Security Analyst (Email and Phishing)

Overview

We’re a team of ex-Google engineers who built some of the largest defensive platforms on the planet — Safe Browsing and reCAPTCHA. Now, we’re striking out on our own to tackle an even bigger challenge: stopping the new wave of adversarial AI attacks already hitting organizations today.

We're going after a $5B+ market, ripe for disruption. Traditional detection methods are too slow to keep up. Adversaries are using AI to craft customized, high-evasion attacks — and old-school rules-based systems don’t stand a chance.

The Role

We’re looking for a Security Analyst to join our growing team and help protect our customers by analyzing threats and providing actionable insights. You’ll work directly with our product and engineering teams to improve detection capabilities and ensure our customers stay ahead of attackers. This is a high-impact role where you’ll wear multiple hats: conducting investigations, supporting customer security teams, and shaping how AegisAI builds and operates security at scale.

We’re looking for a mid-level Security Analyst who lives and breathes email security. You’ll be on the front lines defending customers from modern phishing, BEC, and malware threats, while also contributing to our product’s evolution.

This role goes beyond triaging alerts:

• You’ll investigate and reverse-engineer real-world email attacks.

• Identify patterns and trends in attacker behavior and translate those insights into improvements for our detection systems.

• Collaborate with engineering to shape how our AI models adapt to emerging threats.

• Produce written reports and analysis that we can share publicly, helping raise the bar for email security as an industry.

• Investigate Threats: Analyze suspicious emails, attachments, and links to determine maliciousness and patterns of attack.

• Customer Enablement: Act as a trusted security partner for our customers, helping them understand and improve their email security posture.

• Data-Driven Insights: Generate reports and dashboards that highlight trends and drive actionable recommendations.

• Improve Detection: Partner with product and engineering to refine detection logic and feed intelligence into our AI models.

• Playbook Development: Document and improve processes for investigation, escalation, and communication.

• Threat Intelligence: Stay ahead of emerging email threat tactics and translate them into practical defenses.

Who You Are

• 5+ years of hands-on experience in cybersecurity with a strong focus on Phishing, Social Engineering, and Email-borne malware.

• Proven track record of operational excellence, from triaging alerts to managing complex investigations.

• Strong analytical skills — able to connect dots across multiple incidents and uncover patterns in attacker behavior.

• Comfort with reverse engineering and malware analysis, both static and dynamic.

• Knowledge of attacker frameworks such as MITRE ATT&CK and modern phishing TTPs.

Our culture

• Flat, flexible, and fast.

• You’ll own your decisions.

• You’ll have clear KPIs for success — but how you get there is up to you.

• Development cycles are measured in days, not weeks.

• If you’re hungry to build AI that fights AI, and want to work with a team that moves at the speed of the real world, come talk to us.