAI, Anthropic, Gemini) and prompt engineering techniques.
• Experience designing and implementing DAG-based workflows or pipeline orchestration systems.
• Familiarity with data retrieval patterns: vector search, structured queries, API integrations, and context assembly for LLM consumption.
• Ability to work with unstructured or semi-structured data in a security or operational context.
• Clear written communication — pipeline design decisions, agent behavior, and experimental results should be well-documented.

Preferred Qualifications

• Background in cybersecurity, SOC operations, or threat intelligence.
• Experience with evaluation frameworks (e.g., RAGAS, LangSmith, custom harnesses).
• Familiarity with fine-tuning, RLHF, or model distillation workflows.
• Exposure to agentic frameworks (e.g., LangGraph, CrewAI, AutoGen, or custom implementations).
• Solid understanding of statistical testing and experimental design (A/B testing, significance testing, confidence intervals).

The process

We’re a startup and we make decisions quickly. Our process is designed to give you the best glimpse of our team and allow us to evaluate your technical and culture fit.

Application Review > Recruiter Screening > Hiring Manager Interview > Technical Interviews > Virtual Onsite

Who We Are

Cross River builds the infrastructure behind the world’s most innovative financial products. Our technology and capital solutions power payments, cards, lending, and digital asset capabilities that move money safely, instantly, and inclusively — trusted by leading fintechs, enterprises, and disruptors across the globe.

Our mission is simple: to build the financial infrastructure that expands access and opportunity for all. Guided by a culture of collaboration, curiosity, and purpose, Cross River has been named one of American Banker’s Best Places to Work in Fintech year after year. Whether you’re designing code, solving regulatory puzzles, or developing strategy, you’ll join a team where innovation and integrity drive everything we do — and where your work helps shape the future of finance.

What We're Looking For

We are looking for an Information Security Analyst to help ensure demonstrable adherence to applicable IT governance requirements across multiple ITSM and information security processes. You will work effectively and efficiently with cybersecurity, engineering, product, and IT operations teams at various levels of the organization. The ideal candidate is self-motivated, solutions-oriented, detail-focused, and an independent thinker. You possess a strong understanding of the software development lifecycle (SDLC), change management, and IT risk management. You can quickly grasp complex technical concepts and can make them easily understandable in discussions, presentations, and high-quality documentation.

Responsibilities:

• Act as a subject matter expert on information security and ITSM industry best practices, standards, frameworks, and regulatory guidance
• Collaborate with cross-functional teams to help maintain standards, procedures, and evidence documentation
• Facilitate the change management process and production deployment evidence reviews
• Monitor, report, and assess the effectiveness of performance and conformance controls
• Facilitate information security training and awareness campaigns
• Coordinate the collection of evidence to support IT audits and examinations
• Maintain control mappings and perform gap analyses to drive continuous program improvement
• Identify, propose, and implement process improvement for information security processes

Qualifications:

Must Have:

• Exceptional written and verbal communication skills, with the ability to present complex information in a clear and concise manner to diverse audiences
• 3+ years of relevant experience in roles such as cybersecurity analyst, IT auditor, software engineer, IT business analyst, IT systems analyst, IT product owner, technical product manager, or IT project manager
• Strong understanding of the software development lifecycle (SDLC), change management, and/or IT risk management

Preferred:

• Undergraduate or graduate degree in computer science, cybersecurity, information assurance, business administration, or a closely related field
• Professional certificates or certifications such as ITIL 4 Foundation, ISO/IEC 27001 Foundation, CompTIA Security+, ISC2 CC, ISC2 CGRC, or ISACA CRISC
• Familiarity with regulatory guidance, standards, and frameworks such as the FFIEC IT Handbook, SOC 1/2, PCI DSS, COBIT 2019, and ITIL
• Experience working in a highly regulated environment such as financial services, military, or healthcare

#LI-AC1 #LI-Hybrid

Salary Range: $70,000.00 - $90,000.00

We are seeking an experienced and technically capable IT Systems Analyst to join the AssetWatch IT operations team. This role goes beyond reactive help desk work — you will contribute to system health, support process improvements, assist with security and compliance efforts, and help the team run smoothly as the business grows. If you thrive in a hands-on environment where you’re solving today’s problems and building better systems for tomorrow, this role is for you.

This role is Remote (United States)

What You’ll Do:

Technical Support & Escalation

• Serve as an escalation point for complex hardware, software, and network issues that exceed Tier 1 support scope.
• Diagnose and resolve advanced endpoint issues across Windows and macOS environments, including OS-level, application, and connectivity problems.
• Provide high-quality, responsive support to end-users while maintaining a positive experience and clear communication throughout the resolution process.
• Maintain and improve the IT ticketing system (Jira), including documentation of resolutions, known issues, and internal knowledge base articles.
• Mentor and provide guidance to junior support staff or help desk contractors as the team grows.

Endpoint & Systems Management

• Administer and maintain endpoint management platforms including Intune (Windows) and Jamf Pro (macOS) — managing configuration profiles, compliance policies, and automated enrollment workflows.
• Manage user accounts, groups, and access controls in Microsoft Entra ID (Azure AD), including MFA enforcement and application assignments.
• Oversee software deployment, OS updates, and patch management across the device fleet using MDM and RMM tooling (e.g., NinjaOne).
• Support hardware procurement, asset tracking, and equipment lifecycle from provisioning through secure retirement.
• Assist in administering Microsoft 365 applications, licensing, and configurations across the organization.

Security & Compliance Support

• Support AssetWatch’s SOC 2 Type 2 compliance program by maintaining endpoint security controls, contributing to evidence collection, and ensuring adherence to IT security policies.
• Assist with periodic user access reviews, onboarding/offboarding provisioning, and access de-provisioning in a timely and auditable manner.
• Enforce and maintain endpoint security standards including disk encryption, EDR tooling, and hardware authentication (YubiKey).
• Identify and escalate potential security vulnerabilities or policy gaps; contribute to policy documentation and improvement initiatives.

Process Improvement & Automation

• Identify opportunities to reduce manual, repetitive tasks through scripting and automation (PowerShell, Python, or Bash).
• Contribute to building and refining IT runbooks, standard operating procedures, and internal documentation.
• Proactively monitor system performance, alerts, and reporting dashboards to identify and address issues before they impact users.
• Support IT projects and system enhancements in collaboration with IT leadership and cross-functional teams.

Qualifications

• Bachelor’s degree in Information Technology, Computer Science, or a related field (or equivalent experience).
• 4+ years of IT support or systems experience, with demonstrated growth and a desire to take on increasing technical responsibilities.
• Strong hands-on experience with Windows and macOS, including advanced troubleshooting at the OS and application layer.
• Working experience with Microsoft 365, Entra ID (Azure AD), Intune, and Jamf Pro.
• Familiarity with IT security fundamentals and experience supporting a compliance-conscious environment.
• Proficiency or growing competency in scripting for automation (PowerShell, Python, or Bash).
• Experience with ITSM platforms (Jira Service Management, ServiceNow, or similar) including ticket management and knowledge base maintenance.
• Strong analytical thinking, attention to detail, and ability to communicate technical concepts clearly to non-technical users.
• Comfortable working independently in a remote-first environment with minimal supervision.

Preferred Qualifications

• Certifications such as CompTIA Security+, Microsoft Certified: Modern Desktop Administrator Associate, Microsoft 365 Certified: Endpoint Administrator, or ITIL v4 Foundation.
• Experience with RMM platforms (e.g., NinjaOne) and endpoint security tooling (EDR, DLP).
• Familiarity with SOC 2 or similar compliance frameworks and GRC tooling (e.g., Vanta).
• Experience supporting cloud-based infrastructure (AWS or Azure) in an administrative or access management capacity.
• Knowledge of networking fundamentals including DNS, DHCP, VPN, and firewall concepts.

#LI-REMOTE

Reports to: VP, Brand

Location: Remote

Compensation Range: $210,000 to $225,000 base, plus bonus, and equity

What We Do:

Cybercrime is growing, and more businesses are getting hit by threats that used to target only the biggest organizations. That pushes defenders like us to operate at the highest level, and it deepens our need for good people who want to make a meaningful impact.

Founded in 2015 by former NSA cyber operators, Huntress is a remote-first team working to make enterprise-grade cybersecurity accessible to businesses of all sizes. We work closely with security teams and service providers protecting complex environments, often without the time or headcount to handle it all. That’s why we build our technology in-house and back it with a 24/7 human-led Security Operations Center (SOC). As a result, our platform is never disconnected from the experts who manage it, ensuring our customers' protection.

