Security Analyst

Seattle, WA, United States

Anduril Transforming US & allied military capabilities with advanced technology. View company page

Anduril Industries is a defense technology company with a mission to transform U.S. and allied military capabilities with advanced technology. By bringing the expertise, technology, and business model of the 21st century’s most innovative companies to the defense industry, Anduril is changing how military systems are designed, built and sold. Anduril’s family of systems is powered by Lattice OS, an AI-powered operating system that turns thousands of data streams into a realtime, 3D command and control center. As the world enters an era of strategic competition, Anduril is committed to bringing cutting-edge autonomy, AI, computer vision, sensor fusion, and networking technology to the military in months, not years.

Anduril's Information Security team is looking for a security analyst to be the watchtower for Anduril's critical defense technologies. As a security analyst on the detection and response team, you'll be responsible for monitoring and responding to adversarial activity while helping incorporate key detection feedback loops with the detection engineering team. When not responding to threats, you'll help develop new detection signatures to catch sophisticated threats.

WHAT YOU'LL DO Triage and respond to alerts / incidents covering multiple disciplines including, but not limited to, phishing, endpoints, AWS infrastructure and services, and SaaS applications

Build and optimize tailored detection signatures, response playbooks, and response automation using detection-as-code principles

As the frontline of DNR, you will lead the feedback loop for detections, ensuring alerts are fine tuned to reduce false positives

Participate in threat modeling scenarios with cross-functional partners to understand weaknesses across Cloud, Mobile, Endpoints, and other environments incorporating findings into security controls and/or detection signatures

Participate in threat hunting initiatives, collaborating with various engineering and product teams to emit signals to incorporate into detections, new telemetry ingestion, and/or security controls

Participate in an on-call rotation responding to security events and conducting incident response investigations while effectively communicating findings to key stakeholders

REQUIRED QUALIFICATIONS Experience in security monitoring, log analysis, and detection engineering within large data sets across endpoint, network, and a wide variety of application log sources

Experience using Bash and/or PowerShell for incident investigations and analysis

Broad range of practical security knowledge across the spectrum of endpoint, network, identity, application, and cloud infrastructure

Knowledge of attacker tactics, techniques, and procedures (TTPs)

Strong communication skills and experience collaborating with internal and external stakeholders

Must be able to obtain and hold a U.S. Top Secret security clearance

PREFERRED QUALIFICATIONS Some experience with Python is a plus!

Experience conducting incident response in the Cloud (AWS, Azure, GCP)

Experience proactively threat hunting using threat intelligence to identify potential risks and weaknesses in telemetry

Although we list out what we generally look for, we are very likely missing other attributes and skills that you have that could make you a great fit, but are not currently listed. Research has shown this especially applies to women and other marginalized groups, who tend to apply if they check 100% of every box, versus men who apply if they hit roughly 60%. The point we’re getting at, it doesn’t hurt to take a chance and apply!

US Salary Range$122,000—$183,000 USD Anduril Industries is a defense technology company with a mission to transform U.S. and allied military capabilities with advanced technology. By bringing the expertise, technology, and business model of the 21st century’s most innovative companies to the defense industry, Anduril is changing how military systems are designed, built and sold. Anduril’s family of systems is powered by Lattice OS, an AI-powered operating system that turns thousands of data streams into a realtime, 3D command and control center. As the world enters an era of strategic competition, Anduril is committed to bringing cutting-edge autonomy, AI, computer vision, sensor fusion, and networking technology to the military in months, not years.

Anduril's Information Security team is looking for a security analyst to be the watchtower for Anduril's critical defense technologies. As a security analyst on the detection and response team, you'll be responsible for monitoring and responding to adversarial activity while helping incorporate key detection feedback loops with the detection engineering team. When not responding to threats, you'll help develop new detection signatures to catch sophisticated threats.

