We're looking for a Security Analyst / Senior Security Analyst to join our corporate Security Operations team and focus on securing our internal corporate systems and infrastructure. This role is critical in protecting our company's employees, data, and assets from cyber threats. You will be responsible for a wide range of security activities, including threat detection, incident response, vulnerability management, vendor risk management, and security awareness. This position requires a proactive mindset, strong technical skills, and a commitment to continuous learning in a fast-paced environment.

Getting started

• We want you to feel like part of the team early on! Our onboarding process will integrate you into the company with informative sessions on our product, policies, processes, and team structure and goals. 
• We’re excited for you to learn, grow, and contribute right away! We trust that you’ll bring experience and knowledge that will uplift and uplevel the team, but we don’t expect you to know everything on Day 1.

In your role, you'll...

Threat Detection & Monitoring:

• Monitor security alerts from various sources (SIEM, EDR, network logs) to identify and investigate potential security incidents.
• Analyze system logs and network traffic to detect anomalous behavior and indicators of compromise (IOCs).

Incident Response:

• Respond to and investigate reported phishing emails, quarantining malicious content and analyzing threats.
• Serve as a key responder during security incidents, following established procedures for containment, eradication, and recovery.
• Conduct analysis to determine the root cause of incidents and provide recommendations to prevent recurrence.
• Document all phases of the incident response lifecycle.

Vendor Risk Management:

• Conduct vendor security risk reviews for new and existing third-party services, evaluating their security posture and compliance.

Vulnerability Management:

• Perform regular vulnerability scans of corporate systems and infrastructure.
• Analyze scan results, prioritize vulnerabilities based on risk, and work with IT teams to ensure timely remediation.

Tooling, Policy & Security Awareness Support

• Help test and validate security policy updates across tools such as CrowdStrike, FortiDLP, BeyondTrust, and Okta.
• Support webhook testing, automation pilots, or policy rollout validation in coordination with senior staff.
• Maintain internal documentation for alert triage, configuration guides, and user-facing security guidance.
• Contribute to the development of security awareness training for all employees.

About you

• Security analyst or similar role, typically 3+ years for Security Analyst, or 6+ years for Senior Security Analyst. 
• Hands-on work with security tools such as SIEM platforms (e.g., Datadog, Splunk), EDR solutions (e.g., CrowdStrike), and vulnerability scanners (e.g., Nessus).
• Incident response experience, including investigating, containing, and remediating security incidents.
• You are authorized to work in the United States. Please note that at this time, Everlaw is not sponsoring U.S. employment visas for this role.

Technical Skills:

• Familiarity with supporting Windows, macOS, and Ubuntu endpoints.
• Understanding of APIs and their security implications, particularly for vendor security assessments.
• Strong grasp of networking fundamentals (TCP/IP, firewalls, proxies, SD-WANs, SSH) and the ability to interpret logs and system telemetry.
• Ability to analyze logs from EDR tools, cloud consoles, and email headers to identify indicators of compromise or policy violations.
• Knowledge of cloud security principles and common platforms (AWS, Azure, GCP).
• Experience with scripting languages (e.g., Python, Bash, PowerShell) is a plus.

Soft Skills:

• Excellent problem-solving and analytical skills.
• Strong communication and collaboration skills, with the ability to explain technical issues to non-technical stakeholders.
• Self-starter who can manage multiple priorities independently.

Benefits

• The expected salary range for the
  • Security Analyst role is between $109,000 - $138,000
  • Senior Security Analyst is $137,000 - 173,000.
  • The final offered salary will be dependent upon many factors including the candidate’s experience and skills. The base pay range is subject to change in the future.
• Substantial equity
• 401k with company matching
• Health, dental, and vision
• Flexible Spending Accounts for health and dependent care expenses
• Paid parental leave and sick leave
• Seventeen paid vacation days plus ten bankable federal holidays
• Four “Everlawlidays” that are designated days off for the whole company
• Annual allocation for Learning & Development opportunities and applicable professional membership dues
• Company-sponsored life and disability insurance

Perks

• Work in Downtown Oakland, just steps from the BART line and dozens of restaurants
• You will get a powerful Linux laptop and be able to customize your desk setup
• Bond over team lunches and out-of-the-box events 
• Ranked “#1 on G2 for Ediscovery Software and Momentum” and we offer free eDiscovery resources to benefit the greater societal good with Everlaw for Good
• Time off for company-sponsored volunteer events and 4 paid hours per quarter to volunteer at a charitable organization of your choice
• Take advantage of learning and career development opportunities 
• Ranked #9 on Glassdoor's Best Places to Work 2023 for US small and medium companies
• One of Wealthfront’s 2021 Career Launching Companies, and ranked #2 on the “2022 Bay Area Best Places to Work” list by the San Francisco Business Times and the Silicon Valley Business Journal
• One of Fast Company’s World's Most Innovative Companies for 2022 and proud contributor of free ediscovery resources to benefit the greater good through “Everlaw for Good”
• #LI-JA1
• #LI-Hybrid