Senior Information Security Analyst

EDC is one of the world's leading nonprofit research and development firms. EDC designs, implements, and evaluates programs to improve education, health, and economic opportunity worldwide. Collaborating with both public and private partners, we strive for a world where all people are empowered to live healthy, productive lives.

EDC is seeking a Senior Information Security Analyst to help protect our systems, data, and people in a modern cloud-based and AI-enabled environment. This role is a hands-on, senior individual contributor position responsible for leading security operations, driving incident response, and advancing our overall security posture.

The Senior Information Security Analyst will own and continuously improve the end-to-end security investigation and response lifecycle, while partnering closely with engineering and IT teams to integrate security into cloud platforms, AI-enabled systems, and the software development lifecycle. This role plays a key part in strengthening security visibility, automation, and resilience across the organization.

As part of a small, collaborative technology team, you will bring both strategic insight and technical execution-helping to identify risks, implement scalable security solutions, and guide best practices across technical and non-technical stakeholders.

Senior Information Security Analyst will:

• Own and improve the end-to-end security investigation lifecycle to strengthen detection accuracy and overall security posture.
• Manage incident response, including triage, containment, and remediation.
• Support the implementation of security practices for AI-enabled systems (e.g., OpenAI, CoPilot, AWS Bedrock, and CrewAI).
• Partner with engineering teams to integrate security controls into CI/CD pipelines and provide guidance on secure development practices to support both security and delivery speed.
• Build and enhance security automation using scripting, APIs, SOAR platforms, and cloud-native tools.
• Support risk management activities, policies, assessments, and audits.
• Stay current on emerging threats and evolving security technologies, including AI-driven attack and defense techniques.

The position may require a criminal background check

This position requires educational achievement; business writing skills; demonstrable initiative, creativity, and flexibility; ability to work both independently and effectively in groups; and strong interpersonal & organizational skills.

Education:

• Bachelor's degree in information security or equivalent experience and 7+ years of related work experience.

Experience:

• Proven experience with security monitoring and incident response management.
• Experience administering SIEMs, endpoint security, and vulnerability management tools.
• Experience working with modern cloud environments (e.g., AWS, Azure) and common security platforms (e.g., Rapid7)
• Experience in automation using scripts, APIs, SOAR, or cloud-native tooling.
• Experience with DevSecOps concepts and CI/CD workflows.
• Familiarity with security considerations for AI/ML systems (e.g., OpenAI, CoPilot, AWS Bedrock, and CrewAI) and awareness of emerging AI-driven cyber threats.
• Effective communication skills and ability to work across technical and non-technical teams.

Preferred:

• Security certifications such as Security+, CISSP, CISM, or similar.
• Knowledge of security frameworks, compliance, or audit support.

Skills:

• Security operations, monitoring & threat detection
• Incident response, threat investigation & remediation
• SIEM management, log analysis & security tool administration (e.g., Rapid7)
• Endpoint security (EDR) & vulnerability management
• AI/ML and generative AI security fundamentals
• Security automation (scripting, APIs, SOAR)
• Cloud security & cloud-native security tools
• DevSecOps & secure CI/CD pipeline integration
• Network security fundamentals (firewalls, IDS/IPS, TCP/IP)

EDC affirms its steadfast commitment to uphold the highest standards of conduct, ensuring the protection of all individuals from misconduct, and maintains a zero-tolerance policy towards any violation of these rights. Safeguarding refers to the measures and practices put in place to protect individuals, particularly vulnerable groups, from harm, abuse, neglect, and exploitation.

EDC is a smoke-free workplace, and offers a supportive work environment, competitive salary, and excellent benefits.

Total Rewards:

EDC offers the following comprehensive benefits package for all eligible employees:

• Health, dental, and vision insurance
• Paid holidays
• Generous vacation benefits for full- and part-time employees
• Dependent Care Flexible Spending Accounts
• Pre-tax transport benefit
• Robust retirement plan with TIAA/CREF (Teachers Insurance and Annuity Association/College Retirement Equities Fund)
• Paid sick time and personal time annually
• Parental leave
• Employee assistance program

This position offers an anticipated annual base salary range of approximately $105,000 to $149,000. Salary offers are made based on market analysis and internal equity.

If you are a qualified individual with a disability or a disabled veteran, you have the right to request accommodation if you are unable or limited in your ability to use or access the EDC job opportunities website as a result of your disability. You can request reasonable accommodations by e-mailinghuman_resources@edc.orgor by calling617-618-2314.