IT Security Analyst

Code Metal is redefining code translation for mission-critical industries, helping partners move more quickly and reliably from algorithm to silicon. Our platform accelerates deployment of DSP, RF, communications, and embedded signal processing algorithms onto heterogeneous compute targets, including GPUs, FPGAs, ASICs, and edge SoCs. We support automotive, aerospace, defense, and semiconductor partners deploying complex algorithms onto constrained hardware with speed and rigor.About The RoleWe are seeking a mid-level Security Analyst to join our team. This role will focus on monitoring, analyzing, and improving the security posture of Code Metal's enterprise and enclave environments.In this role, you will work closely with engineering, DevOps, and leadership to detect threats, investigate security events, and escalate incidents as needed. You will help operationalize security across the organization while supporting vulnerability management, compliance initiatives, and continuous security improvement.RequirementsCore ResponsibilitiesMonitor and analyze alerts from SIEM, EDR, and other security tools to detect suspicious or malicious activityInvestigate security events and incidents, perform triage, and escalate issues to appropriate teams for remediationConduct threat hunting activities to proactively identify potential risks and anomalous behaviorSupport vulnerability management processes, including scanning, analysis, prioritization, and tracking remediation effortsAssist in the execution and improvement of incident response procedures and runbooksAnalyze system, network, and audit logs across enterprise and enclave environmentsSupport endpoint security controls, including application whitelisting and privilege/elevation managementParticipate in phishing simulations and user awareness initiatives to improve organizational security postureCollaborate with DevOps and engineering teams to communicate findings and support remediation effortsAssist with compliance activities, including evidence collection and control validationMaintain clear and accurate documentation of incidents, processes, and standard operating proceduresRequired QualificationsBachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field, or equivalent professional experience2+ years of experience in a security analyst or similar roleExperience working with security tools such as SIEM, EDR, and vulnerability management platformsStrong understanding of common attack techniques, threat detection, and incident response workflowsExperience analyzing logs and correlating events across multiple data sourcesFamiliarity with endpoint security controls, including application whitelisting and privilege managementAbility to assess and prioritize security alerts and escalate appropriatelyStrong communication and documentation skillsEligible to obtain and maintain an active U.S. Top Secret security clearancePreferred QualificationsExperience working in both enterprise and secure (e.g., enclave or regulated) environmentsFamiliarity with compliance frameworks such as SOC 2, NIST, or FedRAMPExperience with threat hunting methodologies and toolsKnowledge of cloud security principles (AWS, Azure, or GCP)Experience conducting or supporting phishing simulations and security awareness programsRelevant certifications (e.g., Security+, CySA+, GCIH, or similar)Active U.S. security clearance (Secret or Top-Secret)BenefitsPay depends on experience, but we strive to be at the upper end of the salary rangeHealth care plan with 100% premium coverage, including medical, dental, and vision401k with 5% matchingPaid Time Off (Uncapped Vacation, plus Sick & Public Holidays)Flexible hybrid or remote work arrangementRelocation assistance for qualifying employees