Security Analyst

Role overview

WHOOP is building tools that help people improve performance and live healthier for longer. The security function plays a key part in that mission by safeguarding the company’s systems, data, and infrastructure so members can rely on a secure experience.

The company is hiring a Security Analyst to handle daily security operations and keep visibility across the security landscape. This person will partner with the internal security team and outside security providers to review alerts, coordinate response work, and make sure issues are handled quickly and methodically.

The right candidate is someone who pairs strong analytical thinking with disciplined execution and is comfortable collaborating with security and engineering teams to assess threats and strengthen processes.

What you will do

• Review and investigate security alerts from internal tools as well as escalations from external monitoring partners.
• Own the security operations ticket queue, making sure alerts and investigations are sorted, tracked, and closed out on time.
• Support investigations across endpoint, identity, cloud, and SaaS environments.
• Help with incident response tasks such as investigation, containment coordination, documentation, and post-incident review.
• Handle external threat intelligence and digital risk alerts involving brand misuse, impersonation, or leaked credentials.
• Work with security engineering teams and outside partners to improve detection quality and lower false positives.
• Spot missing logging, telemetry, or workflow gaps in the security tooling and investigation process.
• Contribute to threat hunting and investigations using SIEM data and other security platforms.
• Assist with vulnerability management by helping prioritize, triage, and track remediation work.
• Serve as a central intake point for security questions, alerts, and reports, ensuring items are routed into investigation or resolution.
• Run the phishing simulation program, including campaign management and follow-up awareness training for users with repeated failures.
• Look for ways to improve operations through better processes, automation, and thoughtful use of AI to speed up investigation, triage, and reporting.
• Keep incident response guides, investigation steps, and operational playbooks current.
• Take part in the security team’s on-call rotation when support is needed.

What we are looking for

• At least 3 years of experience in security operations, incident response, threat detection, or a similar cybersecurity role.
• Hands-on experience investigating suspicious activity or security alerts across endpoint, identity, cloud, or SaaS systems.
• Experience managing investigation workflows, ticket queues, or incident tracking systems.
• Working knowledge of SIEM tools, log analysis, and security monitoring systems.
• Understanding of attacker behavior and frameworks such as MITRE ATT&CK.
• Experience with tools such as EDR platforms, identity systems, cloud logging solutions, or related technologies.
• Familiarity with modern AI-enabled enterprise tools and awareness of the risks they can introduce.
• Background in improving security operations through automation, scripting, or responsible AI usage.
• Strong analytical and investigative ability to assess events and understand potential impact.
• Ability to coordinate across teams and communicate findings clearly to both technical and non-technical audiences.
• Strong written documentation skills for incident records, investigation notes, and operational procedures.
• Security certifications such as Security+, CySA+, SSCP, GSEC, or GCIH are considered an advantage.

Location and eligibility

This position is based in WHOOP’s Boston, MA office. The selected candidate must be willing to relocate if needed in order to work from that office.

WHOOP encourages candidates to apply even if they do not meet every listed qualification, and values character alongside experience. The company is an equal opportunity employer and uses E-verify to confirm work eligibility.

Compensation and benefits

The role offers a U.S. base salary range of $70,000 to $110,000 for this full-time position. Pay within that range is influenced by the role level, location, job-related skills, experience, performance, and relevant education or training.

In addition to base pay, the successful candidate will receive benefits and a substantial equity package. WHOOP’s compensation approach is intended to attract and retain strong talent through competitive salary, equity, and consistent pay practices. The company notes that these ranges may be updated in the future based on market conditions and business needs, and that most offers typically land toward the lower end of the range while total compensation depends on the candidate’s overall fit for the role.

Equal opportunity

WHOOP is committed to building a diverse and inclusive workplace and welcomes applicants from a wide range of backgrounds.