Security Analyst - Aptos

Remote $120k–$180k 29 days ago full-time quality 7.8/10
  • Respond to and triage alerts relating to phishing attacks, impersonation, scams, and brand abuse (e.g. Sublime, Doppel), escalating credible threats where appropriate.
  • Coordinate day-to-day operation of the bug bounty program, including communication with researchers, issue tracking, reporting, and internal follow-up.
  • Conduct user access reviews and review security settings, access configurations, and administrative controls across business systems, SaaS platforms, and internal infrastructure, tracking remediation where required.
  • Support recurring operational security workflows, including documentation, process tracking, and follow-up.
  • 2+ years of experience in a security-focused role, such as security operations, IAM, application security support, operational security, or a similar domain.
  • Familiarity with core security concepts including phishing, authentication, access control, least privilege, and common vulnerability classes.
  • Ability to manage multiple concurrent workflows with strong attention to detail and reliable follow-through.
  • Clear written communication and confidence coordinating across technical and non-technical stakeholders.
  • Self-motivated, organized, and comfortable operating independently in a remote-first environment with minimal supervision.
  • 100% insurance premium coverage for medical, dental, and vision for you and your dependents (US Employees)
  • Equipment of your choice
  • Flexible vacation time, 11 holidays, and floating company days off
  • Competitive Salary
  • Protocol Token Grants
  • 401k matching (US Employees)
  • Fun and inclusive in-person and digital events

Similar jobs

Before you apply

  • Legitimate employers never ask you to pay anything to apply or get hired.
  • Never share seed phrases or private keys. No real job needs them.
  • Do not install software ("test tasks", "trading tools", "video call clients") sent during hiring.
  • Check that the application page's domain really belongs to Aptos.