At DraftKings, AI is becoming an integral part of both our present and future, powering how work gets done today, guiding smarter decisions, and sparking bold ideas. It's transforming how we enhance customer experiences, streamline operations, and unlock new possibilities. Our teams are energized by innovation and readily embrace emerging technology. We're not waiting for the future to arrive. We're shaping it, one bold step at a time. To those who see AI as a driver of progress, come build the future together. The Crown Is Yours As a Security Analyst I, you'll help protect the systems that power our products by monitoring, investigating, and responding to security events across both corporate and production environments. You'll operate at the center of detection and response, working across endpoints, identity systems, and cloud infrastructure. You'll build hands-on experience with modern technologies while strengthening your foundation in incident response and security operations. Your curiosity, attention to detail, and drive to solve problems will make a direct impact from day one. What you'll do - Triage and investigate security alerts across endpoints, identity systems, cloud environments, and production workloads. - Support response efforts for a range of security investigations, including account compromise, endpoint activity, and suspicious behavior in cloud, CI/CD, or production systems. - Collect and analyze relevant data (e.g., logs, system activity) to help scope incidents, identify impacted systems, and track activity across environments. - Escalate higher-risk or unclear activity, and support senior team members in ongoing investigations. - Execute containment or remediation actions as directed, and document findings clearly throughout the investigation lifecycle. - Support vulnerability and posture management efforts by validating findings and helping track remediation activities. What you'll bring - 2+ years of experience in cybersecurity, IT, or a related field. - Experience working in a security operations, monitoring, or incident response environment. - Familiarity with alert triage, and working within structured processes. - Basic understanding of identity and access concepts, endpoint and common attack patterns (e.g., phishing, credential misuse), and cloud or application environments - Strong analytical skills and attention to detail. - Clear written and verbal communication skills. - Ability to follow processes, collaborate with a team, and escalate when needed. Join Our Team We're a publicly traded (NASDAQ: DKNG) technology company headquartered in Boston. As a regulated gaming company, you may be required to obtain a gaming license issued by the appropriate state agency as a condition of employment. Don't worry, we'll guide you through the process if this is relevant to your role. The US base salary range for this full-time position is 80,000.00 USD - 100,000.00 USD, plus bonus, equity, and benefits as applicable. Our ranges are determined by role, level, and location. The compensation information displayed on each job posting reflects the range for new hire pay rates for the position across all US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific pay range and how that was determined during the hiring process. It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

• Provide operational support for IAM related administration tools • Application onboarding and role definitions • Recertification campaigns based on security and audit requirements • Handling end user escalations and support requests • Assist with improving the overall maturity of the internal IAM program • Analyze, design, and implement improvements to data quality and role decisions across integrated systems • Governance Initiatives, such as Entitlement Reviews and proper inventory management of identities • Enhancing IAM posture including human and non-human identities • Continually improve the IAM practice through platform enhancements, user process improvements and identity risk assessments • Analyze access requirements, system flows, and security policies to enforce a strict Least Privilege access model while balancing user experience • Design and implement scalable processes and/or technologies to improve the overall security posture of Addepar • Assisting with the development and refinement of Information Security Policies & Standards • Partner with the broader Security team to define the governance strategy and technical controls for Agentic AI Workflows, ensuring that autonomous agents and Non-Human Identities (NHIDs) operate within a secure, auditable, and least-privileged framework

• The Global Security Operations Center Analyst II plays a critical role in Compassion’s Incident Response operations by monitoring and analyzing large volumes of incoming information to identify incidents and risks relevant to the organization. • Maintain a personal relationship with Jesus Christ and serves as a consistent witness for Him. • Understands Christ’s mandate to protect children. • Reports any concerns of abuse, neglect or exploitation of children through Compassion’s internal reporting process and appropriately supports responses to incidents if they occur. • Analyzes physical security environments, observes activities, and collaborates with staff to gather operational insights. • Keeps current knowledge of approximately 30 program countries and understands incident types that may impact Compassion in those contexts. • Works scheduled shifts as part of a team providing 365 days/year monitoring and response support.

