Product Security Analyst

• Career Development
• Competitive Compensation and Benefits
• Pay Transparency
• Global Opportunities

Learn More Here: https://www.dematic.com/en-us/about/careers/what-we-offer

Dematic provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

The base pay range for this role is estimated to be $93,750 - $143,750 at the time of posting. Final compensation will be determined by various factors such as work location, education, experience, knowledge, and skills.

What you will do in this role:

• Respond to security alerts by triaging events from SIEM/SOAR tools and driving timely investigation and remediation.
• Conduct security design and architecture reviews with cloud-native application teams.
• Assess cloud infrastructure and application configurations for security risks and compliance gaps.
• Translate security standard methodologies into actionable recommendations and mentorship for engineering teams.
• Support threat modeling and risk assessments during the software development lifecycle.
• Collaborate with developers, DevOps, and infrastructure engineers to advocate for secure patterns in code and infrastructure.
• Track and drive remediation efforts across teams-ensuring follow-through and accountability.
• Contribute to and maintain internal security standards, documentation, and review processes.

What we are looking for:

Must-Have Qualifications

• 4+ years of experience in cybersecurity, cloud security, or product/application security roles.
• Experience operating in a 24x7 incident response or cloud ops environment.
• Strong understanding of cloud platforms (GCP, AWS, or Azure), including IAM, networking, and compute services.
• Familiarity with common application security risks (e.g., OWASP Top 10) and mitigations.
• Strong interpersonal skills and ability to communicate effectively with technical and non-technical collaborators.
• Experience conducting or participating in technical security reviews or design discussions.
• Comfort working across teams and balancing multiple ongoing projects with changing priorities.

Nice-to-Have Experience

• Certified Cybersecurity Operations Analyst (CCOA), GCTD, GSOC, GMON, or similar industry certification.
• Familiarity with infrastructure-as-code tools (Terraform, CloudFormation, Pulumi, etc.).
• Experience with scripting or programming languages-Python preferred.
• Exposure to CI/CD security, containers, and DevSecOps practices.
• Experience with compliance frameworks (e.g., ISO 27001, NIST-CSF) or internal security controls review.

Skills & Attributes That Make You a Phenomenal Fit

• Hungry- Eager to learn, improve, and tackle big challenges.
• Humble- Comfortable with feedback and collaboration; values team success over ego.
• Resourceful - Emotionally intelligent and proficient in multi-functional teamwork.
• Discerning- You know how to assess complex systems and find the signal through the noise.
• Galvanizing- You can motivate and inspire others to prioritize and act on security.
• Collaborative- You partner well with engineers, not just pointing out issues but helping to solve them.
• Curious- You enjoy learning how things work, why they're built that way, and how they can be improved securely.
• Flexible - Able to thrive both independently and as a great teammate in a dynamic environment.

#LI-DP1