Huntress now secures more than 5M endpoints and 11M identities worldwide. Those numbers keep growing because more businesses rely on us to help carry the load and operate with more confidence. Every day, you can see that commitment in how we stand with our customers and how we show up for each other.

What You’ll Do: 

Huntress is growing fast—and we need a bold, media-savvy communications leader to match that momentum. As Senior Director of PR & Communications, you'll develop and execute a comprehensive communications strategy that aligns with our business objectives and establishes Huntress as the defining voice in cybersecurity. You'll craft narratives that showcase our security DNA, our human-plus-AI innovation, and the expertise of our team and community—leveraging both traditional and emerging media to grow the business and shape how the market perceives Huntress.

This is a highly visible, strategic role with direct partnership across the C-suite. We're looking for a narrative driver with a prominent voice and bold vision—someone who leads from the front as a player-coach, doing the work alongside a thriving team of PR and communications professionals and a network of global agencies. Together, you'll run an industry-leading PR program that amplifies breaking news, threat research, and adversary tactics—while driving awareness for the Huntress brand, the Huntress Agentic Security Platform, and the industry-defining expertise of our top cybersecurity leaders and researchers, and fostering key relationships with press, analysts, influencers, and the media and investment communities.

Responsibilities: 

• Own short- and long-term communication strategy as Huntress scales toward IPO, partnering with executive and finance teams to build an investor relations program and communicating PR's impact through clear goals, KPIs, and share of voice benchmarks that demonstrate real business value.
• Lead, develop, and inspire a team of PR and communications professionals, fostering a high-performance culture that rewards craft, urgency, and creative ambition—while managing agency relationships across North America, EMEA, and APAC to ensure our narrative and positioning land consistently across global markets.
• Build and own a speaker bureau that positions Huntress experts as go-to resources in the press, at industry events, and in key analyst conversations—developing lasting relationships between top analysts, influencers, and our technical SMEs.
• Partner with internal thought leaders and subject matter experts to develop strategic narratives, bold POVs, and thought leadership that drives conversation across the industry—and constantly hunt for the stories living inside the company that go beyond product launches.
• Own crisis communications planning and readiness, developing a resilient response framework so Huntress is always prepared to educate, inform, and protect when industry incidents arise.
• Support internal and external corporate communications, as well as employment brand strategy and execution, ensuring a consistent and compelling Huntress voice across every audience.
• Set clear PR goals and report performance against KPIs and business targets—managing an annual share of voice and brand awareness benchmark to track impact and demonstrate PR's role in moving buyers through the journey.

What You Bring To The Team: 

• 10+ years of experience developing communications, press, and analyst relations programs that deliver measurable impact—with demonstrated operational rigor running proactive and reactive PR strategies across North America and international regions.
• A player-coach through and through: you lead by example, roll up your sleeves alongside your team, and know when to delegate and when to be hands-on.
• Media-savvy with a strong understanding of how to orchestrate narratives across paid, owned, and earned channels—including podcasts, blogs, and niche digital platforms that reach the audiences that matter—backed by long-standing relationships with journalists and a healthy book of contacts ready to amplify Huntress's voice.
• Exceptional written communication skills across the full spectrum—press releases, media pitches, bylined articles, blog posts, keynotes, and executive communications—paired with experience in interview prep and coaching, including briefing documents that guide SMEs through conversations with press, analysts, and potential investors.
• Proven experience in B2B SaaS or tech environments delivering high-impact communications strategies, with established relationships with key cybersecurity analysts and press strongly preferred.
• Experience scaling communications at a high-growth company in a competitive industry; experience leading strategy through IPO is a strong plus, and a background in cybersecurity or threat detection is a significant advantage—this space moves fast and domain fluency matters.
• Demonstrated ability to build and grow thriving PR programs with the operational discipline to manage teams, agencies, and budgets across multiple regions while keeping quality and consistency high.

What We Offer: 

• 100% remote work environment - since our founding in 2015
• Generous paid time off policy, including vacation, sick time, and paid holidays
• 12 weeks of paid parental leave
• Highly competitive and comprehensive medical, dental, and vision benefits plans 
• 401(k) with a 5% contribution regardless of employee contribution
• Life and Disability insurance plans
• Stock options for all full-time employees 
• One-time $500 reimbursement for building/upgrading home office
• Annual allowance for education and professional development assistance 
• $75 USD/month digital reimbursement
• Access to the BetterUp platform for coaching, personal, and professional growth

Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are. 

We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status.  

We do discriminate against hackers who try to exploit businesses of all sizes.

Accommodations: 

If you require reasonable accommodation to complete this application, interview, or pre-employment testing or participate in the employee selection process, please direct your inquiries to accommodations@huntresslabs.com. Please note that non-accommodation requests to this inbox will not receive a response. 

Huntress uses artificial intelligence tools to assist in reviewing and evaluating job applications, including resume screening, skills assessment, and candidate matching and comparisons. These AI tools support our human recruiters in the initial review process but do not make final hiring decisions without human involvement. By submitting your application, you acknowledge this use of AI in our recruitment process. Please review our Candidate Privacy Notice for more details on our practices and your data privacy rights.

#BI-Remote 

Reports to: Director, Analytics

Location: Remote US

Compensation Range: $180,000 to $195,000 base plus bonus and equity

What We Do:

Cybercrime is growing, and more businesses are getting hit by threats that used to target only the biggest organizations. That pushes defenders like us to operate at the highest level, and it deepens our need for good people who want to make a meaningful impact.

Founded in 2015 by former NSA cyber operators, Huntress is a remote-first team working to make enterprise-grade cybersecurity accessible to businesses of all sizes. We work closely with security teams and service providers protecting complex environments, often without the time or headcount to handle it all. That’s why we build our technology in-house and back it with a 24/7 human-led Security Operations Center (SOC). As a result, our platform is never disconnected from the experts who manage it, ensuring our customers' protection.

Huntress now secures more than 5M endpoints and 11M identities worldwide. Those numbers keep growing because more businesses rely on us to help carry the load and operate with more confidence. Every day, you can see that commitment in how we stand with our customers and how we show up for each other.

What You’ll Do: 

As a Principal Analyst embedded within a fast-moving Marketing and GTM organization, you will serve as the connective tissue between data and strategy — translating complex, ambiguous business questions into sharp insights that shape how the company grows. In this role, you won't wait for the brief to arrive; you'll originate the ideas worth pursuing, pressure-test assumptions, and deliver recommendations that drive real marketing efficiency and measurable growth.

Expect to work at the intersection of data, strategy, and storytelling — collaborating closely with Marketing, Sales, and cross-functional GTM partners on everything from campaign performance and pipeline attribution to customer segmentation and market opportunity sizing. The best person for this role doesn't just answer hard questions — they know which questions are worth asking in the first place. If you thrive on turning complexity into clarity, generating ideas that move the needle, and influencing decisions at the highest level, this is the role for you.

Responsibilities: 

• Partner with Marketing and GTM leaders to surface growth opportunities and translate data into strategic recommendations — with minimal direction needed.
• Ideate on complex business problems that matter — proactively identifying where analytical thinking can unlock marketing efficiency, accelerate pipeline, or improve growth outcomes.
• Own end-to-end analysis across key GTM priorities: campaign effectiveness, funnel performance, pipeline attribution, customer segmentation, and market opportunity sizing.
• Design and maintain dashboards that give Marketing and GTM teams clear visibility into performance, enabling faster and more confident decision-making.
• Deliver high-impact ad hoc analyses quickly and clearly — moving from raw question to actionable insight without sacrificing rigor.
• Develop compelling data narratives and executive-ready communications that tell a clear story and drive alignment across stakeholders.
• Elevate the team's analytical capabilities by championing best practices, introducing AI-assisted workflows, and helping business partners ask sharper questions.

What You Bring To The Team: 

• 7+ years of experience in analytics, business intelligence, or a related field, with demonstrated impact supporting marketing, GTM, or growth-oriented teams within a SaaS organization.
• A strategic, generative mindset — you don't just solve the problem in front of you; you frame the right problem, generate options, and push toward the solution that moves the needle on growth and efficiency.
• Proficiency with BI tools (e.g. Hex, Tableau, Looker, Power BI, or similar) — you can build a dashboard that becomes the team's source of truth, not just a pretty visual.
• The ability to churn out high-quality ad hoc analyses under pressure, scoping ambiguous questions and delivering clear answers with speed and rigor.
• Hands-on experience leveraging AI tools and agentic workflows to accelerate analysis and scale output — this is a genuine differentiator, not a checkbox.
• A track record of operating independently in unstructured environments, defining your own workplan, and delivering without heavy guidance or oversight.
• A storytelling edge: you present findings in ways that are clear, compelling, and built for decision-making — recommendations land, not just reports.

