Code Metal is redefining code translation for mission-critical industries, helping partners move more quickly and reliably from algorithm to silicon. Our platform accelerates deployment of DSP, RF, communications, and embedded signal processing algorithms onto heterogeneous compute targets, including GPUs, FPGAs, ASICs, and edge SoCs. We support automotive, aerospace, defense, and semiconductor partners deploying complex algorithms onto constrained hardware with speed and rigor.

About the Role

We are seeking a mid-level Security Analyst to join our team. This role will focus on monitoring, analyzing, and improving the security posture of Code Metal’s enterprise and enclave environments.

In this role, you will work closely with engineering, DevOps, and leadership to detect threats, investigate security events, and escalate incidents as needed. You will help operationalize security across the organization while supporting vulnerability management, compliance initiatives, and continuous security improvement.

Core Responsibilities

• Monitor and analyze alerts from SIEM, EDR, and other security tools to detect suspicious or malicious activity.
• Investigate security events and incidents, perform triage, and escalate issues to appropriate teams for remediation.
• Conduct threat hunting activities to proactively identify potential risks and anomalous behavior.
• Support vulnerability management processes, including scanning, analysis, prioritization, and tracking remediation efforts.
• Assist in the execution and improvement of incident response procedures and runbooks.
• Analyze system, network, and audit logs across enterprise and enclave environments.
• Support endpoint security controls, including application whitelisting and privilege/elevation management.
• Participate in phishing simulations and user awareness initiatives to improve organizational security posture.
• Collaborate with DevOps and engineering teams to communicate findings and support remediation efforts.
• Assist with compliance activities, including evidence collection and control validation.
• Maintain clear and accurate documentation of incidents, processes, and standard operating procedures.

Required Qualifications

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field, or equivalent professional experience.
• 2+ years of experience in a security analyst or similar role.
• Experience working with security tools such as SIEM, EDR, and vulnerability management platforms.
• Strong understanding of common attack techniques, threat detection, and incident response workflows.
• Experience analyzing logs and correlating events across multiple data sources.
• Familiarity with endpoint security controls, including application whitelisting and privilege management.
• Ability to assess and prioritize security alerts and escalate appropriately.
• Strong communication and documentation skills.
• Eligible to obtain and maintain an active U.S. Top Secret security clearance

Preferred Qualifications

• Experience working in both enterprise and secure (e.g., enclave or regulated) environments.
• Familiarity with compliance frameworks such as SOC 2, NIST, or FedRAMP.
• Experience with threat hunting methodologies and tools.
• Knowledge of cloud security principles (AWS, Azure, or GCP).
• Experience conducting or supporting phishing simulations and security awareness programs.
• Relevant certifications (e.g., Security+, CySA+, GCIH, or similar).
• Active U.S. security clearance (Secret or Top-Secret)

• Pay depends on experience, but we strive to be at the upper end of the salary range
• Health care plan with 100% premium coverage, including medical, dental, and vision.
• 401k with 5% matching.
• Paid Time Off (Uncapped Vacation, plus Sick & Public Holidays).
• Flexible hybrid or remote work arrangement.
• Relocation assistance for qualifying employees.