Listing Description

Workrise is hiring a Senior Security Analyst that will be responsible for the day-to-day analysis of security threats, vulnerabilities, and detections. Our ideal candidate for this role will be someone who has a passion for proactive security, seeks understanding through data, and can engage a variety of stakeholders across the Workrise enterprise.   

This role will report to the Director of Security Engineering.

What you’ll be doing:

The Security Analyst is a dynamic role that requires strong analytical skills, scripting skills (we leverage python for detections), a solid offensive security mindset, ability to tell stories with data, and ability to take a heuristic approach to vulnerability management. Some of they day to day include:

• Bug Bounty Program Triage - You will be responsible for triaging and reproducing reports that come in from our Bug Bounty and Vulnerability Management programs.


• SIEM Detection & Response - You will be responsible for creating and running playbooks for critical alerts


• Vulnerability Management - Security tools are inherently noisy, you will be responsible for assessing vulnerability priorities and tuning vulnerability management heuristics.


• Incident Response - You will start and lead security investigations, determine indicators of compromise and bring in stakeholders for awareness.


• Data mining & report building - Because we are a data-minded organization, you will tell stories with data and build interactive dashboards (Tableau, Google Data Studio, Juypter)


• Creating & tuning SIEM detections - You will help create and tune detections to reduce signal to noise, and surface critical and actionable events.


• Collaboration  - You won’t do any of this in a vacuum. You will have a team of Security Engineers, Privacy Officers, and an organization that will support you in these efforts by building best-in-class security solutions to give your work the ultimate impact.

Essential Job Functions:

• Data, data, data. You will need to have demonstrated analytic experience and ability to generate metrics and insights across logs and multiple disparate data sets.


• Solid experience with SQL. Doing mental pivot tables and joins should come easily for you.


• Solid scripting experience. Experience in a scripting language for scraping, data analysis, small web apps, and a willingness to learn Python if it is not your primary scripting language.


• Data Visualization - You experience being able to create visualizations (time series, stacked bar, etc) and tell a story with it. You have created self-service dashboards for other colleagues to consume.


• Some exposure to vulnerability scoring and management (CVSS, EPSS)


• Understanding of CVE, CWE and how to read and interpret them for business context. 


• Understanding the OWASP Top 10 and experiencing seeing them in the wild.


• Experience working with a client-side proxy tool such as Burp or ZAP Proxy.


• Excellent written communication and ability to summarize complex information for non-technical audiences.


• Experience with vulnerability management for SAST tools like SonarCloud, GitHub Advanced Security, Snyk.


• Any experience with cloud security, identity lifecycle management, IAM, patch management is good to have.


• Experience working in early or late stage start-ups is helpful.

Experience and Education Requirements:

• Bachelor's degree in a program with a technical or mathematics focus. 


• 2-3 years working in a Security setting such as a SOC.


• 3-5 years professional IT, Software Engineering and/or Security experience.