What We Offer: 

• 100% remote work environment - since our founding in 2015
• Generous paid time off policy, including vacation, sick time, and paid holidays
• 12 weeks of paid parental leave
• Highly competitive and comprehensive medical, dental, and vision benefits plans 
• 401(k) with a 5% contribution regardless of employee contribution
• Life and Disability insurance plans
• Stock options for all full-time employees 
• One-time $500 reimbursement for building/upgrading home office
• Annual allowance for education and professional development assistance 
• $75 USD/month digital reimbursement
• Access to the BetterUp platform for coaching, personal, and professional growth

Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are. 

We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status.  

We do discriminate against hackers who try to exploit businesses of all sizes.

Accommodations: 

If you require reasonable accommodation to complete this application, interview, or pre-employment testing or participate in the employee selection process, please direct your inquiries to accommodations@huntresslabs.com. Please note that non-accommodation requests to this inbox will not receive a response. 

Huntress uses artificial intelligence tools to assist in reviewing and evaluating job applications, including resume screening, skills assessment, and candidate matching and comparisons. These AI tools support our human recruiters in the initial review process but do not make final hiring decisions without human involvement. By submitting your application, you acknowledge this use of AI in our recruitment process. Please review our Candidate Privacy Notice for more details on our practices and your data privacy rights.

#BI-Remote 

Reports to: Senior Director, People Operations

Location: Remote US

Compensation Range: $100,000 to $120,000 base plus bonus and equity

What We Do:

Cybercrime is growing, and more businesses are getting hit by threats that used to target only the biggest organizations. That pushes defenders like us to operate at the highest level, and it deepens our need for good people who want to make a meaningful impact.

Founded in 2015 by former NSA cyber operators, Huntress is a remote-first team working to make enterprise-grade cybersecurity accessible to businesses of all sizes. We work closely with security teams and service providers protecting complex environments, often without the time or headcount to handle it all. That’s why we build our technology in-house and back it with a 24/7 human-led Security Operations Center (SOC). As a result, our platform is never disconnected from the experts who manage it, ensuring our customers' protection.

Huntress now secures more than 5M endpoints and 11M identities worldwide. Those numbers keep growing because more businesses rely on us to help carry the load and operate with more confidence. Every day, you can see that commitment in how we stand with our customers and how we show up for each other.

What You’ll Do: 

Huntress is expanding our People Operations team with the addition of a new Compensation Analyst. This is a pivotal, data-focused role within the People team, responsible for owning, executing, and continuously updating our company's compensation strategies.

You will play a crucial role in preparing the organization for continued growth and expansion, ensuring that our compensation practices are robust, transparent, and sustainable as we scale. The analyst will leverage their expertise to analyze market trends, model scenarios, and implement programs that directly support our goal of remaining highly competitive within the industry and attracting and retaining top talent. By owning the end-to-end compensation life cycle, our compensation analyst will ensure that our pay structure is not only internally equitable but also strategically aligned with the future success of the business.

Responsibilities: 

• Prepare and execute compensation cycles that occur throughout the year, ensuring data accuracy
• Facilitate and serve as a member of the Rewards Committee, preparing materials and scheduling review sessions
• Ensure pay ranges remain current and market-competitive, managing a semiannual refresh process
• Conduct an annual pay gap analysis, making recommendations based on findings  
• Research and recommend secondary compensation data sources as needed
• Maintain monthly stock grants, performing quality control checks for accuracy
• Initiate Compensation/Career Laddering discussions with leaders to ensure company-wide alignment, particularly for roles with multiple incumbents
• Prepare, communicate, and manage the semi-annual bonus process
• Develop and implement Total Reward Statements, highlighting employer contributions 
• Prepare and present educational compensation information for managers, ensuring they are equipped to have compensation conversations confidently 
• Collaborate with various members of the People Team, ensuring alignment on our compensation philosophy and approach

What You Bring To The Team: 

• 3+ years of hands-on experience, showcasing your in-depth understanding of compensation programs 
• Experience working in a fast-paced, dynamic environment
• Ability to analyze and enhance compensation processes, leveraging technology for efficiency
• Strong analytical/problem-solving skills 
• Ability to meet deadlines and support multiple projects simultaneously with a strong attention to detail
• Experience with various Compensation planning and benchmarking tools: Workday and/or Pave is a plus

What We Offer: 

• 100% remote work environment - since our founding in 2015
• Generous paid time off policy, including vacation, sick time, and paid holidays
• 12 weeks of paid parental leave
• Highly competitive and comprehensive medical, dental, and vision benefits plans 
• 401(k) with a 5% contribution regardless of employee contribution
• Life and Disability insurance plans
• Stock options for all full-time employees 
• One-time $500 reimbursement for building/upgrading home office
• Annual allowance for education and professional development assistance 
• $75 USD/month digital reimbursement
• Access to the BetterUp platform for coaching, personal, and professional growth

Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are. 

We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status.  

We do discriminate against hackers who try to exploit businesses of all sizes.

Accommodations: 

If you require reasonable accommodation to complete this application, interview, or pre-employment testing or participate in the employee selection process, please direct your inquiries to accommodations@huntresslabs.com. Please note that non-accommodation requests to this inbox will not receive a response. 

Huntress uses artificial intelligence tools to assist in reviewing and evaluating job applications, including resume screening, skills assessment, and candidate matching and comparisons. These AI tools support our human recruiters in the initial review process but do not make final hiring decisions without human involvement. By submitting your application, you acknowledge this use of AI in our recruitment process. Please review our Candidate Privacy Notice for more details on our practices and your data privacy rights.

#BI-Remote 

Are you an experienced Security Data and Risk Analyst that wants to develop and create awareness around security-relevant key performance and key risk indicators?  At Ivanti, we work passionately and authentically, striving to win together and make a real impact for our customers and each other. Join us to elevate your career and help deliver innovative solutions in a dynamic, empowering environment. 

Why this role matters

As the Security Data and Risk Analyst, you will generate enterprise visibility, awareness and understanding of major risk and security issues in a comprehensive and easily consumed manner to support the corporate objectives and especially the reduction of risk.  You will be a leader in our Information Security Group which is a global team of experienced professionals dedicated to ensuring the security of Ivanti’s products, corporate and production networks, environments, and of course, its data

What you’ll do:

• Lead the execution of multiple functions: Taking ownership of and creating awareness around security-relevant key performance and key risk indicators
• Develop automation for data gathering, analysis and presentation using Python and Go
• Educate as well as inform audiences of a wide variety of security and risk expertise, including building libraries of material to support understanding of benefits and costs of security management.
• Generating insights and supporting information for decisions to be made including wrangling data from complex data sets and data sources
• Create dynamic dashboards and presentations
• Articulate risk and risk management as realistic, measurable harm; Create dynamic dashboards and presentations
• Support the Security Governance and executive workstreams, including analysis and presentations materials.
• Coordinate, chair and present data to management, leadership and C-suite stakeholders in their languages.

What you will bring:

• Minimum of a bachelor’s degree, preferably in information systems or data analytics.
• 4 + years’ experience with Python automation with multiple versions of Python
• 2+ years Go programming (Golang) automation and scripting
• 1+ years dashboard building or data analytics experience
• 1+ years experience with 1 or more of the following security items: SOC, SIEM (Security Information & Event Management), Application Security (AppSec), or vulnerabilities and incident management, cyber security or threat related data.
• Experience with Risk Management or experience with threat  and cyber security related data
• Understanding of Risk Modeling
• 4+ years Data Analytics experience
• Familiarity with information security and security terms
• Experience conducting reporting operations such as presentations, metrics, dashboards, KPIs, KRIs, OKRs.
• Can show evidence has created effective KPIs, KRIs and OKRs and a means to measure and report each.
• Ability to articulate themes from: NIST, ISO, SOC 2, FedRAMP,  GDPR and DORA, and  Security, Privacy principles.
• Experience with information application security, system security and cybersecurity.
• Ability to work with FedRAMP data without the need for immigration support. 

Why Ivanti?

• Friendly flexible working model: Empower excellence whether you’re at home or in the office and support work-life balance.
• Competitive compensation & total rewards: Including health, wellness, and financial plans tailored for you and your family.
• Global, diverse teams: Collaborate with talented people from 23+ countries.
• Learning & development: Grow your skills with access to best-in-class learning tools and programs.
• Equity & belonging: We value every voice. Your story helps inform our solutions for a changing world.

