CrawlJobs Logo
Shopify Logo Shopify · IT - Administration

Senior Technical Security Analyst

· Job Posted January 03, 2026
Apply Position
Job Link Share

Job Description

As a Technical Security Analyst on the Trust team, you'll be a part of a highly adaptable group of folks who dig deep into security systems and workflows. You will collaborate with Engineers, Technical Program Managers, and cross-functional teams to help protect our merchants and company while supporting Shopify's rapid pace of development. You will be an essential member of our group of security professionals and a key player in operating and refining security controls that support Shopify’s programs, platforms, and products. As a Technical Security Analyst, you’ll be leveraging your expertise in technology and security, along with your knowledge of Shopify’s products, applications and infrastructure, to understand and manage risk. You will be developing, performing, and improving technical controls that are foundational components of Shopify’s security programs.

Job Responsibility

  • provide operational security guidance to ensure programs are running effectively, efficiently and without gaps
  • collaborate with cross functional teams and gather evidence for assessments, implementations, and use of new tools and workflows
  • automate and improve security workflows and tasks across the scope of our security programs
  • evaluate and instantiate the third parties, and build controls that balance security with speed
  • monitor Shopify’s current control stack and make recommendations to reduce security risk
  • lead and contribute to projects that build out and harden security at Shopify
  • contribute to the management and execution of cyclical controls within operational frameworks
  • collect evidence and samples to support audit activities and ensure compliance with relevant standards
  • supporting the development and implementation of new projects and initiatives, ensuring alignment with strategic goals
  • increase automation and reducing toil in existing controls, and finding new ways to protect Shopify against emerging risks
  • utilize data and key metrics to understand Shopify’s security program
  • develop and share security best practices

Requirements

  • an understanding of information security fundamentals, privacy and compliance standards
  • an understanding of cloud technologies, containerized environments and infrastructure as code
  • experience working with compliance teams or auditors and familiarity with compliance programs such as SOC, PCI, or SOX
  • experience building or maintaining controls and security safeguards for frameworks
  • experience using automation to simplify security and IT practices
  • familiarity with AI tooling, and how to integrate it to accelerate your workflows and augment your skills
  • ability to create and maintain trusted relationships
  • excellent communication skills, including technical breakdowns
  • passion for documenting strategy and approach
  • demonstrated impact in performing assessments
Shopify - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Senior Technical Security Analyst

8 matching positions

Cloud Security Senior Cyber Security Analyst

For this activity, we are looking for a Senior Cloud & On-Premises Infrastructur...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience designing and delivering complex cloud and on-premises infrastructures
  • Strong knowledge of security tools such as SSPM, DSPM, or CNAPP
  • Ability to write clear and structured technical documentation
  • Strong knowledge of SaaS environments (Google Workspace, ServiceNow, Workday, Salesforce)
  • Proven experience onboarding solutions in hybrid environments (cloud and on-premises)
  • Knowledge of security frameworks such as NIST, CIS, MITRE ATT&CK, and MITRE D3FEND
  • Knowledge of the CrowdStrike Falcon® Shield solution (formerly Adaptive Shield)
  • Strong expertise in cloud architecture (networking, compute, identity, storage, governance)
  • Cloud Certifications - Google, AWS / Azure
  • Engineering Graduate - preferably B.E. /B.Tech in IT or Computer Engineering
Job Responsibility
Job Responsibility
  • Configure the SSPM solution (SaaS)
  • Create a simple SSPM training material
  • Onboarding 4 SaaS applications = Google Workspace, ServiceNow, Workday, Salesforce on the SSPM
  • Define the SaaS hardening baseline
  • Configure the SSPM alerts
  • Produce a detailed SSPM training manual aligned with the customer environment
  • Collaborate with the customer SaaS team to integrate SaaS applications into the SSPM tool, ensuring security rules are correctly implemented
  • Collaborate with the customer SaaS team to configure alerts within the SSPM solution
  • Fulltime
Read More
Arrow Right
New

