Security Analyst

Role Overview

As a Security Analyst II at Minted, you will help protect both the customer‑facing products our community relies on and the enterprise systems our employees use every day.

You’ll join a small, highly collaborative security team, offering hands‑on exposure across application security, cloud security, identity, and security operations. This role provides meaningful ownership early on, close mentorship, and strong growth opportunities as Minted’s security program continues to mature.

• Support the security of Minted’s applications and AWS cloud infrastructure in close partnership with engineering teams.
• Monitor and investigate security events in AWS using Guard Duty, Security Hub, Cloudflare, and SIEM‑integrated logs.
• Review, triage, and track application security findings from Semgrep.
• Analyze vulnerability severity, impact, and exploitability.
• Partner with engineering and Dev Ops to validate findings and drive remediation.
• Identify cloud misconfigurations, exposed resources, and risky IAM patterns.
• Contribute to improving application and cloud security visibility, alerting, and automation.
• Participate in post‑incident reviews related to application or cloud security events.

• You will help protect Minted’s corporate systems, identities, and endpoints by detecting and responding to security incidents.
• Monitor and triage alerts from Crowd Strike, identity providers, and centralized logging tools.
• Investigate phishing attempts, endpoint malware, suspicious login activity, and account compromise.
• Execute incident response actions following established playbooks.
• Support identity and access management across Okta, Google Workspace, and AWS SSO, with an emphasis on least privilege.
• Conduct periodic access reviews and assist with improving IAM processes.
• Partner with IT teams to improve endpoint security posture and response workflows.

• Ramp up on Minted’s environment and security tooling with hands‑on mentorship.
• Review and triage security alerts across cloud, endpoint, and identity systems.
• Complete a defined IAM access review across Okta, Google Workspace, and AWS SSO.
• Use Python to support investigations, reporting, and data enrichment.

• Independently investigate common security alerts and respond to incidents.
• Contribute to implementing a SIEM and establishing foundational SOC processes.
• Assist with log onboarding, alert tuning, and detection improvement.
• Help document runbooks and response procedures.

• Perform vulnerability scanning and support risk‑based remediation tracking.
• Identify recurring security issues or trends and recommend improvements.
• Maintain clear documentation of incidents, investigations, and lessons learned.
• Support SOC 2 and PCI DSS evidence collection.
• Partner with IT and engineering teams to improve monitoring, logging, and visibility.
• Identify opportunities to improve security processes, tooling, and automation.

• Cloud & Infrastructure: AWS, Guard Duty, Security Hub, Cloudflare.
• Application Security:
  Semgrep.
• Endpoint Security:
  Crowd Strike.
• Identity & Access:
  Okta, Google Workspace, AWS SSO.
• Security Operations: SIEM.

• Analytical, curious, and detail‑oriented, with a strong interest in security investigations.
• Calm and methodical under pressure, with solid problem‑solving skills.
• Collaborative and communicative across technical and non‑technical teams.
• Proactive about learning and improving security processes and tooling.

• Bachelor’s degree in Cybersecurity, Computer Science, or a related field, or equivalent experience.
• 2–4 years of experience in security operations, incident response, or IT security.
• Strong understanding of cybersecurity fundamentals (CIA triad, defense‑in‑depth, least privilege, MITRE ATT&CK).
• Hands‑on experience with several of the tools listed above.
• Basic Python scripting skills for automation, log analysis, or reporting.
• Strong written and verbal communication skills.

• Experience with security automation or SOAR tools.
• Familiarity with SOC 2 or PCI DSS.
• Security certifications such as…