What drives us

Ivanti’s mission is to elevate human potential within organizations by managing, protecting and automating technology for continuous innovation.

It is through diverse and inclusive hiring, decision-making, and commitment to our employees and partners that we will continue to build and deliver world-class solutions for our customers.

To learn more about Ivanti’s Mission and Core Values. 

Inclusion at Ivanti

Ivanti is proud to be an Equal Opportunity Employer. We’re committed to building a diverse team and fostering an inclusive environment where everyone belongs. We welcome applicants from all backgrounds and walks of life.

Need adjustments during the process? Reach out to talent@ivanti.com we’re happy to help.

#LI-DW1

About Zone & Co: 

Zone & Co is on a mission to empower finance professionals to drive strategic growth through seamless, intelligent operations. We build cloud-native software solutions on Oracle NetSuite, automating complex financial processes like billing, accounts payable, reporting, and reconciliation. Our vision is to unlock the full strategic potential of finance by infusing the ERP with the intelligence and automation needed for truly transformative operations. Join our rapidly growing team as we redefine financial efficiency for scaling businesses worldwide.

The Role: We are seeking a meticulous and proactive Security and Privacy Compliance Analyst to help safeguard our organization and our customers' data. Reporting directly to the Director of IT, Security and Compliance, you will play a critical role in maturing our governance, risk, and compliance (GRC) programs. In this position, you will bridge the gap between technical security controls and regulatory requirements, ensuring that Zone & Co's rapidly expanding suite of financial software maintains the highest standards of data protection and privacy.

This role requires a strong foundational knowledge of major security frameworks and privacy regulations, a keen eye for detail in auditing internal processes, and the ability to clearly communicate compliance postures to both internal engineering teams and enterprise customers.

Essential Job Functions:

• Compliance Framework Governance: Lead the management and continuous scaling of Zone & Co’s core security compliance frameworks, specifically SOC 2 Type II and ISO 27001.
• Privacy Operations Leadership: Govern global data privacy operations to ensure strict, ongoing alignment with GDPR, CCPA/CPRA, and other emerging data protection laws.
• Customer Trust & Revenue Enablement: Serve as the primary security liaison for enterprise customers, directly supporting the sales cycle by demonstrating and communicating a robust, mature security posture.
• Risk & Audit Management: Manage the organization's internal audit program and oversee the third-party vendor risk lifecycle to proactively identify and mitigate vulnerabilities.

Responsibilities, Duties, and Tasks:

• Audit Coordination: Coordinate evidence collection, manage project timelines, and partner directly with external auditors during annual compliance assessments.
• Privacy Assessments: Conduct Data Privacy Impact Assessments (DPIAs) for new products and process Data Subject Access Requests (DSARs) within mandated SLAs.
• Questionnaires & Trust Center: Accurately and efficiently complete incoming vendor security questionnaires from prospects and maintain up-to-date documentation in our customer-facing Trust Center.
• Internal Control Testing: Design and execute internal audits to test whether technical and administrative controls are operating effectively. Track control gaps and drive engineering/IT remediation efforts.
• Vendor Risk Reviews: Evaluate the security and privacy postures of prospective and existing third-party vendors and sub-processors through comprehensive risk assessments.
• Policy & Training Development: Draft, update, and publish internal security policies, standard operating procedures (SOPs), and incident response plans. Develop and administer engaging company-wide security and privacy awareness training.

What You'll Bring (Qualifications and Experience):

• Experience: 3+ years of direct experience in IT Audit, Information Security, Privacy Operations, or GRC (Governance, Risk, and Compliance), preferably within a B2B SaaS, FinTech, or cloud technology environment.
• Deep Domain Expertise: Hands-on experience working with established compliance frameworks (SOC 2, ISO 27001) and navigating global privacy legislation (GDPR, CCPA).
• SaaS/Cloud Acumen: A solid understanding of cloud computing architectures (AWS, Azure, GCP) and enterprise software environments. Familiarity with ERP systems (like NetSuite) is a strong plus.
• Analytical & Problem-Solving Skills: Proven ability to translate complex regulatory requirements into actionable, practical controls for IT and engineering teams without stifling innovation.
• Exceptional Communication: Outstanding written and verbal communication skills. You must be able to write clear policies, translate technical risks for business leaders, and confidently answer complex customer security questions.
• Education & Certifications: Bachelor’s degree in Information Systems, Cybersecurity, Business, or a related field. Relevant industry certifications such as CISA, CISM, CIPP/E, CIPP/US, or Security+ are highly preferred.

About Zone & Co: 

Zone & Co is on a mission to empower finance professionals to drive strategic growth through seamless, intelligent operations. We build cloud-native software solutions on Oracle NetSuite, automating complex financial processes like billing, accounts payable, reporting, and reconciliation. Our vision is to unlock the full strategic potential of finance by infusing the ERP with the intelligence and automation needed for truly transformative operations. Join our rapidly growing team as we redefine financial efficiency for scaling businesses worldwide.

The Role: We are seeking a meticulous and proactive Security and Privacy Compliance Analyst to help safeguard our organization and our customers' data. Reporting directly to the Director of IT, Security and Compliance, you will play a critical role in maturing our governance, risk, and compliance (GRC) programs. In this position, you will bridge the gap between technical security controls and regulatory requirements, ensuring that Zone & Co's rapidly expanding suite of financial software maintains the highest standards of data protection and privacy.

This role requires a strong foundational knowledge of major security frameworks and privacy regulations, a keen eye for detail in auditing internal processes, and the ability to clearly communicate compliance postures to both internal engineering teams and enterprise customers.

Essential Job Functions:

• Compliance Framework Governance: Lead the management and continuous scaling of Zone & Co’s core security compliance frameworks, specifically SOC 2 Type II and ISO 27001.
• Privacy Operations Leadership: Govern global data privacy operations to ensure strict, ongoing alignment with GDPR, CCPA/CPRA, and other emerging data protection laws.
• Customer Trust & Revenue Enablement: Serve as the primary security liaison for enterprise customers, directly supporting the sales cycle by demonstrating and communicating a robust, mature security posture.
• Risk & Audit Management: Manage the organization's internal audit program and oversee the third-party vendor risk lifecycle to proactively identify and mitigate vulnerabilities.

Responsibilities, Duties, and Tasks:

• Audit Coordination: Coordinate evidence collection, manage project timelines, and partner directly with external auditors during annual compliance assessments.
• Privacy Assessments: Conduct Data Privacy Impact Assessments (DPIAs) for new products and process Data Subject Access Requests (DSARs) within mandated SLAs.
• Questionnaires & Trust Center: Accurately and efficiently complete incoming vendor security questionnaires from prospects and maintain up-to-date documentation in our customer-facing Trust Center.
• Internal Control Testing: Design and execute internal audits to test whether technical and administrative controls are operating effectively. Track control gaps and drive engineering/IT remediation efforts.
• Vendor Risk Reviews: Evaluate the security and privacy postures of prospective and existing third-party vendors and sub-processors through comprehensive risk assessments.
• Policy & Training Development: Draft, update, and publish internal security policies, standard operating procedures (SOPs), and incident response plans. Develop and administer engaging company-wide security and privacy awareness training.

What You'll Bring (Qualifications and Experience):

• Experience: 3+ years of direct experience in IT Audit, Information Security, Privacy Operations, or GRC (Governance, Risk, and Compliance), preferably within a B2B SaaS, FinTech, or cloud technology environment.
• Deep Domain Expertise: Hands-on experience working with established compliance frameworks (SOC 2, ISO 27001) and navigating global privacy legislation (GDPR, CCPA).
• SaaS/Cloud Acumen: A solid understanding of cloud computing architectures (AWS, Azure, GCP) and enterprise software environments. Familiarity with ERP systems (like NetSuite) is a strong plus.
• Analytical & Problem-Solving Skills: Proven ability to translate complex regulatory requirements into actionable, practical controls for IT and engineering teams without stifling innovation.
• Exceptional Communication: Outstanding written and verbal communication skills. You must be able to write clear policies, translate technical risks for business leaders, and confidently answer complex customer security questions.
• Education & Certifications: Bachelor’s degree in Information Systems, Cybersecurity, Business, or a related field. Relevant industry certifications such as CISA, CISM, CIPP/E, CIPP/US, or Security+ are highly preferred.

About the role:

We are looking for a Staff GRC Analyst to join our Governance, Risk, and Compliance (GRC) team. You will have the opportunity to enhance our global compliance posture and further our commitment to managing enterprise risk. Your role will be instrumental in ensuring that our company operates in accordance with security requirements and embodies an environment where it’s everyone’s responsibility. This role will help shape the next iteration of the GRC program and further embed compliance requirements into the business.

