Threat Detection Analyst II

CLEAR is seeking a qualified Threat Detection Analyst II to join our Security Operations Center. In this role, you will work with partners from across the organization to investigate notable security events. By leveraging your expertise, you’ll drive efficiencies in threat analysis and safeguard sensitive data to protect what matters most.

What you'll do:

• Serve as the initial responder to notable security events and escalations through email, phone, and ticketing systems from across corporate networks, data centers, and cloud environments.
• Support the remediation of critical information security incidents by collaborating with incident response team members.
• Document and communicate findings effectively, escalate promptly, and maintain strong communication with internal and external stakeholders.
• Continuously evaluate and refine security processes, contributing to a dynamic and adaptive security posture.
• Stay up to date with the evolving IT threat landscape, including emerging security trends and threats.
• Demonstrate flexibility by adapting to diverse client infrastructures, scopes, and technologies.
• Contribute to creating and optimizing security alert content, enhancing threat detection capabilities.
• Mentor junior team members by providing training, guidance, and acting as an escalation point for complex notable events.
• Be prepared to fulfill on-call responsibilities and respond to notable events/incidents outside of standard working hours, as needed.
• Perform additional duties as required to enhance the organization's security posture.

How you'll measure success:

• Produce precise threat analysis
• Work effectively with other teams to enhance security posture
• Stay updated on emerging threats and security tools
• Improve workflows and standard operating procedures
• Introduce new threat detection alert logic
• Complete projects on time

What you're great at:

• Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience).
• 3-5+ years of experience in cybersecurity, with 2+ years in a security operations and analysis role.
• Certifications such as GCIH, GCIA are highly desirable.
• Strong knowledge of SIEM tools, EDR solutions, and other security technologies.
• Understanding of cybersecurity frameworks, such as MITRE ATT&CK, NIST CSF, or ISO 27001.
• Excellent analytical, problem-solving, and communication skills.

How You'll be Rewarded:

At CLEAR we help YOU move forward - because when you’re at your best, we’re at our best. You’ll work with talented team members who are motivated by our mission of making experiences safer and easier. Our hybrid work environment provides flexibility. In our offices, you’ll enjoy benefits like meals and snacks. We invest in your well-being and learning & development with our stipend and reimbursement programs. 

We offer holistic total rewards, including comprehensive healthcare plans, family-building benefits (fertility and adoption/surrogacy support), flexible time off, free OneMedical memberships for you and your dependents, and a 401(k) retirement plan with employer match. 

About CLEAR

Have you ever had that green-light feeling? When you hit every green light and the day just feels like magic. CLEAR's mission is to create frictionless experiences where every day has that feeling. With more than 27+ million passionate members and hundreds of partners around the world, CLEAR’s identity platform is transforming the way people live, work, and travel. Whether it’s at the airport, stadium, or right on your phone, CLEAR connects you to the things that make you, you - unlocking easier, more secure, and more seamless experiences - making them all feel like magic.

CLEAR provides reasonable accommodation to qualified individuals with disabilities or protected needs. Please let us know if you require a reasonable accommodation to apply for a job or perform your job. Examples of reasonable accommodation include, but are not limited to, time off, extra breaks, making a change to the application process or work procedures, policy exceptions, providing documents in an alternative format, live captioning or using a sign language interpreter, or using specialized equipment.

#LI-Hybrid

#LI-Onsite