Industrial Security Analyst ensuring compliance with federal security regulations and administering security programs for classified materials. Collaborating with internal and external stakeholders in a high - profile setting.
About the role
- Security Analyst focusing on brand protection against online fraud and phishing attacks. Investigating threats, pursuing takedowns, and supporting sales evaluations in a hybrid work environment.
Responsibilities
- Review and assess emerging phishing, impersonation, and online fraud threats targeting Bolster’s prospects.
- Identify and pursue takedowns for malicious content across web, social media platforms, and mobile application stores, including impersonation accounts, fraudulent applications, and related abuse.
- Perform targeted threat hunting to identify malicious domains, credential harvesting sites, fake login portals, and related attacker infrastructure across multiple modules.
- Use OSINT tools and investigative techniques (WHOIS, DNS records, certificate transparency, search-based discovery, and infrastructure pivoting) to enrich findings and uncover related malicious activity.
- Analyze suspicious websites, hosting infrastructure, DNS records, redirects, and related artifacts to detect attack patterns and emerging abuse trends.
- Pursue takedown actions during active proof-of-concept (POC) evaluations and track each case through successful remediation.
- Coordinate with registrars, hosting providers, and relevant abuse contacts to drive timely enforcement actions.
- Monitor previously reported malicious infrastructure to confirm suspension and identify re-registration, reactivation, or attacker evasion attempts.
- Support the Sales team with technical validation and threat intelligence during active POCs and evaluations.
- Generate periodic and ad-hoc reports highlighting threat activity, detection insights, and remediation outcomes.
Requirements
- 2+ years of experience in trust & safety or brand protection, with a focus on Pre-Sales.
- Well versed with phishing, impersonation, credential harvesting, and online fraud activity, including investigative and reporting workflows.
- Experience supporting technical evaluations, proof-of-concepts (POCs), or internal presales efforts is strongly preferred.
- Understanding of internet infrastructure, including domains, DNS, hosting providers, redirects, and attacker infrastructure.
- Knowledge of security and fraud detection principles and common attacker tactics, techniques, and procedures.
- Self-motivated and detail-oriented with the ability to work independently as well as collaboratively.
- Strong analytical and investigative mindset, including problem-solving and hypothesis-driven investigation.
- Strong written and verbal communication skills with the ability to clearly document findings and summarize technical information internally.
- Security certifications (Security+, GSEC, or similar) are a plus.
- Willingness and openness to assist with time-sensitive investigations aligned with active presales evaluations or critical incidents.
Benefits
- Excellent medical, dental, and vision insurance
- Flexible time off + paid holidays.
- Equity + 401(k) plan
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Staff Cybersecurity Analyst responsible for safeguarding cloud assets and leading security assessments for Southern Glazer’s. Collaborating with teams to develop cloud security policies and addressing cybersecurity incidents.
Senior Threat Intelligence Analyst working with Bupa's cybersecurity team. Focused on threat management and defensive strategies to enhance cyber security posture.
Senior Information Security Analyst at Field Nation leading SOC 2 and ISO 27001 compliance programs. Collaborating with teams to embed security and leverage AI in GRC workflows.
Analista de Ciberseguridad en CRG Solutions responsable de monitorear amenazas y gestionar vulnerabilidades en la organización. Identificación de riesgos y mejora continua de la postura de seguridad.
Compliance & Information Security Analyst at beqom managing GRC and TPRM functions. Overseeing client governance, risk, and compliance requests, and vendor due diligence at a SaaS company.
Security Compliance Analyst responsible for ensuring compliance with security regulations and collaborating on security measures across teams.
Senior Technical Expert in Cyber Defense Center at ZEISS analyzing global cyber threats. Collaborating with SOC, CIRT, and ensuring proactive defense strategies.
Information Security Analyst focusing on vulnerability research and data analysis at Flexera. Involves analyzing, verifying vulnerabilities, and maintaining high - quality content standards.
Oversee the testing lifecycle and provide cyber security solutions at Xcel Energy. Engage in various testing techniques and collaborate with teams to enhance quality practices.