Think you may not have all the skills and are hesitant to apply? There is no “perfect” candidate and encourage you to apply if you think that you can bring value to our team and are passionate and committed to upholding the highest standards of compliance and ethics.

If you’re based within a pre-determined commuting distance of one of our offices (SF, NY, London, or Berlin), the role includes in-office anchor days on Monday, Tuesday, and Friday, even if the role is listed as remote. For location-specific details, please connect with our recruiting team.

Getting started:

• We want you to feel like part of the team early on! Our team will help integrate you into the company with explanations on our product, policies, processes, team structure and roadmap.
• We’re excited for you to learn, grow, and contribute right away! We trust that you’ll bring experience and knowledge that will uplift and up-level the team, but we don’t expect you to know everything on Day 1.

What you will do:

• Own and scale commercial attestation program and audits (i.e., SOC 2, ISO 27001, PCI DSS, etc.) while maintaining alignment with business objectives and market demand.
• Design and strengthen continuous monitoring processes to improve control effectiveness and mature control implementation from audit-ready to always-ready.
• Drive evolution of security and compliance control frameworks that set the direction for proactive risk management.
• Partner with cross-functional stakeholders, acting as a strategic connector to plan, implement, maintain & remediate control activities and supporting requirements (e.g. policies, standards, processes, system configurations, etc.)
• Champion a culture of compliance accountability and business-enablement across the organization through autonomous program governance and reporting and building trusted relationships.

About you:

• Experience managing and running audits, certification programs and enterprise control assessments, including scope planning, defining requirements, policy and standards development, and control testing
• Deep knowledge of audit processes, evidence requirements, and remediation lifecycle management for security and compliance frameworks (i.e., SOC 2, ISO 27001, PCI DSS)
• Proven experience owning large-scale GRC programs, collaborating with technical and non-technical teams and driving initiatives to completion

Bonus if you:

• Familiarity with data governance, compliance or software development tools and systems (e.g., Drata, Linear, Github, etc.)
• Experience supporting cloud, AI-native, and open source development environments and systems
• Experience with FedRAMP or NIST frameworks, such as 800-53, AI RMF
• Security certifications (e.g. CISA, CISSP)

Benefits:

• Competitive compensation package, including equity.
• Inclusive Healthcare Package.
• Learn and Grow - we provide mentorship and send you to events that help you build your network and skills.
• Flexible Time Off.
• We will provide you the gear you need to do your role, and a WFH budget for you to outfit your space as needed.

The San Francisco, CA base pay range for this role is $180,000.00 - $270,000.00. Actual salary will be based on job-related skills, experience, and location. Compensation outside of San Francisco may be adjusted based on employee location. The total compensation package may include benefits, equity-based compensation, and eligibility for a company bonus or variable pay program depending on the role. Your recruiter can share more details during the hiring process. 

Vercel is committed to fostering and empowering an inclusive community within our organization. We do not discriminate on the basis of race, religion, color, gender expression or identity, sexual orientation, national origin, citizenship, age, marital status, veteran status, disability status, or any other characteristic protected by law. Vercel encourages everyone to apply for our available positions, even if they don't necessarily check every box on the job description.

Reports to: Manager, Security Operations Center

Location: Remote West Coast US

Compensation Range: $190,000 - $225,000 plus bonus and equity 

What We Do:

Huntress is a fully remote, global team of passionate experts and ethical badasses on a mission to break down the barriers to cybersecurity. Whether creating purpose-built security solutions, hunting down hackers, or impacting our community, our people go above and beyond to change the security game and make a real difference.

Founded in 2015 by former NSA cyber operators, Huntress protects all businesses—not just the 1%—with enterprise-grade, fully owned, and managed cybersecurity products at the price of an affordable SaaS application. The Huntress difference is our One Team advantage: our technology is designed with our industry-defining Security Operations Center (SOC) in mind and is never separated from our service.

We protect 4M+ endpoints and 7M+ identities worldwide, elevating underresourced IT teams with protection that works as hard as they do. As long as hackers keep hacking, Huntress keeps hunting.

What You’ll Do: 

Huntress is looking for a Principal Security Operations Center Analyst based in the United States to join our quickly growing team. In this role, you will triage, investigate, respond to, and remediate intrusions daily. You’ll be surrounded by passionate individuals who are mission-driven to help protect companies worldwide from cyberattacks. This person will also mentor junior team members, allowing them to grow individually and as a team.

The Huntress Security Operations Center is an elite team that wakes up daily to combat threat actors. You will have daily opportunities to progress your analysis skills while being at the forefront of what’s happening in the wild. With the chance to work on various incidents alongside a skilled team, you’ll have the opportunity to accelerate your career and skills, too. 

Responsibilities: 

• Function as the lead liaison between the SOC and other Product and Research teams
• Help build automation to help reduce the workload on the SOC
• Own and complete investigative objectives associated with multi-host intrusions without assistance
• Triage, investigate, and respond to alerts coming in from the Huntress platform
• Perform tactical forensic timelining and analysis to determine the root cause of attacks, where possible, and provide remediations needed to remove the threat
• Understand and perform advanced malware analysis as part of investigating systems and identities
• Investigate suspicious Microsoft M365 activity and provide appropriate remediations
• Assist in escalations from the product support team for threat-related and SOC-relevant questions
• Assist our SOC Support team by engaging with customers via video/phone to explain or describe activity observed by the SOC when needed
• Contribute to detection efforts by helping to create or request net new detections, as well as tuning current detections
• Provide technical mentorship to more junior team members
• Contribute regularly to external-facing Huntress content such as blogs, webinars, presentations, and speaking engagements

What You Bring To The Team: 

• 6+ years of experience in a SOC, Incident Response, or Forensics role
• Ability to explain possible complex alerts/events in a non-complex way, both written and verbal
• Proven mentoring experience and skills to junior team members, helping them to grow individually and as a team
• Understanding of Malware Analysis (Configuration of isolated Malware Analysis VM, Identification of File Formats, Basic Static & Dynamic analysis)
• Demonstrated experience with Windows, Linux, and/or macOS as an attack surface
• Strong understanding and experience with Threat Actor Tools and techniques: (MITRE ATT&CK Framework, PowerShell & Command Prompt Terminals, WMIC, Scheduled Tasks, SCM, Windows Domain and host Enumeration Techniques, Basic Lateral Movement Techniques, Basic Persistence Mechanisms, Basic Defense Evasion Techniques, other offensive/Red Team TTPs)
• Strong experience with Windows Administration or Enterprise Domain Administration and upkeep (Active Directory, Group Policy, PowerShell, Windows Server Update Service, and Domain Trusts)
• Strong experience with M365/Cloud attack techniques
• Demonstrated equivalent of self-guided study experience

Preferred Qualifications:

• Experience with scripting languages (such as PowerShell, Python, Bash, PHP, JavaScript, or Ruby) 
• Demonstrated experience on platforms like HackTheBox, TryHackMe, Blue Team Labs Online, etc. 
• Participation in cybersecurity competitions such as Capture the Flag, the Collegiate Cyber Defense Competition, etc. 
• Familiarity with MSP tools such as RMMs
• Previous experience in an MSP/MSSP/MDR role

What We Offer: 

• 100% remote work environment - since our founding in 2015
• Generous paid time off policy, including vacation, sick time, and paid holidays
• 12 weeks of paid parental leave
• Highly competitive and comprehensive medical, dental, and vision benefits plans 
• 401(k) with a 5% contribution regardless of employee contribution
• Life and Disability insurance plans
• Stock options for all full-time employees 
• One-time $500 reimbursement for building/upgrading home office
• Annual allowance for education and professional development assistance 
• $75 USD/month digital reimbursement
• Access to the BetterUp platform for coaching, personal, and professional growth

Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are. 

We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status.  

We do discriminate against hackers who try to exploit businesses of all sizes.

Accommodations: 

If you require reasonable accommodation to complete this application, interview, or pre-employment testing or participate in the employee selection process, please direct your inquiries to accommodations@huntresslabs.com. Please note that non-accommodation requests to this inbox will not receive a response. 

Huntress uses artificial intelligence tools to assist in reviewing and evaluating job applications, including resume screening, skills assessment, and candidate matching and comparisons. These AI tools support our human recruiters in the initial review process but do not make final hiring decisions without human involvement. By submitting your application, you acknowledge this use of AI in our recruitment process. Please review our Candidate Privacy Notice for more details on our practices and your data privacy rights.

