Cybersecurity Analyst El Segundo, California,

Low Earth orbit is open for business. Varda is accelerating the development of commercial space infrastructure, from in‑orbit pharmaceutical processing to reliable and economical reentry capsules.

From life‑saving pharmaceuticals to more powerful fiber optics, there is a world of products used on Earth today that can only be manufactured in space. Varda is accelerating innovation in the orbital economy by creating both the products and infrastructure needed so space can directly benefit life on Earth. Our mission is to expand the economic bounds of humankind.

We are hiring a Cybersecurity Analyst to own our day‑to‑day security monitoring function and produce the evidence required to achieve and maintain our cybersecurity certification. This role is the operational core of our cybersecurity organization, responsible for managing alert triage across our cybersecurity tool stack, coordinating with our managed SOC partner, documenting security events, and keeping our monitoring and incident response activities continuously evidenced and ready for review.

This is a hands‑on, high‑accountability role reporting directly to the CISO. You will work closely with our Info Sec Engineer, Compliance Program Manager, and our managed security operations partner. You will help set up and monitor our security tool stack, which spans endpoint protection, network detection, secure web access, application control, and identity management. You establish the monitoring cadence that keeps our security posture visible and our compliance evidence current.

• Take ownership of daily alert triage across our security tool stack, reviewing and dispositioning alerts before they age without review.
• Serve as the internal liaison to our managed SOC partner, receiving their monitoring reports, validating their outputs, and integrating their work into our compliance evidence.
• Build and maintain the incident log, ensuring every security event is captured, classified, and closed with supporting documentation.
• Produce audit log evidence demonstrating that our systems are monitored, logs are retained, and events are reviewed on a consistent schedule.
• Deliver regular monitoring reports to our compliance tracking platform, ensuring up‑to‑date evidence flows into our central repository.
• Coordinate with the Compliance Program Manager to ensure monitoring and incident response evidence is organized and ready for assessor review.

• Own daily triage of alerts from our network detection platform and other security tools, reviewing, classifying, escalating, and documenting dispositions.
• Serve as the primary internal point of contact for our managed security operations partner, receiving daily and weekly alert summaries, validating completeness, and tracking open items to closure.
• Maintain the security event log, a running record of alerts, dispositions, escalations, and outcomes that serve as core compliance evidence.
• Identify patterns in alert data and surface recurring issues to the Info Sec Engineer for remediation.
• Ensure continuous monitoring coverage is documented and demonstrable, a direct requirement of the cybersecurity framework we are certifying against.
• Own the incident log, documenting every security event from detection through closure, including timeline, classification, containment actions, and resolution.
• Coordinate with our managed security operations partner on incident triage, escalation, and post‑incident reporting, ensuring their outputs are captured and integrated into our internal records.
• Maintain the Incident Response Plan as a living document, updating it based on lessons learned and ensuring it reflects actual operational procedures.
• Produce incident response evidence for our compliance assessment, including incident logs, escalation records, containment documentation, and post‑incident reviews.
• Support the Compliance Program Manager in mapping incident documentation to the applicable compliance controls.

• Pull and organize log samples from our endpoint protection, network security, web access,…