×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Security Manager

Senior Security Analyst – Purple Team

Job in Reynoldsburg, Franklin County, Ohio, 43069, USA
Listing for: Victoria’s Secret & Co.
Full Time position
Listed on 2026-03-01
Job specializations:
  • IT/Tech
    Cybersecurity, Security Manager
Salary/Wage Range or Industry Benchmark: 99400 USD Yearly USD 99400.00 YEAR
Job Description & How to Apply Below

Position Title

Senior Security Analyst – Purple Team

Your Role

The Senior Security Analyst – Purple Team works within the Information Security Incident Response team in Information Technology. Victoria’s Secret is seeking a highly skilled and collaborative Purple Team member to build out our internal purple team function focusing on identifying detection gaps, strengthening defensive controls, and validating response readiness.

  • This role will bridge offensive and defensive security capabilities, driving proactive detection, response readiness, and team development across the enterprise.

This individual must bring hands‑on penetration testing experience and a solid track record defending enterprise infrastructure and applications. The ideal candidate is a mentor by nature, passionate about uplifting team capabilities, and eager to lead engaging technical tabletop exercises that strengthen the company’s cyber resilience.

Why You Belong Here

At Victoria’s Secret & Co, you’ll join a world‑leading specialty retail brand recognized globally for innovation and excellence in lingerie and fashion. You’ll work alongside industry leaders to set the standard for what a retail brand can achieve, placing customers at the center of everything we do to create products and experiences that bring them joy.

We believe everyone deserves a place where they truly belong. We celebrate individuality and know that your passion, experience, and unique perspective strengthen our team and business. Here, you’ll be empowered to perform, grow, and engage through unmatched opportunities to develop your skills, gain real‑world experience, and learn from the best in the business.

Your Impact
  • Establish a dedicated purple team to align red and blue team efforts.
  • This role is responsible for developing a sustainable purple team program, including planning, execution, measurement, and continuous improvement of adversary emulation and detection validation activities.
  • Conduct advanced penetration tests on networks, infrastructure, and applications to identify risks and validate defenses.
  • Collaborate with defensive teams to enhance detection rules, incident response playbooks, and alert fidelity.
  • Design and run technical tabletop exercises for IT and security stakeholders, simulating real‑world attack scenarios; guided by curated cyber threat intelligence.
  • Mentor junior team members in both offensive and defensive security disciplines.
  • Work cross‑functionally with infrastructure, application, and Dev Ops teams to embed security into operations.
  • Document and communicate findings clearly, with actionable remediation strategies for both technical and non‑technical audiences.
  • Perform adversary‑specific attack simulation of common Threat Actor TTPs.
  • Build and maintain a purple team roadmap, aligned to organizational risk.
  • Develop automated purple teaming / detection validation pipelines (e.g., using CALDERA, Atomic Red Team, or custom scripts).
  • Perform continuous security control validation across EDR, SIEM, IAM, cloud, and network security controls.
  • Deliver measurable improvements to detection coverage and response readiness.
  • Integrate purple team outputs into security engineering and SOC processes.
  • Partner with CTI to convert intelligence into actionable emulation plans.
  • Work with leadership to define and track metrics (e.g., detection coverage, detection depth, time‑to‑detect, time‑to‑respond) to demonstrate program maturity.
Salary

Minimum Salary: $99,400.00

Maximum Salary: $

Qualifications Your Experience
  • No formal degree required. Demonstrated hands‑on expertise and impact in similar roles is valued above formal education.
  • 2–5 years of experience conducting penetration testing (network, application, cloud).
  • 1–3 years of experience defending enterprise environments (SIEM, EDR, firewall, WAF, etc.).
  • Strong understanding of MITRE ATT&CK framework, threat emulation, and detection engineering.
  • Experience with tools like Cobalt Strike, Metasploit, Burp Suite, Blood Hound, and modern EDR/XDR platforms.
  • Skilled in scripting and automation (Python, Power Shell, Bash).
  • Proven leadership or mentoring experience in cybersecurity teams.
  • Experience authoring detection logic…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search