Position

Sr Business Process Analyst

What We Offer

This is an opportunity to join a growing security function at a company whose products are deployed at the edge of some of the most sensitive networks in the world. As the Sr Business Process Analyst, you will be the operational backbone of the security team - with direct influence on how the program runs and matures. You will work closely with the Security Engineering Manager and a small, high-trust team, and your work will have a visible impact on product quality and customer trust.

What You Will Do

• Lead first-response investigation on security incidents: reconstruct what happened, identifyscope, contain where possible, and produce clear summaries for leadership and affected stakeholders
• Triage and score incoming CVEs using CVSS and contextual risk assessment - ensuring nothing ages past SLA without a documented decision
• Maintainthe vulnerability tracking backlog in Jira - clear ownership, accurate status, SLA compliance
• Respond to customer security questionnaires, RFP security sections, and audit evidence requests - accurately and on time
• Develop and maintaina library of standard security responses and supporting evidence for common customer questions
• Support pre-sales security conversations alongside the Security Engineering Manager
• Produce regular security metrics and status reporting for engineering leadership
• Maintain internal security knowledge base, runbooks, and process documentation
• Support compliance evidence collection for SOC2, ISO 27001, and related frameworks

Who You Are and What You Bring

• minimum of 5 years of related experiencewith a Bachelor's degree in Computer Science or technical discipline; or 3-4 years and a Master's degree; or equivalent work experience.
• Significant experiencein a security operations, threat analysis, or intelligence role - you have seen real threats in real environments
• Strong understanding of network protocols, traffic analysis, and adversary behaviour
• Experience with SIEM, IDS/IPS, and security monitoring platforms - Splunk, Elastic, or equivalent
• Ability to triage and score vulnerabilities with contextual judgment, not just CVSS lookup
• Clear, precise written communication - incident reports, customer responses, and executive summaries all need to land with different audiences
• Sound independent judgment - you can prioritisewithout being told what matters most
• Calm under pressure - you have worked in environments where the pace is high and the stakes are real
• Collaborative by default - this role succeeds by making the whole security team more effective

Desired But Not Required

• Familiarity with CVE/NVD processes, responsible disclosure, and vulnerability lifecycle management
• Security research and presentation
• Exposure to compliance frameworks - SOC2, ISO 27001, NIST
• Scripting capability for log analysis or workflow automation (Python, Bash)
• Experience communicating security findings or posture to senior non-technical stakeholders
• Prior involvement in customer-facing security discussions, audits, or RFP responses
• Relevant certifications: CISSP, GCIA, GREM, Security+, or equivalent

Please note that we are unable to provide visa sponsorship for this position. This includes, but is not limited to, work visas, employment-based visas, or residency sponsorship. Candidates must have valid work authorization in the United States at the time of application. Visa applications of any kind will not be considered.

Digi International offers a distinctive Total Rewards package including a short-term incentive program, new hire stock award, paid parental leave, open (uncapped) PTO, and hybrid work environment in addition to our competitive medical, health & wellbeing and compensation offerings.

The anticipated base pay range for this position is $95,000 - $149,000. Pay ranges are determined by role, job level and primary job location. The range displayed reflects the reasonable range we anticipate paying for this position and reflects the cost of labor within several U.S. geographic markets. The specific salary offered within the range will depend on various factors including, but not limited to the candidate's relevant and prior experience, education, skills, and primary work location. It is not typical for an individual to be hired at or