Senior Associate, Security Operations

Senior Associate, Security Operations Andersen - 3.1 San Francisco, CA Job Details Full-time $115,000 - $130,000 a year 2 hours ago Benefits Paid holidays Health insurance Dental insurance 401(k) Paid time off Vision insurance Life insurance Qualifications Endpoint Security Incident management Threat detection & response Bachelor's degree Vendor relationship management Third-party risk management Vendor contract management Vulnerability management Due diligence AI Log analysis Escalation handling Incident response implementation

Full Job Description Application Notice:

We encourage you to apply thoughtfully by selecting one position that best matches your qualifications and interests. You may submit up to two active applications at a time. Please consider your location choice carefully—we recommend applying where you envision building your future.

The Firm:

Unlock the Boundless Horizons of Tax, Valuation, and Business Expertise with Andersen! At Andersen, we don't just offer a career; we provide a thrilling expedition into the world of Tax, Valuation, and Business Advisory. We stand as a trailblazing force with the most extensive global presence among professional services organizations. You'll embark on a journey that transcends the ordinary, working with extraordinary clients spanning every industry, regardless of their size, because at Andersen, we are free from independence-related constraints that may hinder other firms. But that's not all; we're more than just a company; we're a community that thrives on diversity, inclusivity, and collaboration. Our focus is on your development helping you flourish as leaders, colleagues and trusted advisors. We equip you with world-class education, immersive experiences, and invaluable mentorship to support your rise to the top. We believe in your potential and invest in it to build a legacy that extends beyond your wildest dreams. Bring your ambition, your entrepreneurial spirit, and your burning desire to be the best. Your future mirrors the limitless possibilities of our future. Join us at Andersen, and together, let's write the story of your success!

The Role:

Andersen's information security function is expanding, and this role sits at the operational core of that effort. The Senior Associate, Security Operations serves as the firm's internal hub for day-to-day security operations, owning the relationship with our managed detection and response provider, triaging and coordinating incident response, managing security vendor relationships, and executing client security due diligence. This role requires a candidate who is equally comfortable analyzing a threat escalation and drafting a vendor risk assessment. The Senior Associate reports to the Head of Security Engineering & Architecture, with dotted-line accountability to the Senior Manager, Governance, Risk & Compliance for client diligence and vendor risk. After-hours availability is a firm requirement of this role; high-severity incidents do not observe business hours. The Senior Associate, Security Operations can expect to: Incident Response Serve as the firm's internal incident response coordinator, working alongside the managed detection and response provider during active security events Execute, test, and continuously improve IR playbooks through regular tabletop exercises, lessons learned, and evolving threat intelligence Coordinate internal stakeholder communication during incidents, escalating at appropriate severity thresholds Produce post-incident reports that are clear, factual, and actionable for both technical and executive audiences MDR Partnership Serve as the primary day-to-day liaison to the firm's MDR provider; review threat reports, detection summaries, and alert trends, and hold the provider accountable to SLAs Triage MDR escalations - assess severity, validate findings, and initiate the appropriate internal response workflow Coordinate detection rule tuning and alert threshold adjustments to reduce false positives and improve signal quality Maintain a working knowledge of the MDR's detection logic and coverage gaps, flagging concerns proactively to the Head of Security Engineering & Architecture Client Due Diligence Execute responses to client security questionnaires and due diligence requests accurately and on time, drawing on the response library maintained by the Senior Manager, GRC Ensure questionnaire responses reflect the firm's current control posture and active certifications, escalating discrepancies or coverage gaps immediately Manage the intake and tracking of diligence requests, flagging new or unusual questions to the Senior Manager, GRC to drive updates to the approved response framework Security Operations Support Support the Head of Security Engineering & Architecture in day-to-day security operations, including vulnerability management tracking and remediation follow-up Manage operational relationships with security technology and service vendors, tracking contract terms, renewal dates, and SLA performance Partner with the Senior Manager, GRC on vendor risk assessments, ensuring reviews are completed on schedule and findings are tracked to remediation Maintain operational documentation including runbooks, contact trees, and escalation procedures Contribute to security awareness initiatives and serve as a resource for internal teams with security-related questions Identify and assess security risks introduced by AI-assisted attacks, including AI-augmented phishing, deepfake-based social engineering, and adversarial use of AI agents; incorporate AI threat scenarios into tabletop exercises and ongoing IR playbook updates Monitor for security exposure from internal use of unsanctioned AI tools and citizen developer platforms, coordinating with the Senior Manager, GRC to ensure shadow AI risks are tracked and escalated appropriately

