# Security Analyst

**Company:** [Aptos](https://hotfix.jobs/companies/aptos)
**Location:** Remote
**Role:** Security Engineering
**Salary:** $120k – $180k/yr
**Experience:** 2+ years
**Skills:** Phishing, Authentication, Access Control, Least Privilege, Vulnerability Management, Bug Bounty, Saas Administration, IAM, Web3, Owasp Top 10
**Posted:** 2026-06-03

> The Security Analyst will operate and scale security across the organization, supporting core security workflows such as phishing response, bug bounty operations, access governance, and operational security hygiene. This is a hands-on, cross-functional role offering broad exposure across security operations, access governance, and threat response.

## Job Description

## Responsibilities

* Respond to and triage alerts relating to phishing attacks, impersonation, scams, and brand abuse (e.g. Sublime, Doppel), escalating credible threats where appropriate.
* Coordinate day-to-day operation of the bug bounty program, including communication with researchers, issue tracking, reporting, and internal follow-up.
* Conduct user access reviews and review security settings, access configurations, and administrative controls across business systems, SaaS platforms, and internal infrastructure, tracking remediation where required.
* Support recurring operational security workflows, including documentation, process tracking, and follow-up.

## Requirements

* 2+ years of experience in a security-focused role, such as security operations, IAM, application security support, operational security, or a similar domain.
* Familiarity with core security concepts including phishing, authentication, access control, least privilege, and common vulnerability classes.
* Ability to manage multiple concurrent workflows with strong attention to detail and reliable follow-through.
* Clear written communication and confidence coordinating across technical and non-technical stakeholders.
* Self-motivated, organized, and comfortable operating independently in a remote-first environment with minimal supervision.

## Nice to Have

* Experience automating operational workflows using LLMs or AI tooling (e.g. Claude).
* Familiarity with common web application vulnerabilities (e.g. OWASP Top 10).
* Exposure to vulnerability disclosure / bug bounty workflows.
* Experience with SaaS administration, access reviews, or IAM processes.
* Experience in web3 environments or familiarity with common web3 threat patterns.

## Our Benefits

* 100% insurance premium coverage for medical, dental, and vision for you and your dependents (US Employees)
* Equipment of your choice
* Flexible vacation time, 11 holidays, and floating company days off 
* Competitive Salary
* Protocol Token Grants
* 401k matching (US Employees)
* Fun and inclusive in-person and digital events

## Similar roles

- [Security Analyst II](https://hotfix.jobs/jobs/8092f2d0-845d-49d4-befe-79505a945a42) - Garner Health - Remote - $117k – $130k/yr
- [Product Security Engineer](https://hotfix.jobs/jobs/baf5fbe7-2c47-42d7-87d6-16076cc2f126) - Launchdarkly - Remote - $116k – $187k/yr
- [Security Engineer](https://hotfix.jobs/jobs/5f613312-05a1-4e48-a4d1-30b5c878e42e) - DAT Freight & Analytics - Denver, CO - $114k – $149k/yr
- [Threat Detection Engineer](https://hotfix.jobs/jobs/e83d0bae-9446-4fac-99f9-8a74df79079c) - Idme - Mountain View, CA - $113k – $140k/yr
- [SecOps Engineer](https://hotfix.jobs/jobs/9d224f47-466c-48cd-b229-442b2b6fbb99) - Upstart - Remote - $112k – $155k/yr

**Apply:** https://hotfix.jobs/jobs/c3e3b1f4-800c-4d5a-bedc-5b1f483ba224
**Canonical:** https://hotfix.jobs/jobs/c3e3b1f4-800c-4d5a-bedc-5b1f483ba224