Identity Security Analyst

At Semperis, our mission is to be a Force for Good. Starting with being a great place to work. We believe that when people feel valued, supported, and empowered, they do their best work. That’s why we focus on creating an employee experience rooted in purpose, growth, and balance. Semperis has been recognized as one of America’s Fastest-Growing Cybersecurity Companies by the Inc. 5000, a DUNS 100 Top Startup to Work For, and a multi-year Inc. Best Workplace awardee.

Role Overview

We are looking for a Identity Security Analyst who will focus on investigating and resolving customer-reported security bugs. In this role, you’ll sit at the intersection of security research, product engineering, and customer success: you’ll reproduce issues, analyze impact and root cause, coordinate fixes with R&D, and communicate findings back to customers in a clear, actionable way.

This is a hands-on, technical position ideal for someone who enjoys debugging, incident-style investigations, and direct customer impact.

Key Responsibilities

Bug Triage & Investigation

- Review and prioritize customer-reported security bugs (vulnerabilities, false positives, detection gaps, performance/coverage issues).

- Reproduce issues in lab environments using customer-provided data, logs, and configurations.

- Validate whether a bug is product defect, configuration issue, environmental limitation, or expected behavior.

Security Analysis

- Analyze suspected vulnerabilities, misconfigurations, or detection gaps to determine impact, severity, and likelihood.

- Correlate product behavior with attack techniques (e.g., MITRE ATT&CK, AD / identity attacks, NTLM relay, Kerberos abuse).

- Perform log and event analysis (Windows Security / Sysmon / AD / LDAP / application logs) to understand bug context and side effects.

Resolution & Fix Coordination

- Work closely with R&D / engineering teams to:

- Provide clear reproduction steps, data, and technical context.

- Propose mitigatio...