Abnormal AI · 11 hours ago
Senior Cyber Defense Analyst
United States
Full-time
Remote
Senior Level
$144K/yr - $170K/yr
5+ years expAbnormal AI is looking for a hands-on Security Operations/ Cyber Defense Analyst who thrives in a fast-paced, engineering-driven environment. The role involves monitoring, investigating, and responding to security alerts across various layers while collaborating with detection engineers and IT teams to protect a hybrid environment from threats in real time.
Artificial Intelligence (AI)Cyber SecurityEmailInformation TechnologyNetwork Security
Responsibilities
Monitor alerts from tools like SIEM, EDR, IAM, CSPM, CDR etc
Perform initial triage, enrichment, and correlation across multiple data sources
Identify false positives and fine-tune rules with detection engineering
Lead containment, eradication, and recovery for endpoint, cloud, and identity incidents
Document and communicate incidents through SOAR/Jira/ServiceNow workflows
Perform root cause analysis and propose permanent preventive controls
Proactively hunt using hypotheses mapped to MITRE ATT&CK
Investigate anomalies across CloudTrail, Okta, GitHub, and other telemetry sources
Collaborate with threat intelligence to identify emerging TTPs
Build or enhance playbooks in SOAR (Torq or equivalent)
Create custom enrichment scripts and automations (Python, Bash, etc.)
Suggest new detection logic and operational improvements
Track and report operational metrics (MTTD, MTTR, incident categories)
Maintain documentation and lessons learned
Qualification
Required
5-7 years of hands-on SOC or Incident Response experience in a cloud-first or hybrid environment
Strong understanding of attacker lifecycle, MITRE ATT&CK, and threat actor TTPs
Experience with EDR (CrowdStrike preferred), SIEM (Splunk preferred), and SOAR (Torq, XSOAR, or Phantom)
Familiarity with AWS, Okta, and SaaS platforms
Proficiency in writing queries and automations using Python, SPL, or equivalent
Excellent analytical and investigative skills — capable of operating independently with minimal hand-holding
Strong documentation and communication skills for technical and executive audiences
Preferred
Experience with CSPM/CDR/VM tools
Knowledge of Containers and Kubernetes security
Relevant certifications like CEH, Security+, GCIH, GCIA, or AWS Security Specialty
Benefits
Bonus
Restricted stock units (RSUs)
Benefits
Company
Abnormal AI
Abnormal AI is the leading AI-native human behavior security platform.
1001-5000 employees
H1B Sponsorship
Abnormal AI has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (5)
Funding
Current Stage
Late StageTotal Funding
$534MKey Investors
Wellington ManagementCrowdStrike Falcon FundInsight Partners
2024-08-06Series D· $250M
2023-03-29Series Unknown
2022-05-10Series C· $210M
Leadership Team
Evan Reiser
Founder & CEO
Sanjay Jeyakumar
CTO, Co-Founder, and Head of R&D
Recent News
Company data provided by crunchbase