Jobs · Information Technology · Utah

Sr. Cyber Security Analyst - (Hybrid - Sandy, UT)

Ventus  · Sandy, UT · 2 wk ago
HybridInformation Technology$95k–$149k/yrFull-time

About the role

This is an opportunity to join a growing security function at a company whose products are deployed at the edge of some of the most sensitive networks in the world. As the Sr Cyber Security Analyst, you will be the operational backbone of the security team — with direct influence on how the program runs and matures.

Responsibilities

  • Lead first-response investigation on security incidents: reconstruct what happened, identify scope, contain where possible, and produce clear summaries for leadership and affected stakeholders
  • Triage and score incoming CVEs using CVSS and contextual risk assessment — ensuring nothing ages past SLA without a documented decision
  • Maintain the vulnerability tracking backlog in Jira — clear ownership, accurate status, SLA compliance
  • Respond to customer security questionnaires, RFP security sections, and audit evidence requests — accurately and on time
  • Develop and maintain a library of standard security responses and supporting evidence for common customer questions
  • Support pre-sales security conversations alongside the Security Engineering Manager
  • Produce regular security metrics and status reporting for engineering leadership
  • Maintain internal security knowledge base, runbooks, and process documentation
  • Support compliance evidence collection for SOC2, ISO 27001, and related frameworks

Requirements

Minimum of 5 years of related experience with a Bachelor’s degree in Computer Science or technical discipline; or 3-4 years and a Master’s degree; or equivalent work experience. Significant experience in a security operations, threat analysis, or intelligence role — you have seen real threats in real environments

Strong understanding of network protocols, traffic analysis, and adversary behavior

Experience with SIEM, IDS/IPS, and security monitoring platforms — Splunk, Elastic, or equivalent

Ability to triage and score vulnerabilities with contextual judgment, not just CVSS lookup

Clear, precise written communication — incident reports, customer responses, and executive summaries all need to land with different audiences

Sound independent judgment — you can prioritize without being told what matters most

Calm under pressure — you have worked in environments where the pace is high and the stakes are real

Collaborative by default — this role succeeds by making the whole security team more effective

Qualifications

Desired But Not Required:

  • Familiarity with CVE/NVD processes, responsible disclosure, and vulnerability lifecycle management
  • Security research and presentation
  • Exposure to compliance frameworks — SOC2, ISO 27001, NIST
  • Scripting capability for log analysis or workflow automation (Python, Bash)
  • Experience communicating security findings or posture to senior non-technical stakeholders
  • Prior involvement in customer-facing security discussions, audits, or RFP responses
  • Relevant certifications: CISSP, GCIA, GREM, Security+, or equivalent

Skills

None listed in the provided job posting.

Benefits

The anticipated base pay range for this position is $95,000 – $149,000. Pay ranges are determined by role, job level and primary job location. The range displayed reflects the reasonable range we anticipate paying for this position and reflects the cost of labor within several U.S. geographic markets. The specific salary offered within the range will depend on various factors including, but not limited to the candidate's relevant and prior experience, education, skills, and primary work location.

Pay

The anticipated base pay range for this position is $95,000 – $149,000.

Schedule

The role is offered on a hybrid schedule.

Similar jobs