Security Analyst - Tier 2 (West Coast, 2nd shift)

7AI is on a mission to put swarming AI agents in the hands of defenders to offload non-human work, shift people up, and finally focus on achieving the security outcomes that teams have been searching for. We are seeking curious, detail-oriented, technically adept Security Analysts who thrive on solving complex, high-stakes puzzles and are deeply customer-obsessed to continue our mission of building the world’s first Agentic Security Platform.

What You’ll Do

• Analyze and validate investigations completed by the AI Agents for accuracy, completeness, and risk

• Correlate data from various data sources including cloud, endpoint, identity, network, etc. to understand the full picture of a malicious activity

• Investigate malicious activity that the 7AI Agents responded to and understand the complexity of the attack that was stopped including the risk that was prevented for customers

• Use our advanced AI Agents to hunt in customer environments to detect and remediate emerging threats, ultimately contributing to detections that will be folded back into the product

• Assist customers with ongoing threat monitoring, triage, and prioritization of security alerts as needed but especially during incidents to resolve threats and secure the environment

• Proactively identify potential threats and anomalies in customer environments by reviewing logs and malicious findings

• Utilize your supreme communication skills to engage with customers who vary in their level of technical depth and focus (from SOC analysts to CISOs)

• Architect processes while we build out this elite organization to scale the operation sustainably while maintaining consistent quality

• Collaborate with the Engineering and Product teams, providing feedback on the customer experience and assist in optimizing and tuning the AI platform

• Stay current with emerging cybersecurity trends, vulnerabilities, and new attack techniques, especially the field of AI-driven attacks

Required Qualifications:

• 2+ years of experience in cyber security operations

• Comfortable with on call weekend shifts as needed and working on a 4PM-Midnight PST shift

• Hands-on experience with investigating alerts and across multiple sources (endpoint, network, identity, email, cloud, etc.)

• Strong understanding of security monitoring tools (XDR, SIEM, IDS/IPS, IDP, etc.)

• Familiarity with log telemetry concepts

• Experience analyzing and investigating security alerts from multiple sources, including intrusion detection systems, network monitoring tools, and endpoint protection platforms

• Working knowledge of common attack techniques and frameworks (MITRE ATT&CK) and incident triage methodologies

• Strong analytical and problem-solving skills, with the ability to verify AI-driven analysis and make independent security decisions

• Data querying experience with SIEM querying technologies (SPL, KQL, FQL, SQL, etc) and familiarity with log / telemetry concepts

• Familiarity with Malware Analysis methods

• Great interpersonal skills with a service oriented mindset

• Proven track record of successfully collaborating in a team

Preferred qualifications:

• Prior experience in a Managed Services environment

• Incident Handling experience

• Relevant certifications: Security+, GSEC, GCIH