Senior Technical Analyst

WELCOME TO SITA At SITA, we keep airports moving, airlines flying smoothly, and...
Location
Location
Malaysia; Singapore , Kuala Lumpur; Singapore
Salary
Salary:
Not provided
sita.aero Logo
SITA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 5 years experience in deployment or support of application software implementing systems and modules with experience of multiple full lifecycle implementations
  • Provides maintenance and support of applications implemented
  • Understand SITA methodologies and practices
  • Drafts technical documentation that helps the maintenance of application
  • Escalates risks and issues that pose a significant impact to deliverables
  • Supports implementation of application and user acceptance testing
  • Understand the concept of IT security and its application to systems architecture
  • Good understanding of system integration and hardware
  • Expert understanding of Microsoft Windows Server operating system 2016 onwards, installation, troubleshooting, Windows clustering and domain controllers
  • Good Understanding of Messaging Platforms – MS MQ, Active MQ, Rabbit MQ, etc
Job Responsibility
Job Responsibility
  • Participate in User workshops to capture and understand customer requirements
  • Responsible for gathering, managing and analysing User/Technical requirements to design new application changes
  • Works with multiple stake holders during the project delivery and actively involved in all project meetings
  • Coordinates with the Implementation testing and support of application during delivery
  • Responsible for ensuring quality solutions are delivered to business users on time and budget
  • Contributes to the development of application and process best practices and using a consultative approach gets buy-in from all stakeholders
What we offer
What we offer
  • Flex Week: Work from home up to 2 days/week (depending on your team's needs)
  • Flex Day: Make your workday suit your life and plans
  • Flex-Location: Take up to 30 days a year to work from any location in the world
  • Employee Wellbeing: We have got you covered with our Employee Assistance Program (EAP), for you and your dependents 24/7, 365 days/year. We also offer Champion Health - a personalized platform that supports a range of wellbeing needs
  • Professional Development: At SITA, we believe growth fuels innovation. Our learning ecosystem offers access to world-class platforms and programs designed to help you thrive. From LinkedIn Learning, Microsoft's Enterprise Skills Initiative, and Airport Council International -available to all employees-to specialized solutions like Pluralsight for technology upskilling, Harvard Business Publishing for people leadership, Stanford for strategic development and many others, we align learning opportunities with your Development Plan and our business priorities. Your development journey is supported every step of the way
  • Competitive Benefits: Competitive benefits that make sense with both your local market and employment status
  • Fulltime
Read More
Arrow Right
New

Information Security Senior Analyst

Citi, a leading global bank with approximately 200 million customer accounts in ...
Location
Location
United States , Irving
Salary
Salary:
96400.00 - 144600.00 USD / Year
https://www.citi.com/ Logo
Citi
Expiration Date
June 28, 2026
Flip Icon
Requirements
Requirements
  • 3+ years of experience in Information Technology, Cybersecurity, brand protection, or fraud prevention
  • Demonstrated experience with the tools and resources available to conduct email and threat analysis
  • Strong technical and analytical expertise
  • Cross-functional understanding of email operations, security practices, and user experience
  • Familiarity with OSINT (Open Source Intelligence) techniques
  • Demonstrated ability to use approved AI/LLM tools responsibly, including prompt development, critical output validation, and documentation of analyst review in alignment with acceptable-use and governance requirements
  • Excellent written and verbal communication and presentation skills
  • Strong analytical, investigative, and problem-solving skills
  • Ability to organize and prioritize multiple ongoing tasks via efficient time management
  • Ability to work independently as well as in a team to achieve desired results
Job Responsibility
Job Responsibility
  • Actively monitor and research cyber threats, including phishing, that have a direct or indirect impact or threat on Citi, its workforce, or the Citi brand
  • Monitor a wide range of digital channels, including e-commerce platforms, social media, and app stores, for brand abuse
  • Develop and manage processes to track identified incidents to resolution
  • Initiate and manage takedown requests on various platforms for phishing sites and brand impersonation cases
  • Analyze email threats and manage associated controls
  • Identify automation opportunities for repetitive triage, enrichment, and documentation tasks
  • Use approved AI/LLM tools to assist with alert summarization, IOC extraction, and case narrative drafting while critically validating all outputs for accuracy, bias, and trustworthiness prior to operational use
  • Develop and manage weekly, monthly, quarterly, and annual metrics and reports on brand protection activities, trends
  • Triage information received from vendors and process it through defined internal workflows
  • Actively engage in liaison activities with internal stakeholders, intelligence communities, industry associations, and peer institutions
What we offer
What we offer
  • Medical, dental & vision coverage
  • 401(k)
  • Life, accident, and disability insurance
  • Wellness programs
  • Paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays
  • Fulltime
!
Read More
Arrow Right