#BI-Remote 

Job Description: Director of Analyst Relations

The Opportunity

Torq is redefining the AI SOC category. As the Director of Analyst Relations, you will be the chief architect of our reputation among the industry’s most critical influencers.

Your mission is to ensure that every relevant analyst at every major firm understands who Torq is, how our tech is unique, and why enterprises prefer Torq to transform how they understand and manage risk. This is a high-stakes role for a strategist who can translate the technical power and combination of Agentic AI and automation into a market-defining narrative.

What You’ll Do

• Own the Narrative: Build and lead a world-class AR program that positions Torq as the undisputed leader in the emerging AI SOC category.
• Lead the "Evaluations" War Room: Direct Torq’s participation in major research reports (e.g, Gartner Magic Quadrant, KuppingerCole Leadership Compass, Frost & Sullivan Radar, etc.). You will manage the entire lifecycle from technical RFIs to high-pressure executive briefings, ensuring our story is undeniable.
• Bridge Product & Influence: Collaborate closely with our Product and Engineering teams to distill advanced concepts into strategic insights that analysts can’t ignore.
• Strategic Feedback Loop: Don't just talk to analysts; listen to them. Bring outside-in competitive intelligence and market trends back to our Product Marketing and GTM teams to refine our edge.
• Executive Coaching: Prepare our C-suite and technical founders for briefings, ensuring every interaction reinforces Torq’s unique position in the market.

The Ideal Profile

• Security Savvy: You live and breathe cybersecurity. You understand SOC personas and pain points, the friction of legacy tools, and how agentic AI is fundamentally changing the game for defenders.
• AR Heavyweight: You have 8+ years of experience in AR or Corporate Communications, with a proven track record of moving the needle in the B2B security space.
• Agile & Scrappy: Torq moves fast. You thrive in a high-growth environment where you need to be both the "thinker" and the "doer."
• The Master Communicator: You can take a complex, technical "how-to" and turn it into a "why it matters" for a Tier-1 analyst.
• Methodology Expert: You know the Gartner and other firms' playbooks inside and out and know how to navigate their processes to maximize impact.

Why Torq?

• Category Creators: We aren't following a trend; we are setting the pace for how the modern SOC operates.
• Unmatched Tech: You'll be representing a platform that actually delivers on the promise of the AI SOC spanning the entire threat management lifecycle.
• Remote-First Excellence: We are a distributed team of high-performers who value autonomy, speed, and results.

ABOUT THIS ROLE 

LVT is actively seeking a highly motivated and detail-oriented Information Security Analyst (GRC) to join our growing Information Security team. This role will report directly to the Information Security Manager (GRC). This position is designed for an individual eager to delve deeply into the operational aspects of Governance, Risk, and Compliance, directly supporting LVT’s steadfast commitment to security excellence and regulatory adherence as the business continues its innovative scaling.

LVT values managing risk in alignment with our customer’s and stakeholder’s expected levels. We design, implement, and monitor controls that reduce real risk. The Information Security Analyst (GRC) will work with Management to operate key GRC processes. The primary focus of this hands-on position will be answering customer security questionnaires, performing risk assessments and internal audits, developing and maintaining policies, being a liaison for our external auditors, and helping to identify, manage, and reduce risk across our environment.

ROLE RESPONSIBILITIES

• Support LVT’s annual SOC 2 audit.
• Facilitate effective communication and coordination with internal SOC 2 control owners. 
• Proactively assist in identifying, analyzing, and resolving audit concerns or control deficiencies, proposing initial remediation steps. 
• Document audit outcomes, lessons learned, and recommended improvements post-audit. 
• Execute control testing, including evidence collection and documentation.
• Develop  LVT’s security policies, submitting them for approval, and ensuring alignment with organizational standards.
• Maintain and update the risk register to ensure accurate and timely recording of identified risks and their mitigation status.
• Maintain GRC documentation to ensure accuracy, accessibility, compliance with internal controls
• Execute quarterly  user access reviews.

OUR IDEAL CANDIDATE

• 1-3 years of experience with Information Security, GRC or IT Audit roles.
• Highly organized and can multitask and juggle multiple priorities.
• Familiarity with leveraging and applying AI tools and technologies to automate routine GRC tasks and improve program efficiency.
• Practical experience with SOC 2 audit processes including proficiency in control testing, evidence collection, and internal coordination.
• Familiarity with information security and risk frameworks.
• A foundational understanding of business operations and how security controls impact business functions. 
• Effective verbal and written communicator.
• Desire to work directly with key stakeholders, including customers.
• Hunger to learn and grow their abilities.
• Consistently demonstrates high integrity and transparency.
• Willing to take on tasks with a positive attitude, but also speaks up on concerns.
• A Bachelor's degree in Information Security, Computer Science, Information Technology, Business, or a related field, or equivalent practical experience, is preferred. 
• Experience working with GRC platforms (e.g., Drata, Vanta, ZenGRC) and project management tools (e.g., Jira, Asana) is helpful.
• Relevant professional certifications such as CompTIA Security+, CISA, CC, or CRISC are a plus

We are seeking a Senior Security Compliance Analyst with expertise in Governance, Risk, and Compliance (GRC) to support and enhance our security and compliance programs within the healthcare industry. This role is critical in ensuring adherence to industry regulations, responding to customer audits, and maintaining compliance with ISO 27001, HIPAA, and other security frameworks.

The ideal candidate will be a detail-oriented compliance expert who can navigate complex regulatory environments, assist with internal/external audits, and drive continuous improvement in security governance. The ideal candidate must be able to operate independently while delivering on the following duties.

What You’ll Be Working On:

• Lead and support customer security audits, responding to security questionnaires and demonstrating compliance with security frameworks.
• Prepare, coordinate, and manage ISO 27001 audits, including evidence collection, control implementation, and auditor engagement.
• Ensure ongoing compliance with HIPAA, NIST CSF, and other regulatory requirements applicable to healthcare data security.
• Develop and maintain policies, procedures, and security documentation to meet regulatory and contractual obligations.
• Perform gap analyses and risk assessments to identify and remediate compliance risks.
• Manage and improve security governance frameworks, ensuring alignment with industry best practices and business objectives.
• Conduct third-party vendor risk assessments, ensuring compliance with security policies and contractual obligations.
• Monitor security controls, ensuring effectiveness and continuous improvement in alignment with security frameworks.
• Support security awareness training initiatives, ensuring employees understand compliance responsibilities.
• Stay current on ISO 27001, HIPAA, NIST 800-53, and other relevant standards, translating them into actionable security controls.
• Assist in defining security metrics and reporting on compliance status and risk posture to leadership.
• Work closely with legal, security, IT, and business teams to align compliance requirements with security operations.

What You’ll Bring to OneStudyTeam:

About the Role

We are hiring a Principal Product Manager to lead product strategy for AI-powered agentic security operations at Netskope. This role sits at the intersection of applied AI and security operations where you will own the vision and roadmap for autonomous AI agents that investigate threats, perform security operations tasks, and orchestrate incident response across the Netskope Security Platform. The ideal candidate combines deep security operations domain expertise with genuine fluency in how modern AI agent systems work.

Responsibilities

• Define the product vision and roadmap for agentic security operations, expanding from DLP incident management into risk investigation, threat hunting, policy recommendations, and autonomous response.
• Gather and prioritize product requirements and user stories. Identify which security workflows are best suited for full autonomy vs. human-in-the-loop agent assistance vs. traditional automation - and draw those boundaries clearly.
• Own the end-to-end product lifecycle for agentic workflows: from agent design through prompt engineering, investigation quality benchmarking, UX design, launch, and post-launch optimization.
• Gather and prioritize requirements through direct customer engagement, SOC ride-alongs, field team feedback, and production agent performance data (accuracy, risk score calibration, false positive rates).
• Collaborate with UX to design the analyst-agent interaction model: how investigations are presented, how analysts provide feedback, how trust is built through transparency into agent reasoning.
• Collaborate with engineering, design, and marketing teams to deliver successful product launches. 
• Partner with engineering to evaluate and improve agent investigation quality - running evals to improve the accuracy, reliability, and safety of agents, tuning investigation workflows, and defining quality benchmarks for risk assessments, recommended actions, and incident summaries.
• Define success metrics for agent performance: accuracy, risk score precision, time-to-resolution improvements, and cost-per-investigation.
• Act as the primary product voice for agentic security operations across the organization - translating complex AI/agent capabilities into customer value for sales, marketing, and executive stakeholders.
• Partner with agentic platform engineering on agent infrastructure: LLM cost optimization, latency budgets, multi-tenant isolation, and scaling agent workloads across management planes.
• Present product updates and strategies to stakeholders.
• Monitor product performance and make data-driven decisions for improvement.

