This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description As a SOC Analyst at Bolster, you'll be part of a team protecting some of the world's largest brands from online phishing and scams. You’ll work in a highly dynamic environment reviewing threats and pursuing enforcement against some of the most sophisticated online scammers. This is a career-defining opportunity to join a small, nimble team and help shape key features of Bolster’s future product portfolio. - Review the latest threats targeting Bolster's customers and prospects. - Analyse online content across multiple platforms including web, social media, apps stores, website building platforms, etc. - Train Bolster's AI engine with based on the latest threats. - Investigate online activity and infrastructure to determine the fraud source. - Engage with hosting providers, registrars, registries, etc. to shutdown online threats. - Track ongoing enforcement efforts and content change. - Provide support and written responses to customer queries and requests via tickets. - Support sales and customer success teams with threat intelligence for customers and prospects. - Generate monthly and ad-hoc reports summarizing metrics and trends targeting customers and prospects. - Respond to security alerts to support issue resolution and minimize the impact of security events. - Research security issues and work with internal teams to find and track resolution. - Help manage and improve the issue-tracking process. - Create and enhance operational metrics to ensure the security programs are effective. Qualifications - Related experience, specifically in security operations, incident response and vulnerability management. - Experience with enterprise-wide technical solution implementations. - Knowledge of security, development, and network infrastructure. - Self-motivated and detail-orientated with the ability to work independently as well as function as part of a team. - Has an analytical mind for problem-solving, abstract thought, and offensive security tactics. - Has strong interpersonal skills (written and oral communication). - Security certifications are a plus. Requirements - $80,000 - $130,000 a year Benefits - Excellent medical, dental, and vision insurance. - Flexible time off + paid holidays. - Equity + 401(k) plan.

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description This role focuses on hands-on investigation of cybersecurity incidents, threat hunting, and forensic analysis across endpoint, network, and cloud environments. - Serve as an Incident Response (IR) Analyst supporting the Analysis on Demand (AoD) team. - Drive client meetings to discuss incident scope, investigative findings, and response updates while producing clear and detailed technical reports. - Conduct incident triage and verification, determine scope of compromise, perform threat hunting, and provide containment and remediation recommendations to customers. - Serve as a primary responder and point of contact during incident response engagements, supporting forensic investigation, analysis, and resolution of security incidents. - Work directly with clients to perform investigations, forensically analyze systems, and identify attacker activity across enterprise environments. - Analyze compromised systems to determine attack vectors, persistence mechanisms, lateral movement, and attacker techniques. - Identify attacker tools, tactics, and procedures (TTPs) and understand evolving threat actor behaviors. - Follow industry incident response best practices for containment, eradication, and recovery. - This position focuses on hands-on investigation and incident response, not alert monitoring or tier-1 SOC duties. - Must be familiar with incident response best practices and procedures. - Must have Windows-based incident response and computer forensics experience. - Must be familiar with network analysis, memory analysis, and digital forensics investigations. - Must possess excellent verbal and written communication skills, including the ability to present findings and recommendations to technical teams and leadership. Qualifications - Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or related field, or equivalent practical experience. - Certification in one or more of the following preferred: GCIH, GCFE, GCFA, GREM, GNFA. - Experience working within a Security Operations Center (SOC) or Incident Response team. - 3–5+ years of hands-on cybersecurity investigation experience, including host forensics, network forensics, threat hunting, or incident response. - Experience supporting incident response investigations including analysis, containment, and remediation actions. - Demonstrated experience investigating active security incidents or confirmed compromises, including determining attack scope and identifying persistence mechanisms. - Experience performing host-based investigations using endpoint artifacts, logs, and forensic evidence to determine attacker activity and timeline of compromise. - Experience analyzing systems across Windows, macOS, or Linux environments. - Experience working with enterprise security