Skip to content
Garner Health

Security Analyst II

Security Analyst managing SecOps/SOC, threat monitoring, incident response, and log analysis using Wiz, Datadog, SQL across Kubernetes/AWS. Builds automated security controls with Python/Go/TypeScript and leverages LLMs for analytics; requires 2+ years SOC experience.

117k – 130kUnited StatesSecurity EngineeringRemote2+ YOE
Apply

About the role

Responsibilities

  • Independently manage day-to-day security operations (SecOps/SOC), including threat monitoring and incident triage with intense urgency.
  • Conduct systematic reviews of system logs and alerts using Wiz and Datadog to uncover root causes and solve for underlying vulnerabilities.
  • Use LLMs (like Claude) to interrogate the health of services and automate security-based data analytics at scale.
  • Navigate hundreds of Kubernetes clusters and disparate data sources to find the "signal in the noise" using SQL and Boolean logic.
  • Build and implement security controls and automated responses within the AWS ecosystem using Python, Go, or TypeScript.
  • Convey technical findings and forensic research concisely to engineering and product teams with clear, actionable remediation steps.
  • Own the execution of recurring compliance tasks and documentation, ensuring all security deliverables are error-free and meet regulatory standards.
  • Identify opportunities to automate manual security checks, moving the team toward a more proactive security engineering model over time.

Requirements

  • 2+ years of experience in Security Operations, SOC, or a related field, preferably within a scaling startup.
  • Proven experience in incident response, including triage, investigation, and resolution in high-pressure environments.
  • Hands-on experience with security and observability tools such as Wiz and Datadog, particularly from a forensic or MTDR perspective.
  • Strong SQL skills and demonstrated ability to analyze large, complex datasets across distributed systems.
  • Experience identifying patterns and extracting meaningful insights from high-volume data (“signal vs. noise”).
  • Familiarity with on-call rotations and a willingness to participate as needed.
  • Experience or demonstrated interest in leveraging AI/LLMs (e.g., Claude) for data analysis, troubleshooting, or system interrogation.

Technologies

  • Wiz, Datadog, Cyberhaven, Claude, Snowflake, SQL, AWS, Terraform, Kubernetes, Python, Go, TypeScript.

Compensation

  • Target salary range: $117,000 - $130,000.
  • Eligible for equity incentive and competitive benefits plans, including flexible PTO, Medical/Dental/Vision, 401(k), Teladoc Health and more.

Skills

WizDatadogKubernetesSQLAWSPythonGoTypeScriptTerraformSnowflakeClaudeCyberhaven

Similar roles

Security Engineering jobs
Launchdarkly

Product Security Engineer

Product Security Engineer II responsible for leading threat modeling, triaging CNAPP findings, contributing to SDLC tooling, and partnering with engineering teams to embed security practices. Requires 2-4 years in security roles with strong cloud security and AI tooling experience.

116k – 187kCalifornia +7Security EngineeringRemote2+ YOEScaSAST
Aptos

Security Analyst

The Security Analyst will operate and scale security across the organization, supporting core security workflows such as phishing response, bug bounty operations, access governance, and operational security hygiene. This is a hands-on, cross-functional role offering broad exposure across security operations, access governance, and threat response.

120k – 180kUnited StatesSecurity EngineeringRemote2+ YOEIAMWeb3
DAT Freight & Analytics

Security Engineer

Security Engineer responsible for implementing security controls, building automation workflows, and embedding security into SDLC and cloud infrastructure. Requires 2-4 years of cybersecurity or cloud security experience.

114k – 149kDenver, COSecurity EngineeringHybrid2+ YOEIAMSca
Idme

Threat Detection Engineer

Develop and optimize high-fidelity threat detections across SIEM/SOAR platforms using Python, SQL, and AI/ML techniques. Focus on LLM-assisted workflows, AI-specific threat detection, and infrastructure-as-code for scalable security operations.

113k – 140kMountain View, CASecurity EngineeringOn-site2+ YOESQLGit
Upstart

SecOps Engineer

SecOps Engineer building automated response mechanisms, triaging alerts, hunting threats, and supporting incident response with AI and SOAR tools. Requires strong logging skills, Python, and Git experience in a security-focused environment.

112k – 155kUnited StatesSecurity EngineeringRemoteEntry levelGitAWS