OPT Security Analyst Jobs
Security Analyst roles are a strong fit for F-1 OPT students with degrees in cybersecurity, computer science, or information systems. Most positions qualify as STEM OPT extensions, giving you up to 36 months of work authorization. Employers in this field include financial institutions, defense contractors, and technology companies.
See All OPT Security Analyst JobsOverview
Showing 5 of 254+ Security Analyst jobs
Have you applied for this role?
Have you applied for this role?
Have you applied for this role?
Have you applied for this role?
Have you applied for this role?
See all 254+ Security Analyst Jobs
Sign up for free to unlock all listings, filter by visa type, and get alerts for new Security Analyst roles.
Get Access To All JobsPosition Summary:
The Information Security Analyst Tier 1 serves as the essential first line of defense in our Security Operations Center (SOC). This role goes beyond simple monitoring; you will be responsible for the end-to-end triage, investigation, and detailed documentation of security incidents. Your daily workflow involves analyzing security alerts from various data sources—specifically leveraging SIEM, EDR platforms, and email security gateways—to identify and mitigate threats ranging from phishing to sophisticated compromised account investigations. A critical component of this role is proactive defense and operational excellence. You will actively contribute to the SOC’s evolution by developing and refining detection logic based on observed activity, automating manual tasks to increase operational efficiency and maintaining comprehensive security playbooks and incident reports. You will also handle user access requests to security tools, ensuring secure and appropriate identity management, as well as ensuring all investigative steps are logged for compliance and hand-off purposes. This position offers a dynamic environment for those who want to transition from traditional monitoring into Detection Engineering and Security Orchestration (SOAR). This role operates during standard business hours with no on-call rotation.
Qualifications:
Required Education:
Bachelor's Degree or equivalent combination of education and experience
Preferred Education:
Bachelor's Degree Bachelor’s Degree or higher in Cybersecurity, Computer Science, or a related technical discipline
Required Experience:
2+ years Experience involving information technology and/or information security
Preferred Experience:
3+ years Experience in an enterprise Security Operations Center or IT environment. Experience investigating compromised accounts, including analyzing authentication logs, sessions, and MFA events. Experience building or tuning detections within a SIEM (Splunk preferred) or EDR tool. Basic to Intermediate experience with Automation: Using Python, PowerShell, or SOAR tools to streamline repetitive tasks. Experience with Email Security Gateways and performing deep-dive phishing analysis (header analysis, attachment detonation, etc.). Experience managing User Access Requests and Identity and Access Management (IAM) principles. Experience writing hand-off notes, incident reports, and SOPs. Experience working with Cloud technologies.
Required Skills, Knowledge and Abilities:
Demonstrated understanding of the incident response lifecycle and common attack vectors. Ability to clearly communicate technical findings and security concepts to non-technical stakeholders. Proficiency with Windows, macOS, and Linux operating systems. Strong analytical mindset with a focus on 'why' an alert triggered, not just 'what' triggered. Ability to maintain a high level of discretion and professionalism.
Preferred Skills, Knowledge and Abilities:
Knowledge of Detection Engineering principles (e.g., mapping to MITRE ATT&CK). Familiarity with API-based integrations for security automation. Understanding of network protocols (TCP/IP, DNS, HTTP) and cloud security fundamentals. Understanding of HTTP/HTTPS protocols and response codes (e.g. 2xx, 3xx, 4xx, 5xx). Familiarity with security frameworks (NIST, CIS) and risk/compliance initiatives.
Additional Information:
In compliance with NYC's Pay Transparency Act, the annual base salary range for this position is USD $70,000.00 to USD $84,700.00. New York University considers factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience, education/training, key skills, internal peer equity, as well as, market and organizational considerations when extending an offer. This pay range represents base pay only and excludes any additional items such as incentives, bonuses, clinical compensation, or other items.
NYU aims to be among the greenest urban campuses in the country and carbon neutral by 2040. Learn more at nyu.edu/nyugreen.