Senior Analyst – Security Operations Center, Operations Technology

Are You Ready to Make It Happen at Mondelēz International? Join our Mission to L...
Location
Location
Philippines
Salary
Salary:
Not provided
remotivatejobs.com Logo
RemotivateJobs
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Information security, compliance and risk management
  • Security solutions and their applicability to Mondelēz International
  • Security strategies, awareness campaigns, policies/standards and governance
  • Communicating effectively with technical specialists, leaders and peers
  • Analytical and problem-solving abilities
  • Being a team player by supporting and leading to achieve common goals
Job Responsibility
Job Responsibility
  • Assess information security risks in line with internal policy and external best practices
  • Support the security of information and IT assets by testing security systems and applying security standards, policies, and procedures
  • Under the guidance of the global information security lead, implement cyber security technology and provide day-to-day business support
  • Manage third-party providers to ensure that any internal or third-party adhere to standards
  • Provide information security training to appropriate teams
  • Fulltime
Read More
Arrow Right

Senior Security Analyst

You will work as part of a 24/7 Global Security Operations Centre. The Senior SO...
Location
Location
United Kingdom
Salary
Salary:
Not provided
admiralgroup.co.uk Logo
Admiral Group Plc
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years’ experience as a Senior SOC Analyst within an internal SOC environment
  • Strong experience in a SOC environment, including handling high‑severity incidents
  • Deep understanding of attacker tradecraft across endpoint, identity, cloud, and email attack surfaces
  • Hands‑on experience with SIEM, EDR, and security investigation platforms
  • Proven threat hunting experience using dashboards, structured queries, and behavioural analytics
  • Experience tuning detections and implementing well‑governed exclusions without increasing risk
  • Ability to clearly document investigations, decisions, and outcomes
  • Experience using AI or machine‑learning features within security products
  • Familiarity with SOAR workflows and automation concepts
  • Knowledge of detection engineering concepts and use‑case lifecycle management
Job Responsibility
Job Responsibility
  • Act as senior escalation point for complex/high-severity alerts across SIEM, EDR, cloud and identity platforms
  • Lead end-to-end incident response (investigation, containment, eradication, and post-incident review)
  • Correlate alerts with threat intelligence and business context to assess risk and impact
  • Produce clear investigation summaries for technical and non-technical stakeholders
  • Collaborate closely with Incident Response during escalations
  • Use AI-enabled features across SOC tooling to accelerate analysis and investigations
  • Apply strong judgement to validate AI outputs and avoid automation bias
  • Provide feedback to improve tooling, workflows, and AI effectiveness
  • Support development of safe and consistent AI usage standards within the SOC
  • Conduct proactive threat hunting using queries, dashboards and behavioural analytics
What we offer
What we offer
  • Up to £3,600 of free shares each year after one year of service
  • 33 days holiday (including bank holidays) increasing to up to 38 days
  • Option to buy or sell up to an additional five days of annual leave
  • Financial & Mortgage Advice
  • 24-Hour Ecare
  • Cycle to Work Scheme
  • Flexible Working
  • Simply Health
  • Private Health Cover
  • Critical Illness Cover
  • Fulltime
Read More
Arrow Right

Email Security Senior Analyst (Vice President)

The Email Security Senior Analyst is responsible for providing expert support an...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent work experience
  • IS Certifications are desired (CISSP, GSEC, GCFA,GREM, Security+, CISA, CISM). Email vendor certifications a plus
  • Strong experience with configuration, administering, troubleshooting email routing and filtering in Exchange, Exchange Online, Proofpoint and other enterprise level email security gateways (such as inbound routes, whitelists, email firewall rules, spam/AV, logging/reporting, TAP, TRAP, domain rewrites, secure messaging and recipient verification)
  • Experience in analyzing domain email activity and deploying SPF, DKIM and DMARC authentication
  • Experience with enterprise phishing defense concepts and technologies
  • Minimum 3+ years working in security engineering or security operations role, with a focus on email security
  • Cross-functional understanding of email operations, security practices and the user experience
  • Highly technical and analytical expertise, with a proven deep background (preferred 5+ years’ IT experience in addition to cybersecurity) in technology design, implementation, and delivery
  • Strong understanding of and demonstrated experience with the tools and sources available to conduct email and threat analysis
  • Ability to identify and develop new processes to address cross-functional and cross-business requirements and implement
Job Responsibility
Job Responsibility
  • Provide expertise and experience to existing and future functions and projects focused on email threats and controls
  • Actively monitor and research cyber threats with a direct or indirect impact to the Citi brand
  • Analyze and provide oversight of analysis of email threats and controls
  • Provide leadership, solution design, and hands-on development support for email security controls
  • Develop and manage processes to track identified incidents to resolution
  • Develop weekly, monthly, quarterly, and annual metrics and reports as needed
  • Develop written analytical reports and give presentations on findings
  • Triage information received from vendors and process that information through previously defined internal workflows
  • Manage third party vendors to ensure proper delivery of services
  • Manage meetings with internal stakeholders to address open issues and identify process improvements
  • Fulltime
Read More
Arrow Right