The Requirements:

5+ years of experience in security operations, incident response, or a closely related discipline Bachelor's degree in Information Security, Computer Science, or a related field Demonstrated experience triaging and coordinating incident response, including hands-on involvement during active security events Ability to execute, test, and improve IR playbooks, evaluating their effectiveness and driving meaningful enhancements, not just following them Working familiarity with managed detection and response services, including how to interpret their outputs and manage them as an operational partner Experience managing vendor relationships in a security context, including SLA oversight and contract coordination Experience with client security due diligence, including responding to security questionnaires and third-party assessments Technical fluency across core security domains: endpoint security, network fundamentals, log analysis, and threat detection Proficiency with enterprise security tooling including SIEM, EDR, and ticketing platforms Working knowledge of AI-enabled threat vectors, including AI-augmented social engineering, adversarial AI agent activity, and the security risks introduced by citizen developer platforms and unsanctioned AI tool adoption within the enterprise Strong written communication skills; able to produce clear incident reports and professional client-facing responses under time pressure Availability and willingness to respond to high-severity incidents outside of business hours Preferred Relevant certification in incident handling or security analysis (e.g., GCIH, GSEC, GSOC) Background in professional services or consulting, where security posture directly impacts client relationships Familiarity with SOC 2 or

ISO 27001

control environments and how security operations intersect with compliance requirements Exposure to threat intelligence platforms or processes Familiarity with AI security risk frameworks such as NIST AI RMF or MITRE ATLAS, and practical exposure to assessing risks from AI agent deployments and employee use of generative AI tools Compensation and Benefits Our firm offers competitive base compensation, benefits package, and a discretionary employee bonus program for eligible employees based on individual and firm performance metrics per the defined program guidelines. For individuals hired to work in the United States, the expected salary range for this role is $115,000-$130,000; the actual salary offer can vary based upon employee qualifications.

Benefits:

Employees (and their families) are covered by medical, dental, vision, and basic life insurance. Employees are able to enroll in our firm's 401(k) plan upon hire. We offer paid time off, beginning at 160 hours annually and provides twelve paid holidays throughout the calendar year. For a full listing of benefit offerings, please visit https://www.andersen.com/careers/faqs.

Compensation:

In addition to competitive base compensation, our firm offers annual discretionary bonuses based on firm and individual performance, a discretionary long-term cash incentive program, and other forms of discretionary compensation that would be offered to the hired applicant in addition to their established salary range scale. Applicants must be currently authorized to work in the United States on a full-time basis upon hire. Andersen will not consider candidates for this position who require sponsorship for employment visa status now or in the future (e.g., H-1B status). Equal Opportunity Andersen Tax welcomes and encourages workforce diversity. We are an equal opportunity employer. Applicants and employees are considered for positions and are evaluated without regard to race, color, national origin, ancestry, religion, sexual orientation (including gender identity and gender expression), mental disability, physical disability, sex/gender (including pregnancy, childbirth, and related medical conditions), age, marital status, military status, veteran status, genetic information, or any other characteristic protected by federal, state or local laws or regulations. All qualified individuals, including those with criminal histories, will be considered in a manner consistent with the requirements of applicable state and local laws. Additionally, we make every effort to provide reasonable accommodations to qualified individuals with disabilities.