Skip to content
WHOOPWHOOPBoston, MA

Security Analyst

Security Analyst supporting day-to-day security operations, triaging alerts, investigating incidents across endpoint/cloud/SaaS, and managing security ticket queues. Requires 3+ years in security operations or incident response.

Salary not listed
On-site3+ YOESecurity Engineering

About the role

Responsibilities

  • Triage and investigate security alerts originating from internal security tooling as well as those escalated by external security monitoring partners.
  • Monitor and manage the internal security operations ticket queue, ensuring alerts and investigations are prioritized, tracked, and resolved in a timely manner.
  • Assist with investigation of security events across endpoint, identity, cloud, and SaaS platforms.
  • Support incident response activities including investigation, containment coordination, documentation, and post-incident analysis.
  • Respond to external threat intelligence and digital risk alerts related to potential brand abuse, impersonation, or exposed credentials.
  • Collaborate with security engineering teams and external security partners to improve detection coverage and reduce false positives.
  • Help identify gaps in logging, telemetry, or investigation workflows across security platforms.
  • Assist with threat hunting and security investigations using data from SIEM and other security tools.
  • Support vulnerability management workflows by assisting with triage, prioritization, and tracking of remediation activities.
  • Own and manage the security operations queue while serving as a central intake point for security questions, alerts, and reports across the organization.
  • Operate the organization’s phishing simulation program to reduce susceptibility to social engineering threats, including managing phishing campaigns and coordinating targeted remediation training.
  • Identify opportunities to improve security operations through process improvements, automation, and responsible use of AI.
  • Maintain documentation for incident response procedures, investigation workflows, and operational playbooks.
  • Participate in the security team’s on-call rotation to support investigation and response activities when needed.

Requirements

  • 3+ years of experience in security operations, incident response, threat detection, or a related cybersecurity role.
  • Experience investigating security alerts or suspicious activity across environments such as endpoint, identity, cloud, or SaaS systems.
  • Experience triaging and managing security investigation workflows, including ticket queues or incident tracking systems.
  • Familiarity with SIEM platforms, log analysis, and security monitoring tools.
  • Understanding of common attacker techniques and frameworks such as MITRE ATT&CK.
  • Experience working with security tools such as EDR platforms, identity systems, cloud logging platforms, or similar technologies.
  • Familiarity with modern AI-enabled tools used in enterprise environments and an understanding of risks associated.
  • Experience improving security operations through automation, scripting, or responsible use of AI to increase operational efficiency.
  • Strong analytical and investigative skills with the ability to evaluate security events and determine potential impact.
  • Ability to coordinate investigations across multiple teams and communicate findings clearly to technical and non-technical stakeholders.
  • Strong written documentation skills for incident records, investigation notes, and operational procedures.

Nice-to-Haves

  • Relevant security certifications such as Security+, CySA+, SSCP, GSEC, or GCIH.

Skills

SIEMEdrMitre Att&CkLog AnalysisThreat HuntingIncident ResponseSecurity MonitoringAutomationScriptingAI Tools
Forus

Security Program Manager

ForusNew York, NY

Own end-to-end compliance programs (SOC 2, HIPAA, HITRUST), build customer trust function, implement automation, and partner with engineering on controls for a healthcare AI platform handling protected health information.

Salary not listed
On-site4+ YOESecurity Engineering
Anthropic

Safeguards Enforcement Analyst, Account Takeover & Credential Abuse

AnthropicSan Francisco, CA +2

Safeguards Enforcement Analyst focused on account takeover and credential abuse. Investigate compromise incidents, design remediation workflows, partner with engineering on detection, enforce AI usage policies, and develop scalable enforcement programs for platform safety.

245k – 285k/yr
HybridSecurity Engineering
Zocdoc

Application Security Engineer

ZocdocUnited States

Application Security Engineer partnering with engineering teams to embed security into the SDLC, triage SAST/SCA findings, provide remediation guidance on OWASP issues, maintain security docs/playbooks, support governance/audits, and integrate GenAI tools while building AI governance guardrails.

100k – 140k/yr
RemoteSecurity Engineering
Cloudflare

Detection & Mitigation Engineer

CloudflareUnited States

Security Detections Engineer identifying attacker TTPs, building real-time detections, and mitigating threats/abuse across Cloudflare's global platform using data analysis, SQL, scripting, and threat intelligence. Requires strong analytical and communication skills.

Salary not listed
HybridSecurity Engineering
Mintlify

Security & Compliance Operations Manager

MintlifySan Francisco, CA

Own and run Mintlify's end-to-end security and compliance programs (SOC 2, ISO 27001/42001, GDPR, Microsoft SSPA) as the first dedicated GRC Program Manager. Administer Drata, manage audits/vendors/evidence, handle customer-facing compliance, and coordinate with engineering.

120k – 180k/yr
On-site3+ YOESecurity Engineering