technologies including EDR, SIEM, firewalls, IDS/IPS, vulnerability scanning, and network security tools. - Experience using digital forensics tools such as Volatility, Rekall, KAPE, Autopsy, or similar frameworks. - Experience working with SIEM platforms such as Splunk, Microsoft Sentinel, Devo, or Sumo Logic. - Experience working with EDR platforms such as CrowdStrike Falcon, Microsoft Defender for Endpoint, SentinelOne, Carbon Black, FortiXDR, or similar solutions. - Strong experience using SIFT Workstation or similar digital forensics platforms. - Demonstrated knowledge of the MITRE ATT&CK Framework. - Ability to communicate investigative findings and strategies to technical teams, executive leadership, internal teams, and clients. - Strong analytical and problem-solving skills. - Comfortable working multiple concurrent investigations and adapting investigative approaches as new evidence is discovered. - Strong time management skills to balance multiple investigations and priorities. - Ability to lead clients in strategic conversations with strong executive presence. - Must be a U.S. Citizen residing in the continental United States. Requirements - Master’s degree in Cybersecurity, Computer Science, Information Systems, or related field. - Experience with Python, PowerShell, Bash, or other scripting languages. - Build scripts, tools, or methodologies to enhance incident investigation processes. - Experience conducting cloud incident response investigations (AWS, Azure, or GCP). - Experience with macOS and Linux forensic investigations. - Experience working with SOAR platforms such as D3 Security, Cortex XSOAR, Cortex XSIAM, or similar security automation platforms. - Experience using Velociraptor for endpoint artifact collection, threat hunting, and forensic investigations. - Experience using IRIS for incident tracking, case management, and investigation coordination. Benefits - Competitive medical, dental and vision coverage for employees and dependents. - 401k match which vests every payroll. - Flexible and remote friendly work environment. - Training opportunities to expand your skill set.

Join Cartwheel to help tackle the student mental health crisis! Cartwheel is an early-stage company building a new kind of mental health program for kids that puts schools at the center. We see our role as supporting school staff who see kids every single day. Instead of going around them, we collaborate with them. This means: - Earlier intervention - Higher student and family engagement in care - Better coordination among the trusted adults in a student’s life Kids shouldn't just aspire to get out of bed and drag themselves to class. They should be able to experience joy. They deserve to envision and build a life they’re excited to live. If you join Cartwheel, you’ll help make this vision a reality for millions of students across the country. We’re backed by top investors including A Street Ventures, Menlo Ventures, Reach Capital, General Catalyst, BoxGroup, and Able Partners, and we're looking for mission-driven teammates to join our team. ABOUT THE ROLE As a Government Relations Operations Manager, you'll be the operational backbone of Cartwheel's government relations team—the person who makes sure our GR strategy translates into impact at scale. You'll manage the systems, workflows, and intelligence that enable our GR executives and state-based team to influence education policy and secure funding for student mental health. This is a high-leverage operations role: you won't be in the room for every negotiation, but you'll ensure everyone in the room has what they need to succeed. You'll own the end-to-end operations of our government affairs function across 10+ states, from tracking legislative opportunities and coordinating lobbyist partnerships to producing monthly impact briefs that shape how policymakers think about student mental health. Role type: W2, Full-Time, Salaried position Salary range: Competitive base + meaningful equity Location: Remote with occasional travel (e.g. 1-2 times per quarter) WHAT YOU'LL DO - Government Relations Marketing: - Coordinate with Marketing, Data, Thought Leadership, and other teams as needed to develop monthly marketing impact briefs across our active states (combination of personalized and more generic briefs depending on state tier) - Manage distribution schedule and delivery of briefs to legislators, governor’s staff, agency staff, and community partners - Gather feedback on and continuously improve brief development process - Develop additional collateral as needed (e.g., two-pagers, slide decks, fliers) - Government Relations Team Knowledge Management: - Maintain centralized opportunity trackers with high accuracy - Maintain GR event trackers (conference calendars, attendee lists, follow-ups) - Maintain library of GR collateral (monthly briefs, two-pagers, talking points) - Maintain library of GR team onboarding and training materials - Government Relations Team Enablement: - Support field team members to maximize their effectiveness (prepare briefings, direct to appropriate collateral, maintain attendee