Qualifications

Mandatory:

• 10+ years of work experience in the Software/IT industry is mandatory.
• 7+ years of Product Management experience is mandatory.
• Demonstrated understanding of SOC workflows: alert triage, incident investigation, threat hunting, detection engineering, and incident response. You should be able to describe what an L1 analyst does differently from an L3 threat hunter.
• Working knowledge of modern AI/ML agent architectures - you don't need to write code, but you should understand concepts like multi-step agent workflows, tool use, prompt engineering, RAG, and the tradeoffs between autonomous and human-in-the-loop agent designs.
• Hands-on product instincts - you do UAT, run live demos, review investigation outputs, challenge prompt designs, and write detailed acceptance criteria. 
• Experience representing the customer: building relationships with security practitioners, running SOC ride-alongs, and translating analyst pain into product requirements.
• Track record of shipping products in fast-paced environments with overlapping workstreams and ambiguity.

Desirable:

• 5+ years of experience building or product managing cyber-security products is desirable.
• Experience building AI-powered products that went to production - not prototypes or demos. You've dealt with LLM hallucination, cost management, latency constraints, and quality measurement at scale.
• Familiarity with the MITRE ATT&CK framework, common detection rule formats, and how SOC teams operationalize threat intelligence.
• Experience with security data pipelines: event ingestion, alert correlation, enrichment, and the data challenges of multi-tenant security platforms.
• Previous experience in a technical role (security engineering, detection engineering, solution architecture, or SOC analyst) before moving into product management.

Skills

• Analytical rigor: You define success metrics before building, measure agent quality empirically, and make decisions with data. You can read a confusion matrix and explain why precision matters more than recall for autonomous remediation actions.
• Technical communication: You can whiteboard an agent workflow architecture with engineering, explain risk scoring methodology to a CISO, and write a crisp PRD that an L1 analyst would validate as accurate to their daily workflow.
• Security domain depth: You think in terms of attack paths, blast radius, lateral movement, and dwell time - not just features and user stories.
• AI product judgment: You have good instincts for when an LLM will perform well vs. poorly, when to use deterministic logic vs. AI reasoning, and how to design graceful fallbacks when agent confidence is low.
• Cross-functional influence: You lead through clarity and conviction, not authority. You can align engineering, design, sales, and executive stakeholders around a shared vision.
• Self-directed execution: You thrive in ambiguity, break down complex problems, and ship iteratively without waiting for perfect information.

Education & Travel

• BS/BA in Computer Science, Cybersecurity, or related technical field required. MS or MBA preferred.
• Ability to travel up to 25% (domestic and international for customer visits, SOC ride-alongs, and industry events).

Benefits

• Competitive salary and benefits package.
• Opportunity to define a new category at the intersection of AI agents and security operations - this is not incremental feature work.
• Direct impact on how security teams worldwide detect and respond to threats.
• Collaborative, engineering-driven culture where PMs are expected to go deep on technology.

#LI-SC1

SOLUTIONS ARCHITECT

We’re looking for a Solutions Architect to join our Global Solutions Architecture team. This is a senior, customer-facing architecture role for someone with deep experience in security operations, AI/LLMs, and agentic workflow design. In this role, you’ll work directly with customers to design advanced solutions on Torq while also helping define the implementation patterns, architecture standards, and reusable frameworks that scale across the company. You’ll spend significant time both building customer solutions and creating reusable design standards, reference architectures, and solution frameworks that raise the bar across the organization. We’re specifically looking for someone who stays ahead of the curve on rapidly evolving AI technologies and can translate emerging advances into practical, safe, and high-value implementation patterns for real-world security teams.

This is a remote role, based in the United States.

What Will You Do:

• Partner with customers to design and implement advanced Torq solutions that modernize how security work is triaged, investigated, orchestrated, and resolved.
• Architect intelligent workflows that combine orchestration, integrations, LLMs, retrieval, reasoning, tool use, and governed human decision points.
• Design patterns that help security teams move from manual, fragmented processes to scalable, high leverage operating models.
• Build practical solutions for alert triage, investigative enrichment, case progression, phishing, identity, cloud, remediation, and analyst support workflows.
• Design and implement agentic workflow patterns that combine deterministic logic, API orchestration, AI model calls, iterative investigation steps, confidence scoring, and human in the loop controls.
• Create reusable reference architectures, design standards, templates, and paved road frameworks for the broader field organization.
• Help define company wide best practices for how Torq should be deployed for repeatable, scalable customer outcomes.
• Guide customers on the right balance between deterministic automation, AI augmentation, and multi-step agentic execution.
• Translate fast-moving advances in AI, LLMs, and agentic design into reusable solution patterns that can be applied safely and effectively in customer environments.
• Work cros -functionally with Product, Engineering, Customer Success, and field teams to surface emerging customer needs, improve solution quality, and influence product direction.
• Lead design sessions, architecture workshops, and technical reviews with both technical practitioners and executive stakeholders.

What Should You Bring to the Table:

• Significant experience in solutions architecture, security engineering, security automation, or customer-facing technical roles within cybersecurity.
• Strong understanding of security operations workflows, including investigation, response, case handling, and cross-platform process orchestration.
• Hands-on experience with AI/LLM technologies, including prompt design, structured outputs, tool calling, retrieval patterns, and agentic workflow design.
• Demonstrated ability to translate emerging AI capabilities into real implementation patterns rather than staying at the conceptual or demo level.
• Strong architectural judgment on how to apply AI in production, including guardrails, fallback paths, escalation design, and human-in-the-loop controls.
• Strong understanding of when AI is appropriate versus when deterministic automation, standard integrations, or simpler workflow logic are the better solution.
• Experience designing complex integrations across APIs, webhooks, identity systems, case management platforms, and security tools.
• Ability to turn ambiguous customer problems into scalable operating patterns and durable technical designs.
• Excellent spoken and written communication skills, including the ability to explain complex technical and AI concepts to both technical and non-technical audiences.
• Strong problem-solving abilities, technical judgment, and strategic thinking.
• Strong organizational and time-management skills, with the ability to balance multiple customer engagements and internal initiatives.

Preferred Qualifications:

• Experience building or implementing agentic systems in production or near-production environments.
• Experience applying LLMs or agentic architectures to security operations, investigation workflows, or adjacent high-signal operational domains.
• Familiarity with agentic design concepts such as planning and execution loops, reasoning-plus-action patterns, confidence scoring, tool-calling agents, investigation state models, and evaluation frameworks.
• Experience with SOAR, workflow automation, or orchestration platforms in production customer environments.
• Experience building reusable technical patterns, standards, templates, or frameworks for broader organizational use.
• Proficiency with Python, JavaScript, Bash, Go, or similar technologies for integration logic, automation, and prototyping.
• Familiarity with graph-based investigation approaches or linked-entity reasoning.
• Familiarity with modern AI infrastructure and ecosystem patterns such as vector stores, embeddings, model routing, observability, and orchestration frameworks.
• Deep familiarity with security platforms such as CrowdStrike, Microsoft Defender, Okta, Google, Palo Alto, ServiceNow, Jira, Slack, AWS, and Azure.
• Relevant certifications or equivalent practical experience in cybersecurity, cloud, or AI-related domains (e.g., CISSP, CISM, GIAC, AWS, Azure).

As an equal opportunity employer, we are committed to a team defined and empowered by diversity. We consider qualified applicants without regard to race, religion, color, national origin, gender, sexual orientation age, marital status, veteran status or disability status.

By submitting your application, you acknowledge that Torq will process your personal data in accordance with Torq’s Privacy Policy.

Security Operations Analyst 

About Blumira and Our Culture

Blumira is the security operations platform built for growing teams and partners supporting them, integrating comprehensive visibility, tools, and expert guidance to give IT and security teams peace of mind from knowing they never have to go it alone. Every business needs strong security and deserves tools built for them, not just the largest enterprises. In helping them, we help their customers, and, overall, make the Internet a safer place.

Our team is passionate about putting resilience in reach for every organization and team, keeping the business running smoothly and helping teams build their own expertise through daily security practice. To realize our vision, we're looking for inquisitive and driven teammates, like you! Be part of a friendly and supportive team that embraces who you are and offers you the opportunity to help build and scale the Ann Arbor tech security scene and to learn and grow with experienced SaaS security leaders. You will have the ability to make a big impact in the initial build of Blumira’s Customer Experience (CX) organization and take Blumira to the next level!

