Information Security Analyst

At WHOOP, we're on a mission to unlock human performance. WHOOP empowers members to perform at a higher level through a deeper understanding of their bodies and daily lives. 

WHOOP is seeking an Information Security Analyst to join our growing team, reporting to our Information Security Manager. As an Information Security Analyst, you will help protect our members' data and ensure trust in our products by identifying security risks, coordinating remediation efforts, and supporting day-to-day security operations. Success in this role requires continuous learning and adaptation to guard against ever-evolving security threats.

This is an excellent opportunity for a recent graduate, an early career cybersecurity professional, or someone with IT experience looking to advance their career in cybersecurity. 

This role is based in the WHOOP office located in Boston, MA. The successful candidate must be prepared to relocate if necessary to work out of the Boston, MA office. 

• Collaborate with Information Technology, GRC, and other teams to reduce risk across the organization.
• Identify security gaps in systems, applications, and processes.
• Communicate findings and recommendations to system owners and track remediation efforts.
• Assist in documenting risks, exceptions, and compensating controls.
• Ensure proper device inventory tracking and compliance with security policies.
• Support Okta SSO and SCIM integrations as well as user lifecycle management activities.
• Investigate phishing attempts and triage security alerts from SIEM, EDR, and other security tools.
• Participate in incident response efforts, including investigation, remediation, and documentation of security incidents.
• Contribute to a culture of security awareness and best practices.
• Stay abreast of emerging security trends, technologies, and regulatory requirements to ensure our security posture remains robust and compliant.
• Continuously evaluate and improve security tools and processes to address evolving security needs.
• Participate in an on-call rotation to provide 24/7 support for critical security incidents.

• Bachelor’s degree in Computer Science, Information Security, or a related field, or comparable industry certifications such as CompTIA Security , SSCP, or GSEC. Relevant professional experience in a technology or security-related role, such as IT support or system administration, may be considered in place of formal education. 
• Excellent problem-solving skills and the ability to work effectively under pressure.
• Ability to manage and prioritize multiple tasks and projects effectively.
• Strong communication and interpersonal skills, with the ability to convey complex security concepts to non-technical stakeholders.
• Strong documentation skills with a proven ability to track work in ticket systems such as Jira or similar platforms.

Interested in the role, but don’t meet every qualification? We encourage you to still apply! At WHOOP, we believe there is much more to a candidate than what is written on paper, and we value character as much as experience. As we continue to build a diverse and inclusive environment, we encourage anyone who is interested in this role to apply.

WHOOP is an Equal Opportunity Employer and participates in E-verify to determine employment eligibility.  It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.