NYU is an Equal Opportunity Employer and is committed to a policy of equal treatment and opportunity in every aspect of its recruitment and hiring process without regard to age, alienage, caregiver status, childbirth, citizenship status, color, creed, disability, domestic violence victim status, ethnicity, familial status, gender and/or gender identity or expression, marital status, military status, national origin, parental status, partnership status, predisposing genetic characteristics, pregnancy, race, religion, reproductive health decision making, sex, sexual orientation, unemployment status, veteran status, or any other legally protected basis. All interested persons are encouraged to apply at all levels.
Position Summary:
The Information Security Analyst Tier 1 serves as the essential first line of defense in our Security Operations Center (SOC). This role goes beyond simple monitoring; you will be responsible for the end-to-end triage, investigation, and detailed documentation of security incidents. Your daily workflow involves analyzing security alerts from various data sources—specifically leveraging SIEM, EDR platforms, and email security gateways—to identify and mitigate threats ranging from phishing to sophisticated compromised account investigations. A critical component of this role is proactive defense and operational excellence. You will actively contribute to the SOC’s evolution by developing and refining detection logic based on observed activity, automating manual tasks to increase operational efficiency and maintaining comprehensive security playbooks and incident reports. You will also handle user access requests to security tools, ensuring secure and appropriate identity management, as well as ensuring all investigative steps are logged for compliance and hand-off purposes. This position offers a dynamic environment for those who want to transition from traditional monitoring into Detection Engineering and Security Orchestration (SOAR). This role operates during standard business hours with no on-call rotation.
Qualifications:
Required Education:
Bachelor's Degree or equivalent combination of education and experience
Preferred Education:
Bachelor's Degree Bachelor’s Degree or higher in Cybersecurity, Computer Science, or a related technical discipline
Required Experience:
2+ years Experience involving information technology and/or information security
Preferred Experience:
3+ years Experience in an enterprise Security Operations Center or IT environment. Experience investigating compromised accounts, including analyzing authentication logs, sessions, and MFA events. Experience building or tuning detections within a SIEM (Splunk preferred) or EDR tool. Basic to Intermediate experience with Automation: Using Python, PowerShell, or SOAR tools to streamline repetitive tasks. Experience with Email Security Gateways and performing deep-dive phishing analysis (header analysis, attachment detonation, etc.). Experience managing User Access Requests and Identity and Access Management (IAM) principles. Experience writing hand-off notes, incident reports, and SOPs. Experience working with Cloud technologies.
Required Skills, Knowledge and Abilities:
Demonstrated understanding of the incident response lifecycle and common attack vectors. Ability to clearly communicate technical findings and security concepts to non-technical stakeholders. Proficiency with Windows, macOS, and Linux operating systems. Strong analytical mindset with a focus on 'why' an alert triggered, not just 'what' triggered. Ability to maintain a high level of discretion and professionalism.
Preferred Skills, Knowledge and Abilities:
Knowledge of Detection Engineering principles (e.g., mapping to MITRE ATT&CK). Familiarity with API-based integrations for security automation. Understanding of network protocols (TCP/IP, DNS, HTTP) and cloud security fundamentals. Understanding of HTTP/HTTPS protocols and response codes (e.g. 2xx, 3xx, 4xx, 5xx). Familiarity with security frameworks (NIST, CIS) and risk/compliance initiatives.
Additional Information:
In compliance with NYC's Pay Transparency Act, the annual base salary range for this position is USD $70,000.00 to USD $84,700.00. New York University considers factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience, education/training, key skills, internal peer equity, as well as, market and organizational considerations when extending an offer. This pay range represents base pay only and excludes any additional items such as incentives, bonuses, clinical compensation, or other items.
NYU aims to be among the greenest urban campuses in the country and carbon neutral by 2040. Learn more at nyu.edu/nyugreen.
NYU is an Equal Opportunity Employer and is committed to a policy of equal treatment and opportunity in every aspect of its recruitment and hiring process without regard to age, alienage, caregiver status, childbirth, citizenship status, color, creed, disability, domestic violence victim status, ethnicity, familial status, gender and/or gender identity or expression, marital status, military status, national origin, parental status, partnership status, predisposing genetic characteristics, pregnancy, race, religion, reproductive health decision making, sex, sexual orientation, unemployment status, veteran status, or any other legally protected basis. All interested persons are encouraged to apply at all levels.
