Security

The Vulnerability Management Analyst is an individual contributor role responsible for identifying, prioritizing, validating, and driving remediation of security vulnerabilities across applications, endpoints, infrastructure, containers, and cloud environments. The role converts raw vulnerability data into actionable risk decisions and measurable remediation outcomes by partnering with engineering, IT operations, and product teams.

The Threat Intelligence Analyst identifies, analyzes, and operationalizes information about adversaries, campaigns, vulnerabilities, and attack techniques to reduce organizational cyber risk. The role translates external and internal intelligence into actionable detections, mitigations, and decision support for security operations, incident response, vulnerability management, and product engineering.

A SOC Analyst monitors, triages, investigates, and helps respond to security events across an organization’s endpoints, identity systems, networks, cloud environments, and applications. The role exists to detect threats early, reduce the impact of incidents, and continuously improve the organization’s detection and response capabilities through disciplined operational security practices.

The Senior Vulnerability Management Analyst leads the identification, analysis, prioritization, and orchestration of remediation for security vulnerabilities across an organization’s applications, infrastructure, endpoints, and cloud environments. This role converts vulnerability data into actionable risk decisions, drives remediation outcomes with engineering and IT teams, and strengthens the operating model for vulnerability governance, measurement, and continuous improvement.

The **Senior Threat Intelligence Analyst** (Senior CTI Analyst) is a senior individual contributor responsible for turning threat data into **timely, decision-ready intelligence** that reduces organizational risk. The role curates and analyzes information about adversaries, campaigns, vulnerabilities, and attacker tactics to drive **detection improvements, incident readiness, vulnerability prioritization, and executive awareness**.

A Senior SOC Analyst is a senior individual contributor within Security Operations responsible for detecting, investigating, containing, and coordinating response to security threats across cloud, endpoints, networks, identities, and applications. This role blends deep hands-on investigation capability with operational leadership—driving consistent triage quality, improving detection coverage, mentoring analysts, and ensuring incidents are handled quickly and correctly.

The Senior Security Analyst is a senior individual contributor responsible for protecting the confidentiality, integrity, and availability of a software company’s systems and data through high-fidelity detection, rapid incident response, vulnerability and exposure management, and security operations improvements. This role acts as a technical authority in day-to-day security operations (SecOps) and is expected to independently lead complex investigations, coordinate cross-functional response, and drive measurable reductions in security risk.

The Senior Incident Response Analyst is a senior individual contributor within Security responsible for leading technical incident investigations, containing threats, coordinating response actions, and driving measurable improvements to detection and response capabilities. This role combines hands-on deep technical work (triage, forensics, containment, eradication) with operational leadership (incident command support, cross-team coordination, stakeholder communications, post-incident learning).

The **Senior Detection Analyst** designs, validates, and continuously improves security detections that identify malicious behavior across endpoints, identities, networks, cloud platforms, and applications. This role sits at the intersection of SOC operations, threat intelligence, incident response, and security engineering—turning real-world attacker behaviors into high-fidelity alerts, investigations, and automated response playbooks.

A Security Analyst protects the organization’s applications, infrastructure, endpoints, identities, and data by monitoring for threats, triaging and investigating security events, supporting incident response, and driving measurable risk reduction through vulnerability and control improvements. The role blends hands-on technical analysis with disciplined operational execution—turning noisy telemetry into validated findings, prioritized actions, and clear communication for stakeholders.

The Principal Vulnerability Management Analyst is a senior individual contributor responsible for designing, running, and continuously improving the enterprise vulnerability management (VM) program across cloud, infrastructure, endpoints, containers, and applications. This role translates vulnerability data into risk-informed decisions, drives remediation outcomes through cross-functional influence, and ensures the organization can demonstrate control effectiveness to internal governance and external auditors.

The Principal Threat Intelligence Analyst is a senior individual contributor responsible for building and operationalizing high-confidence, decision-grade cyber threat intelligence (CTI) that measurably reduces security risk to the organization’s products, cloud infrastructure, and enterprise IT. The role translates external and internal threat signals into actionable intelligence, drives prioritized defensive improvements, and influences security strategy through evidence-based assessments and adversary-focused insights.

The **Principal SOC Analyst** is the senior-most individual contributor within Security Operations, responsible for leading complex incident response, elevating detection and response maturity, and driving measurable reductions in organizational risk. This role acts as the technical authority in the SOC for threat hunting, SIEM/SOAR strategy, and escalation management, translating adversary behavior into actionable detections, playbooks, and operational improvements.

The **Principal Security Analyst** is a senior individual contributor responsible for detecting, analyzing, and reducing security risk across enterprise systems, cloud environments, endpoints, and applications. This role combines advanced threat detection and incident response expertise with security engineering-minded improvements to monitoring, automation, and control effectiveness.

The **Principal Incident Response Analyst** is the senior individual-contributor authority responsible for leading complex security incident investigations, coordinating response across technical and business teams, and driving measurable improvements to detection, containment, eradication, and recovery capabilities. This role exists to ensure the organization can rapidly reduce impact from security events, preserve evidence, meet regulatory obligations, and continuously harden systems based on real incident learnings.

The **Principal Detection Analyst** is the senior-most individual contributor (IC) responsible for designing, improving, and governing high-fidelity security detections that identify adversary behavior across endpoints, cloud environments, networks, identity systems, and applications. This role combines deep threat and telemetry expertise with practical detection engineering to reduce mean time to detect, increase true-positive signal, and measurably improve security coverage against real-world tactics and techniques.

The **Lead Vulnerability Management Analyst** owns the day-to-day and strategic execution of an organization’s vulnerability management (VM) program, ensuring technology risks are identified, prioritized, communicated, and driven to remediation. This role blends deep technical judgment with program leadership—translating scan results and threat intelligence into practical actions across engineering, infrastructure, and operations teams.

The **Lead Threat Intelligence Analyst** is a senior, hands-on security analyst who designs, runs, and continuously improves an organization’s threat intelligence (TI) capability to reduce cyber risk. The role turns raw signals (telemetry, OSINT, vendor feeds, dark web monitoring, incident learnings) into **actionable intelligence** that informs detection engineering, incident response, vulnerability management, and security strategy.