The Security Analyst will operate and scale security across the organization, supporting core security workflows such as phishing response, bug bounty operations, access governance, and operational security hygiene. This is a hands-on, cross-functional role offering broad exposure across security operations, access governance, and threat response.
120k – 180k/yr
Remote2+ YOESecurity Engineering
About the role
Responsibilities
Respond to and triage alerts relating to phishing attacks, impersonation, scams, and brand abuse (e.g. Sublime, Doppel), escalating credible threats where appropriate.
Coordinate day-to-day operation of the bug bounty program, including communication with researchers, issue tracking, reporting, and internal follow-up.
Conduct user access reviews and review security settings, access configurations, and administrative controls across business systems, SaaS platforms, and internal infrastructure, tracking remediation where required.
Support recurring operational security workflows, including documentation, process tracking, and follow-up.
Requirements
2+ years of experience in a security-focused role, such as security operations, IAM, application security support, operational security, or a similar domain.
Familiarity with core security concepts including phishing, authentication, access control, least privilege, and common vulnerability classes.
Ability to manage multiple concurrent workflows with strong attention to detail and reliable follow-through.
Clear written communication and confidence coordinating across technical and non-technical stakeholders.
Self-motivated, organized, and comfortable operating independently in a remote-first environment with minimal supervision.
Nice to Have
Experience automating operational workflows using LLMs or AI tooling (e.g. Claude).
Familiarity with common web application vulnerabilities (e.g. OWASP Top 10).
Exposure to vulnerability disclosure / bug bounty workflows.
Experience with SaaS administration, access reviews, or IAM processes.
Experience in web3 environments or familiarity with common web3 threat patterns.
Our Benefits
100% insurance premium coverage for medical, dental, and vision for you and your dependents (US Employees)
Equipment of your choice
Flexible vacation time, 11 holidays, and floating company days off
Competitive Salary
Protocol Token Grants
401k matching (US Employees)
Fun and inclusive in-person and digital events
Skills
PhishingAuthenticationAccess ControlLeast PrivilegeVulnerability ManagementBug BountySaas AdministrationIAMWeb3Owasp Top 10
Security Analyst managing SecOps/SOC, threat monitoring, incident response, and log analysis using Wiz, Datadog, SQL across Kubernetes/AWS. Builds automated security controls with Python/Go/TypeScript and leverages LLMs for analytics; requires 2+ years SOC experience.
117k – 130k/yr
Remote2+ YOESecurity Engineering
Product Security Engineer
LaunchdarklyCalifornia +7
Product Security Engineer II responsible for leading threat modeling, triaging CNAPP findings, contributing to SDLC tooling, and partnering with engineering teams to embed security practices. Requires 2-4 years in security roles with strong cloud security and AI tooling experience.
116k – 187k/yr
Remote2+ YOESecurity Engineering
Security Engineer
DAT Freight & AnalyticsDenver, CO
Security Engineer responsible for implementing security controls, building automation workflows, and embedding security into SDLC and cloud infrastructure. Requires 2-4 years of cybersecurity or cloud security experience.
114k – 149k/yr
Hybrid2+ YOESecurity Engineering
Threat Detection Engineer
IdmeMountain View, CA
Develop and optimize high-fidelity threat detections across SIEM/SOAR platforms using Python, SQL, and AI/ML techniques. Focus on LLM-assisted workflows, AI-specific threat detection, and infrastructure-as-code for scalable security operations.
113k – 140k/yr
On-site2+ YOESecurity Engineering
SecOps Engineer
UpstartUnited States
SecOps Engineer building automated response mechanisms, triaging alerts, hunting threats, and supporting incident response with AI and SOAR tools. Requires strong logging skills, Python, and Git experience in a security-focused environment.