WHAT YOU'LL DO Triage and respond to alerts / incidents covering multiple disciplines including, but not limited to, phishing, endpoints, AWS infrastructure and services, and SaaS applications

Build and optimize tailored detection signatures, response playbooks, and response automation using detection-as-code principles

As the frontline of DNR, you will lead the feedback loop for detections, ensuring alerts are fine tuned to reduce false positives

Participate in threat modeling scenarios with cross-functional partners to understand weaknesses across Cloud, Mobile, Endpoints, and other environments incorporating findings into security controls and/or detection signatures

Participate in threat hunting initiatives, collaborating with various engineering and product teams to emit signals to incorporate into detections, new telemetry ingestion, and/or security controls

Participate in an on-call rotation responding to security events and conducting incident response investigations while effectively communicating findings to key stakeholders

REQUIRED QUALIFICATIONS Experience in security monitoring, log analysis, and detection engineering within large data sets across endpoint, network, and a wide variety of application log sources

Experience using Bash and/or PowerShell for incident investigations and analysis

Broad range of practical security knowledge across the spectrum of endpoint, network, identity, application, and cloud infrastructure

Knowledge of attacker tactics, techniques, and procedures (TTPs)

Strong communication skills and experience collaborating with internal and external stakeholders

Must be able to obtain and hold a U.S. Top Secret security clearance

PREFERRED QUALIFICATIONS Some experience with Python is a plus!

Experience conducting incident response in the Cloud (AWS, Azure, GCP)

Experience proactively threat hunting using threat intelligence to identify potential risks and weaknesses in telemetry

Although we list out what we generally look for, we are very likely missing other attributes and skills that you have that could make you a great fit, but are not currently listed. Research has shown this especially applies to women and other marginalized groups, who tend to apply if they check 100% of every box, versus men who apply if they hit roughly 60%. The point we’re getting at, it doesn’t hurt to take a chance and apply!

US Salary Range$122,000—$183,000 USD The salary range for this role is an estimate based on a wide range of compensation factors, inclusive of base salary only. Actual salary offer may vary based on (but not limited to) work experience, education and/or training, critical skills, and/or business considerations. Highly competitive equity grants are included in the majority of full time offers; and are considered part of Anduril's total compensation package. Additionally, Anduril offers top-tier benefits for full-time employees, including:

Platinum Healthcare Benefits: For U.S. roles, we offer top tier platinum coverage (medical, dental, vision) that are 100% covered by Anduril for you and 90% covered for your dependents.

For UK roles, Private Medical Insurance (PMI): Anduril will cover the full cost of the insurance premium for an employee and dependents.

For AUS roles, Private health plan through Bupa: Coverage is fully subsidizedby Anduril.

Basic Life/AD&D and long-term disability insurance 100% covered by Anduril, plus the option to purchase additional life insurance for you and your dependents.

Extremely generous company holiday calendar including a holiday hiatus in December, and highly competitive PTO plans.

16 weeks of paid Caregiver & Wellness Leave to care for a family member, bond with your baby, or tend to your own medical condition.

Family Planning & Parenting Support: Fertility (eg, IVF, preservation), adoption, and gestational carrier coverage with additional benefits and resources to provide support from planning to parenting.

Mental Health Resources: We provide free mental health resources 24/7 including therapy, life coaching, and more. Additional work-life services, such as free legal and financial support, available to you as well.

A professional development stipend is available to all Andurilians.

Daily Meals and Provisions: For many of our offices this means breakfast, lunch and fully stocked micro-kitchens.

Company-funded commuter benefits available based on your region.

Relocation assistance (depending on role eligibility).

401(k) retirement savings plan - both a traditional and Roth 401(k).

The recruiter assigned to this role can share more information about the specific compensation and benefit details associated with this role during the hiring process.

Anduril is an equal-opportunity employer committed to creating a diverse and inclusive workplace. The Anduril team is made up of incredibly talented and unique individuals, who together are disrupting industry norms by creating new paths towards the future of defense technology. All qualified applicants will be treated with respect and receive equal consideration for employment without regard to race, color, creed, religion, sex, gender identity, sexual orientation, national origin, disability, uniform service, Veteran status, age, or any other protected characteristic per federal, state, or local law, including those with a criminal history, in a manner consistent with the requirements of applicable state and local laws, including the CA Fair Chance Initiative for Hiring Ordinance. We actively encourage members of recognized minorities, women, Veterans, and those with disabilities to apply, and we work to create a welcoming and supportive environment for all applicants throughout the interview process. If you are someone passionate about working on problems that have a real-world impact, we'd love to hear from you!

To view Anduril's candidate data privacy policy, please visit https://anduril.com/applicant-privacy-notice/ .

Explore more InfoSec / Cybersecurity career opportunities Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.

#J-18808-Ljbffr