Senior Technical Analyst

The Senior Technical Analyst is responsible for providing support for software-a...
Location
Location
United States , Cleveland
Salary
Salary:
Not provided
miraclesoft.com Logo
Miracle Software Systems
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science or Information Technology. In lieu of a degree, at least 7 years of experience in enterprise-wide software support
  • Preferred Certifications in ITIL, Microsoft, and/or Oracle
  • 4-6 years of experience in enterprise-wide software support with in-depth knowledge of software development methodologies
  • In-depth knowledge of enterprise-wide applications and software platforms
  • Experience with software-as-a-service (SaaS) and enterprise-wide systems
  • Experience in configuring and setting up various enterprise-wide applications
  • Experience applying security designs and principles to technology-based business solutions
  • Experience in database management and maintenance
  • Ability to develop custom queries using query and reporting tools
  • Knowledge of data management best practices and quality control processes
Job Responsibility
Job Responsibility
  • Provide support for software-as-a-service (SaaS) and enterprise-wide applications by developing and identifying design considerations and business impacts needed for configuration
  • Ensure accessibility of data for internal department planning and activities
  • Perform advanced configuration, setup, and updating of applications
  • Load data into established tables, fields, and system databases
  • Define governance standards and processes for data input, structures, and storage mechanisms
  • Build and produce reports that facilitate business management and staff decisions
  • Set up user access and train users on the applications
  • Recommend changes in applications development, maintenance, and system standards
  • Collaborate with cross-functional technical teams within the organization, to ensure the integration and interoperability of enterprise-wide systems
  • Liaise with client stakeholders and external vendors to provide necessary support for enterprise-wide applications
Read More
Arrow Right

Senior Analyst, Security Operations Center

The Senior Analyst, Security Operations Center (SOC) is a technical leader respo...
Location
Location
United States , Charlotte
Salary
Salary:
Not provided
brightspeed.com Logo
Brightspeed
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Associate's degree in Computer Science, Information Systems, Engineering, Technology, or related field or equivalent experience/training
  • Experience managing cases/incidents
  • Ability to think analytically
  • Robust creativity and problem-solving skills
  • Knowledge of technical systems and terminology
  • Proficiency in threat management analysis and dissemination
  • Proficiency in scripting languages
  • Advanced written and verbal communication skills
Job Responsibility
Job Responsibility
  • Lead incident response efforts for high-severity and complex security events, serving as the primary technical coordinator during major incidents
  • Act as escalation point for junior analysts, providing technical guidance and decision support in real time
  • Oversee daily SOC operations, including shift management, workload distribution, and quality assurance of investigations
  • Conduct post-incident reviews and facilitate lessons-learned sessions to drive continuous improvement
  • Mentor and train junior analysts to elevate team capabilities and strengthen overall SOC maturity
  • Perform advanced threat analysis, including APT detection, multi-stage attack correlation, and deep analysis of threat actor tactics, techniques, and procedures (TTPs)
  • Lead proactive threat hunting initiatives across cloud, network, identity, and endpoint environments
  • Design and implement advanced detection rules, correlation logic, queries, and dashboards in SIEM and SOAR platforms
  • Develop custom automation playbooks to accelerate investigation, triage, and containment processes
  • Evaluate and recommend enhanced SOC technologies, detection techniques, and analytic capabilities
What we offer
What we offer
  • Competitive compensation
  • Comprehensive benefits
  • Medical, dental, vision, and life insurance
  • Employee assistance program
  • 401K plan with company match
  • Voluntary benefits
  • Fulltime
Read More
Arrow Right