See all 254+ OPT Security Analyst Jobs
Sign up for free to unlock all listings, filter by visa type, and get alerts for new OPT Security Analyst Jobs.
Get Access To All JobsTips for Finding OPT Sponsorship as a Security Analyst
Lead with your security clearance eligibility
Many Security Analyst roles require or prefer candidates eligible for U.S. security clearances. As an F-1 OPT student, you're generally not eligible for clearances, so target commercial sector roles at banks, cloud providers, and healthcare companies instead.
Emphasize STEM OPT eligibility upfront
Cybersecurity and information systems degrees typically qualify for the 24-month STEM OPT extension. Mention this early in your cover letter and interviews so employers understand you have up to 36 months of work authorization without H-1B visa sponsorship immediately.
Target employers with established OPT hiring tracks
Large financial institutions, healthcare systems, and technology companies hire Security Analysts regularly and have HR teams familiar with OPT work authorization. Smaller firms without dedicated compliance staff often decline OPT candidates due to unfamiliarity, not unwillingness.
Certifications compensate for experience gaps
CompTIA Security+, CEH, or AWS Security certifications signal job-readiness to employers who may hesitate on OPT candidates. Holding a recognized certification before applying reduces perceived hiring risk and strengthens your application against candidates with more work history.
Address your OPT timeline proactively
Prepare a clear one or two sentence explanation of your authorization status and end date. Employers unfamiliar with OPT often overestimate complexity. Framing it as straightforward employer registration through E-Verify removes a common objection before it becomes a reason to pass.
Build a portfolio of practical security work
Capture threat analysis reports, vulnerability assessments, or CTF competition writeups in a portfolio. Security Analyst hiring managers evaluate analytical judgment directly, and documented practical work strengthens your case significantly when your U.S. work experience is limited by OPT timing.
Security Analyst OPT: Frequently Asked Questions
Do Security Analyst jobs qualify for the STEM OPT extension?
Most Security Analyst positions qualify for the 24-month STEM OPT extension if your degree is in cybersecurity, computer science, information systems, or a related STEM field. The role itself must be directly related to your degree program. Confirm your degree's CIP code qualifies with your Designated School Official before applying, since the extension is tied to your field of study, not just the job title.
Will security clearance requirements block me from Security Analyst roles on OPT?
Many government-facing and defense contractor roles require U.S. security clearances that F-1 OPT students are not eligible for. This eliminates a portion of the Security Analyst market, but a substantial number of commercial sector roles at banks, cloud providers, healthcare systems, and SaaS companies carry no clearance requirement. Filtering your search to private sector employers opens up the majority of available positions. Migrate Mate lists OPT-eligible Security Analyst roles in the commercial sector.
Can I start a Security Analyst job before my OPT EAD card arrives?
No. You cannot begin working as a Security Analyst, or any paid role, until your EAD card is in hand and your OPT start date has been reached. Apply early and account for USCIS processing times of three to five months. Some students apply for OPT up to 90 days before their program end date to minimize the gap between graduation and when they can legally start work.
What happens to my OPT authorization if I get laid off from a Security Analyst role?
F-1 OPT students on post-completion OPT can accumulate up to 90 days of unemployment, or 150 days if on STEM OPT extension. A layoff counts toward that limit from your last day of employment. Report the job change to your DSO immediately and begin your search right away. Staying under the unemployment cap is critical to maintaining valid F-1 status.
Do Security Analyst employers need to do anything special to hire me on OPT?
For standard OPT, employers must enroll in E-Verify if they want to hire a STEM OPT extension student. For initial OPT, E-Verify is not required, but most large employers already participate. Your employer also needs to sign a training plan form as part of the STEM OPT extension application. Walking your HR contact through this process clearly, and early, significantly improves your chances of moving forward in the hiring process.