Role Description The cyber threat intelligence analyst will report to the executive director of intel operations and is responsible for supporting the administration and maintenance of the ISAC’s technical threat intelligence sharing environment (MISP), intelligence vetting, categorization, tagging, enrichment, and analysis of member-shared cyber threat intelligence (CTI) and other threat intel source data. This role is well-suited for a CTI analyst looking to build hands-on experience operating a threat intelligence platform in a collaborative ISAC environment. Main Duties - Malware Information Sharing Platform (MISP): - Support the configuration, day-to-day operation, and ongoing improvements of the RH-ISAC Malware Information Sharing Platform (MISP) under established standards and guidance. - Monitor all levels and types of member activities on the platform, applying established data quality standards, taxonomy guidance, and sharing controls. - Ensure appropriate handling, classification, and sharing of member-submitted intelligence in accordance with RH-ISAC trust principles and information sharing policy. - Enrich Member Data and Intelligence Gathering: - Enrich, vet, and maintain technical data, including indicators of compromise, shared from members and key stakeholders. - Work with member analysts to support intelligence sharing and assist with questions related to RH-ISAC intelligence and tooling. - Assist members in consuming RH-ISAC-generated data and intelligence, developing use cases to share with broader membership. - Use analyst tools and OSINT to provide members with more visibility of corroborated RH-ISAC intelligence. - Provide support for member analysts’ requests for assistance in threat hunt and investigations in a timely manner, as needed. - Participate in calls for committees, working groups, and special interest groups, as necessary, to gain information and member input on relevant topics. - Participate in RH-ISAC workshops and member visits to build relationships and become more acquainted with member needs and requirements. - Cross-Functional Collaboration: - Work collaboratively with RH-ISAC team members to achieve strategic and tactical objectives. - Encourage active, ongoing collaboration among peers to promote shared goals and initiatives. Qualifications - Experience performing "deep dive" analysis and correlation of log data from multiple sources including PCAP and forensic artifacts (some experience with cyber threat analysis associated with retail and hospitality sector threats preferred). - Previous experience as a cyber threat intel analyst (strong skills in tactical cyber threat intelligence preferred). - Solid understanding of advanced cyber threats targeting enterprises, along with the tools, tactics, and procedures involved in those threats. - Some experience with vulnerability research, exploit and/or malware investigation. - Solid understanding of behavioral-based threat models, including ATT&CK, Cyber Kill Chain, Diamond Model, etc. - Experience working with threat intel platforms and SIEM-type platforms (prior experience with MISP a plus). - Competence in communicating actionable threat intelligence to technical and operational-level audiences. - Experience writing Python (or PowerShell) scripts to parse datasets, automate routine intelligence tasks, and support existing system integrations. - SOC experience and/or security certifications a plus. - Excellent communication skills including oral briefing, training, and written analysis. - Detail-oriented, deadline-driven, adaptable, and dependable. - Personable, professional, and driven by a can-do spirit. - Genuine desire and willingness to support teammates. Location and Work Environment - Location: Remote - Work Environment: The employee is expected to maintain a dedicated, distraction-free home workspace with reliable internet connectivity. Regular collaboration will occur via video conferencing, chat, and other digital communication tools. - The role requires virtual meetings across multiple time zones. While the position offers flexibility, standard core working hours—based on you and your supervisor’s time zones—will be established and are expected for availability and team coordination. - Occasional travel is required. Physical Requirements - Prolonged periods of sitting at a desk and working on a computer. - Ability to use a keyboard, mouse, and monitor for extended periods. - Must be able to communicate clearly via video, phone, and written correspondence. - Occasional lifting of light objects (up to 10 lbs), such as laptops or office supplies. - Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Employment Type - Full-Time, Exempt Compensation and Benefits - Salary Range: $70,000 - $90,000 - The RH-ISAC offers full-time employees medical, dental, and vision insurance, a flexible savings account (FSA), a health saving account (HSA), and short-term disability plans. - The RH-ISAC also offers a 401k plan with a matching contribution if you make a “matched employee contribution” during the plan year. Company Description The RH-ISAC is an Equal Opportunity Employer. We are committed to creating a diverse and inclusive workplace and consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, veteran status, or any other legally protected status.