Semperis
Identity Security Analyst
3w ago
WorldwideRemotesecurity analysisbug triageincident responsevulnerability assessment
Investigate and resolve customer-reported security bugs through debugging, analysis, and coordination with R&D.
Requirements
- 2–4+ years in a technical security or support role, such as: Security Analyst / SOC Analyst Security Engineer Technical Support Engineer in a security or infrastructure product
- Solid understanding of: Identity and access concepts (Active Directory, authentication, privileges, groups) Basic networking and protocols (TCP/IP, DNS, HTTP/S, SMB, LDAP/LDAPS)
- Scripting and automation skills in PowerShell to speed up investigation and test setup.
- Hands-on experience with: Debugging and reproducing complex customer issues in lab environments
- Strong analytical and problem-solving skills; able to systematically break down ambiguous issues.
- Excellent written and verbal communication skills in English; able to explain complex technical findings to both technical and non-technical audiences.
Nice to have
- Experience with enterprise security products , especially in one or more of:
- Identity security / AD security
- EDR/XDR, SIEM, or network security tools
- Operating systems (Windows Server/AD)
- Familiarity with MITRE ATT&CK and common attack patterns against AD and identity.
- Familiarity with Azure DevOps
- Experience working with bug trackers / case management tools.
- Prior experience in a customer-facing role (support, consulting, PS) is a strong plus.
- Hands-on experience with: Log analysis (e.g., Windows Event Logs, Sysmon, SIEM)
Conditions
- Opportunity to work closely with security researchers and product engineers on real-world attacks and defenses.
- Direct impact on customer satisfaction and product quality through high-value bug resolution.
- A collaborative environment that values learning, knowledge sharing, and continuous improvement .
- If you’re passionate about security, love solving hard problems, and enjoy being the person who figures out what actually went wrong for customers, we’d love to hear from you
- Why Join Semperis? You’ll be part of a global team on the front lines of cybersecurity innovation. At Semperis, we celebrate curiosity, integrity, and people who take initiative. If you’re someone who sees the glass as half full, embraces challenges as growth opportunities, and values a healthy balance between work and life—we’d love to meet you.
- **Semperis maintains office locations in several cities across the globe. Where the job description specifies a required location, candidates will follow our hybrid work model. This includes working up to three days per week and remotely the remaining days.
Other
- At Semperis, our mission is to be a Force for Good. Starting with being a great place to work. We believe that when people feel valued, supported, and empowered, they do their best work. That’s why we focus on creating an employee experience rooted in purpose, growth, and balance. Semperis has been recognized as one of America’s Fastest-Growing Cybersecurity Companies by the Inc. 5000, a DUNS 100 Top Startup to Work For, and a multi-year Inc. Best Workplace awardee.
- We are looking for a Identity Security Analyst who will focus on investigating and resolving customer-reported security bugs . In this role, you’ll sit at the intersection of security research, product engineering, and customer success : you’ll reproduce issues, analyze impact and root cause, coordinate fixes with R&D, and communicate findings back to customers in a clear, actionable way.
- This is a hands-on, technical position ideal for someone who enjoys debugging, incident-style investigations, and direct customer impact .
- Review and prioritize customer-reported security bugs (vulnerabilities, false positives, detection gaps, performance/coverage issues).
- Reproduce issues in lab environments using customer-provided data, logs, and configurations.
- Validate whether a bug is product defect, configuration issue, environmental limitation, or expected behavior.
- Analyze suspected vulnerabilities, misconfigurations, or detection gaps to determine impact, severity, and likelihood .
- Correlate product behavior with attack techniques (e.g., MITRE ATT&CK, AD / identity attacks, NTLM relay, Kerberos abuse).
- Perform log and event analysis (Windows Security / Sysmon / AD / LDAP / application logs) to understand bug context and side effects.
- Work closely with R&D / engineering teams to:
- Provide clear reproduction steps, data, and technical context.
- Propose mitigations and contribute to detection or logic fixes.
- Verify hotfixes and releases against customer scenarios.
- Track bugs through their full lifecycle to ensure timely resolution and high SLA adherence .
- Collaborate with Support, Customer Success, and SEs to:
- Explain root cause and resolution in customer-friendly language.
- Provide interim workarounds or configuration guidance when needed.
- Contribute to knowledge base articles, runbooks, and best-practice guides.
- Identify recurring patterns in customer bugs and propose long-term product or process improvements .
- Help refine internal monitoring, alerting, and testing for security-sensitive components.
- Contribute to test cases and validation criteria for new features from a security QA perspective.