lists, track follow-ups) - Plan and execute major GR team events including state events and road shows - Ensure all team members have access to up-to-date materials and intelligence - Note: This role is not expected to represent Cartwheel in the field on a regular basis, though may involve staffing some in-person events - Contract Lobbying Operations: - Track spend & outcomes for lobbyists in coordination with GR Executives - Support development of lobbyist ROI analyses and performance reviews - Develop standardized lobbyist onboarding materials and information sessions - Manage contracting, compliance, registrations, budget tracking, and ethical standards across all jurisdictions - Note: GR Account Executives own day-to-day lobbyist management and strategy; this role provides enablement - Research & Strategic Support - Conduct research and produce regular intelligence briefings covering notable developments across states, including emerging funding sources - Track KPIs across government activities (e.g., pipeline value, conversion rates) - Provide recommendations to VP of GR on state opportunity prioritization WHO YOU ARE Must have: - 5+ years experience in operations, project management, or chief of staff roles (government affairs, healthcare, education, or high-growth startup environment preferred) - Mission aligned: Genuinely passionate about expanding access to student mental health services. Enthusiastic about building in a startup environment. - Strong writer: You are an excellent writer who can distill quantitative and qualitative information into crisp briefs for a range of external and internal audiences. You've consistently received feedback that your writing is clear and easy to digest. - Eye for design: Able to partner closely with marketing colleagues to develop clear and compelling assets for government audiences (e.g., flyers, slide decks) - Exceptionally organized: You create systems, maintain trackers with precision, and never let balls drop. You like to build templates, create workflows, and document standard operating procedures. You're excited to coordinate across 10+ concurrent workstreams with competing deadlines. - Cross-functional coordinator: You know how to get buy-in, create clear frameworks, and keep teams aligned, including in situations where you don't have formal authority. - Technically proficient: You’re fluent in project management tools (e.g., Asana, Google Sheets) and CRM systems (e.g., Salesforce, Gong). You can learn new tools quickly. Preferred: - State government relations or public affairs background - Healthcare or education policy knowledge - Familiarity with lobbying compliance requirements - RFP/procurement process experience Please apply even if you don't meet all of the criteria. If your past experience doesn't perfectly match the job description, but you bring other relevant experience or skills, we'd still love to hear from you. You may be a great fit! WHY YOU’LL LOVE CARTWHEEL Our hope is that Cartwheel will be your best career decision! In addition to tackling one of the biggest challenges of our time, at a company well-positioned to do so, you'll have: - Mission-oriented and inclusive colleagues who will go to bat for you - Competitive compensation - Generous PPO medical, vision, and dental/ortho coverage - Life Insurance - Generous paid time off, including company closure from Christmas-New Years (12/25-1/1) - Paid holidays and sick leave - Paid parental leave - 401K with employer match - Meaningful equity ownership stake in Cartwheel - Flexible and remote role with regular in-person retreats - Annual learning stipend - Laptop Cartwheel is proud to be an equal opportunity employer. We embrace diverse backgrounds and perspectives and an inclusive work environment. We're committed to equal employment opportunity regardless of race, color, religion, ancestry, national origin, gender, sexual orientation, disability status, or veteran status. We participate in E-Verify. Please be prepared to provide acceptable documentation to verify your identity and work authorization Note: Please do not contact our Care, Provider, or Patient Services lines regarding job postings or application status. These teams support our patients and families and are not involved in the hiring process. For all recruitment-related questions, please email talent@cartwheelcare.org.

• Serve as the primary implementer for the new SIEM solution, configuring data ingestion and tuning the platform for optimal performance • Own the security observability platform on Grafana (Loki/LogQL, Prometheus/PromQL, Grafana Alerting; OTel for collection), including onboarding sources, parsing, enrichment, and alert routing • Own the "Content Engineering" lifecycle: Write, test, and tune detection rules and queries (LogQL, PromQL, SPL, KQL, SQL, etc.) to identify malicious activity with low false-positive rates • Partner with the Engineering team to ensure the new observability platform captures the right security telemetry and logs • Serve as the primary operator for security monitoring and initial incident triage, participating in the on-call rotation