About the Opportunity

This is a multi-functional role for someone who’s passionate about helping others to protect their organization’s security to the fullest extent possible. Security Operations Analysts work closely with our customers to make sure they know their security is in good hands with Blumira, through performing Security Information and Event Management (SIEM) duties, security analysis, and technical support.

Key Responsibilities 

• Deliver exceptional support experiences for our customers through advanced security expertise and thoughtful, empathetic communication
• Serve as a technical leader and mentor, helping guide other team members through positive influence and knowledge sharing
• Work closely with our customers to provide expert-level advisory services on complex security questions and product issues
• Lead troubleshooting efforts with customers and perform advanced log analysis to provide comprehensive context around security incidents
• Be on-call for rare critical security incidents and help lead response efforts
• Actively contribute to incident responses and help propose technical solutions
• Share your deep technical expertise across all levels of the Security Operations team, our customers, and colleagues throughout the organization
• Work closely with the Incident Detection Engineering team to triage critical and high priority security incidents
• Provide leadership and mentorship during security events
• Drive Security Operations team efficiency through process creation, optimization, and innovative feature ideas
• Work on special projects and initiatives to expand team skillsets and capabilities
• Regularly contribute to team content creation including how-to articles, documentation, and blogs
• Serve as a sought-after resource among team members for complex technical challenges
• Actively advocate for customers throughout the organization

Required Key Skills and Qualifications

• 3–5 years of professional experience in a cybersecurity-focused role (SOC, Incident Response, or Security Engineering).
• Strong technical proficiency in Windows endpoint security, including a deep understanding of registry keys, file systems, and OS hardening.
• Demonstrated experience with SQL, specifically the ability to write complex queries to extract and analyze security data.
• Working knowledge of industry frameworks, such as MITRE ATT&CK, NIST, or CIS, and how to apply them to real-world threat scenarios.
• Experience with SIEM platforms (e.g., Blumira, ELK, Splunk) for log correlation and event triaging.
• Proficiency with modern support tooling, specifically Zendesk (or similar ticketing platforms) and productivity suites like Google Workspace and Slack.
• Technical Versatility: The ability to quickly master new, specialized software platforms and security tools as the product landscape evolves.
• Outcome-Oriented: A track record of consistently meeting or exceeding KPIs and maintaining high quality while working under SLA pressure.
• Analytical Mindset: Proven ability to synthesize complex technical information into clear, concise summaries for both technical and non-technical stakeholders.

Bonus

• Relevant Industry Certifications: Possession of advanced security certifications such as CISSP, GCIH (GIAC Certified Incident Handler), GCFA, or Sec+.
• Networking Background: Previous experience in Network Administration or a deep understanding of TCP/IP, DNS, and firewall configuration to assist in troubleshooting connectivity-related security issues.
• Cloud Security Expertise: Familiarity with AWS, Azure, or GCP environments and their respective security logging and monitoring tools.
• Scripting Capabilities: Basic proficiency in Python or PowerShell to automate repetitive tasks or parse large datasets during incident investigations.
• Malware Analysis: Foundational knowledge of static and dynamic malware analysis or sandbox execution.

Perks and Benefits

• Competitive compensation and stock equity plan
• Unlimited PTO
• A flexible work environment that supports working from home
• Comprehensive benefits package that includes medical, dental, vision, and life insurance, as well as a company sponsored pre-tax retirement savings program

Applicants must be authorized to work for ANY employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time.

Please note that this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time, with or without notice.

This role requires sustained computer use and may involve extended periods of sedentary work.

This position may require occasional travel. The frequency and duration of travel will vary depending on business needs.

Blumira is an inclusive employer. We are committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and teammates without regard to race, color, creed, sex, sexual orientation, gender identity or expression, age, religion, national origin, citizenship status, disability, ancestry, marital status, veteran status, medical condition or any protected category prohibited by local, state or federal laws.

Mission

Threat Labs’ mission is to keep our customers safe from cybersecurity attacks. We do this by advancing the art and science of detection: turning threat intelligence and threat research into practical, high‑quality detections that power the Sumo Logic SIEM platform and strengthen the broader security community.

About the Role

We’re looking for a staff‑level threat researcher who thrives at the intersection of data and adversary tradecraft. In this role, you’ll use your practitioner experience to uncover attacker behaviors, test them in realistic environments, and turn those insights into detection content that directly improves customer outcomes. You’ll explore and exploit a variety of security technologies, with an emphasis on cloud and AI environments, to build, validate, and tune detections that reflect the latest attack techniques. In addition to applying existing research, you’ll have opportunities to conduct original investigations, from malware analysis to infrastructure tracking and honeypot monitoring, designed to uncover novel insights that shape future detection strategies.

Who You Are

You’re a seasoned security professional who’s evolved from responding to incidents to preventing them. You have a deep curiosity for how attackers operate and a passion for translating that insight into practical detections that measurably improve defenses. You thrive in a hands‑on environment: experimenting in the lab, analyzing data, and validating results. Collaboration and sharing come naturally to you: working with peers across Threat Labs and product teams, you enjoy turning research into real detections and community knowledge that protect customers everywhere. 

Your Impact

• Conduct and lead both applied and original threat research, transforming intelligence, telemetry, and investigation into actionable detection logic for the Sumo Logic SIEM.
• Collaborate closely within Threat Labs to design, build, and refine detection content and validation pipelines that raise the bar for product and customer detection quality.
• Drive innovation in detection methodologies, including research activities such as malware analysis, infrastructure tracking, or honeypot operations, to discover new attacker behaviors.
• Publish and share findings — from detection logic to behavioral analysis and practical hunting guidance — that help customers maximize SIEM outcomes.
• Contribute to Threat Labs’ long‑term vision of a research‑driven, continuously evolving detection ecosystem built on practitioner insight and technical depth.

Responsibilities

• Research, develop, and test threat detection logic in a lab environment, validating against real‑world attacker behaviors and ensuring technical alignment with Sumo Logic SIEM capabilities.
• Conduct original threat research, such as analyzing malware, tracking infrastructure, or experimenting with honeypots, and translate findings into detection opportunities.
• Investigate industry and adversary trends to identify emerging detection opportunities.
• Collaborate with product management and fellow Threat Labs engineers to scope and prioritize detection campaigns.
• Maintain and expand Threat Labs’ research lab infrastructure.
• Provide practitioner feedback to engineering and product management to inform feature design and roadmap decisions.
• Contribute to the security community through blogs, conference talks, open source projects, and public research contributions.

Requirements

• 12+ years of cybersecurity experience that includes a mix of:
• Senior/Principal SOC analyst, threat hunter, or purple team practitioner
• Incident responder or detection engineer roles
• Demonstrated ability to progress threat research into actionable detections and incident response outcomes.
• Experience conducting original or self‑directed threat research that resulted in novel findings — for example, malware or infrastructure analysis, honeypot operations, or similar investigative work leading to actionable insights.
• Broad knowledge of multiple technology stacks and a strong curiosity to learn new platforms.
• Deep experience with multiple major public clouds (AWS, Azure, or GCP), and familiarity with analyzing cloud‑native logs and telemetry.
• Understanding of emerging attack techniques targeting AI infrastructure and machine learning pipelines (e.g., data poisoning, model theft, or prompt injection), and familiarity with frameworks such as MITRE ATLAS.
• Proven history of thought leadership through blogs, LinkedIn articles, or conference presentations.
• Background in the cybersecurity vendor space, with experience providing expert feedback to product and engineering teams.

Desirable

• Prior experience in customer-facing technical roles (consulting, remote support, or advisory).
• Hands‑on familiarity with offensive security tools (Atomic Red Team, Sliver, Cobalt Strike, etc.).
• Scripting or automation capability (Python, PowerShell, etc.).
• Experience with Security Orchestration, Automation, and Response (SOAR) technology.
• Recognized presence or active participation in the security community (e.g., X/Twitter, conferences, open source).
• Experience applying AI or machine learning techniques to improve operational efficiency and automation across the detection rule development lifecycle — from research and validation to deployment and tuning.

About Us

Sumo Logic Privacy Policy. Employees will be responsible for complying with applicable federal privacy laws and regulations, as well as organizational policies related to data protection.

The expected annual base salary range for this position is $162,000 - $190,000. Compensation varies based on a variety of factors which include (but aren’t limited to) role level, skills and competencies, qualifications, knowledge, location, and experience. In addition to base pay, certain roles are eligible to participate in our bonus or commission plans, as well as our benefits offerings. 

Must be authorized to work in the United States at time of hire and for duration of employment. At this time, we are not able to offer nonimmigrant visa sponsorship for this position.