Learn more at diligent.com or follow us on LinkedIn and Facebook

Position Overview Join Diligent’s world-class Security Operations team, where your expertise directly safeguards our people, data, platforms, and global operations. As a Staff Security Operations Analyst , you will operate on the front lines of defense — detecting, analyzing, and responding to advanced threats that impact millions of users worldwide.

Our mission is clear and vital: protect the confidentiality, integrity, and availability of Diligent’s information assets . In this high-impact role, you’ll lead complex investigations, drive detection engineering, and elevate our incident response capabilities across a diverse and fast-evolving environment.

You will partner closely with top security professionals, product teams, and engineering leaders — influencing security strategy, advising on threat trends, mentoring analysts, and shaping how Diligent defends its systems, products, and people.

Artificial Intelligence and automation are core to our transformation, and you will play a key role in integrating AI-driven insights, detection, and response workflows into our SecOps ecosystem.

Key Responsibilities Incident Response & Investigation

• Lead end-to-end investigations and incident response for complex security events, ensuring timely containment, remediation, and root cause analysis.
• Produce high-quality documentation, incident timelines, and lessons learned to strengthen long-term resilience.
• Act as a senior responder and technical escalation point for high-severity incidents.

Threat Detection, AI-Driven Insights & Threat Hunting

• Collaborate with Managed Detection & Response partners to monitor, triage, and investigate alerts targeting critical systems and data.
• Leverage AI-driven analytics (LLMs, anomaly detection models, ML-based correlation) to enhance detection tuning and investigation efficiency.
• Conduct proactive threat hunting using intelligence sources, behavioral analytics, and advanced log analysis.

Security Engineering & Tooling

• Evaluate, implement, and optimize security tools (EDR, SIEM, CNAPP, vulnerability management, AI-assisted detection platforms).
• Work with engineering and product teams to embed scalable detection capabilities into cloud-native architectures.
• Lead cross-functional initiatives to design and automate security controls that improve Diligent’s security posture.

Leadership, Influence & Collaboration

• Shape technical direction for the global Security Operations team and contribute to security strategy.
• Mentor junior and mid-level analysts; participate in hiring, training, and capability development.
• Influence operational guidelines, runbooks, and best practices for detection, triage, and incident response.

Required Experience & Skills

• 7+ years of experience in information security, or equivalent combination of education, technical training, and operational experience.

• 3+ years leading hands-on security investigations and incident response within a dedicated SOC/IR team.

• Strong verbal and written communication skills, with the ability to communicate complex technical topics to diverse audiences.

• Proven decision-making skills with the ability to prioritize, act decisively, and perform under pressure.

• Deep expertise across Security Operations technologies: EDR, SIEM, CNAPP, vulnerability scanners, and cloud-native security controls.

• Demonstrated excellence in log analysis, threat hunting, and analyzing attacker behaviors and TTPs.

• Experience leading multi-stakeholder security initiatives across engineering, IT, product, and business teams.

• Scripting experience (PowerShell, Bash, Python, SQL) for automation, enrichment, and data analysis.

• Working knowledge of security frameworks: ISO 27001, NIST 800-53, COBIT, MITRE ATT&CK, etc.

• Strong understanding in one or more of the following domains:

• Threat actors, motivations, TTPs, and intelligence sources.

• Networking fundamentals (TCP/IP, DNS, VPN, firewalls, IDS/IPS).

• Identity, authentication & authorization (AD, IDPs, OIDC, OAuth, SAML, MFA, RBAC).

• Cloud technologies (VMs, containers, serverless, roles/policies, APIs).

• Experience in at least one of the following:

• Application security, cloud security, or SOC operations.

• Building/tuning SIEM detections and alerting workflows.

• Writing runbooks/playbooks for investigation and IR.

Preferred Experience & Skills

• Experience handling incidents in public cloud environments (especially AWS) and modern SaaS product architectures.
• Advanced security certifications such as GCFA, GCFR, GCIH, GEIR, CCSP, AWS Security Specialty, or equivalent.
• Exposure to AI/ML-based security tooling, automated response systems, or LLM-assisted SecOps workflows.

What Diligent Offers You

• Creativity is ingrained in our culture. We are innovative collaborators by nature. We thrive in exploring how things can be differently both in our internal processes and to help our clients
• We care about our people. Diligent offers a flexible work environment, global days of service, comprehensive health benefits, meeting free days, generous time off policy and wellness programs to name a few
• We have teams all over the world. We may be headquartered in New York City, but we have office hubs in Washington D.C., Vancouver, London, Galway, Budapest, Munich, Bengaluru, Singapore, and Sydney.
• Diversity is important to us. Growing, maintaining and promoting a diverse team is a top priority for us. We foster and encourage diversity through our Employee Resource Groups and provide access to resources and education to support the education of our team, facilitate dialogue, and foster understanding.

Diligent created the modern governance movement. Our world-changing idea is to empower leaders with the technology, insights and connections they need to drive greater impact and accountability – to lead with purpose. Our employees are passionate, smart, and creative people who not only want to help build the software company of the future, but who want to make the world a more sustainable, equitable and better place.

Headquartered in New York, Diligent has offices in Washington D.C., London, Galway, Budapest, Vancouver, Bengaluru, Munich, Singapore and Sydney.  To foster strong collaboration and connection, this role will follow a hybrid work model. If you are within a commuting distance to one of our Diligent office locations, you will be expected to work onsite at least 50% of the time. We believe that in-person engagement helps drive innovation, teamwork, and a strong sense of community.

We are a drug free workplace. Diligent is proud to be an equal opportunity employer. We do not discriminate based on race, color, religious creed, sex, national origin, ancestry, citizenship status, pregnancy, childbirth, physical disability, mental disability, age, military status, protected veteran status, marital status, registered domestic partner or civil union status, gender (including sex stereotyping and gender identity or expression), medical condition (including, but not limited to, cancer related or HIV/AIDS related), genetic information, or sexual orientation in accordance with applicable federal, state and local laws. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See also Diligent's EEO Policy and Know Your Rights. We are committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, you may contact us at recruitment@diligent.com.

To all recruitment agencies: Diligent does not accept unsolicited agency resumes. Please do not forward resumes to our jobs alias, Diligent employees or any other organization location. Diligent is not responsible for any fees related to unsolicited resumes.