1

Phishing Email Analyst Jobs (NOW HIRING)

Phishing & Email Security: Knowledge of Google Admin Console for phishing email investigations ... Understanding of security log analysis, SIEM investigations, and security reporting best practices.

Phishing & Email Security: Knowledge of Google Admin Console for phishing email investigations ... Understanding of security log analysis, SIEM investigations, and security reporting best practices.

Identify and triage benign, spam, exercise, and malicious phishing email. * Perform binary artifact ... Coordinate and collaborate with Department teams as needed to analyze and respond to events and ...

Identify and triage benign, spam, exercise, and malicious phishing email. * Perform binary artifact ... Coordinate and collaborate with Department teams as needed to analyze and respond to events and ...

... analysis of email gateway log or reporting data in Excel or Access Experience with email security products (e.g. anti-phishing, email gateway security controls) Excellent written and oral ...

Phishing Analysts have a keen eye for detail and a natural ability to spot social engineering ... You will be responsible for reviewing suspicious emails, performing open-source research, and ...

next page

Showing results 1-20

Phishing Email Analyst information

See salary details

$31K

$73.3K

$130K

How much do phishing email analyst jobs pay per year?

As of Jul 13, 2026, the average yearly pay for phishing email analyst in the United States is $73,261.00, according to ZipRecruiter salary data. Most workers in this role earn between $52,500.00 and $87,000.00 per year, depending on experience, location, and employer.

What is the difference between Phishing Email Analyst vs Security Analyst?

AspectPhishing Email AnalystSecurity Analyst
CredentialsCertifications like CompTIA Security+, CEH often preferredCertifications like CISSP, Security+ common
Work EnvironmentFocus on email security, threat detection, and analysisBroader security responsibilities including network, system, and data protection
Employer & IndustryFinancial institutions, tech companies, cybersecurity firmsAll industries, including finance, healthcare, government
Search & Comparison IntentUnderstanding specific email threat rolesBroader cybersecurity roles and responsibilities

The Phishing Email Analyst specializes in identifying and mitigating email-based threats, focusing on phishing attacks and email security. In contrast, a Security Analyst has a broader scope, covering various security domains beyond email. Both roles require similar certifications and are vital in protecting organizational assets, but their focus areas differ significantly.

What are some common challenges faced by Phishing Email Analysts in identifying sophisticated phishing attempts?

Phishing Email Analysts often encounter challenges with increasingly sophisticated phishing campaigns that use advanced social engineering tactics and mimic legitimate communications. Attackers may employ tactics like domain spoofing, well-crafted language, and even personalized details to evade detection. Analysts must stay vigilant, continuously update their knowledge on emerging threats, and collaborate closely with IT security teams to refine detection protocols. Regular training and awareness of the latest phishing trends are essential to effectively differentiate between genuine and malicious emails.

What are Phishing Email Analysts?

Phishing Email Analysts are cybersecurity professionals who specialize in identifying, analyzing, and responding to phishing emails. Their primary role is to detect suspicious emails, investigate their origins and intent, and help protect organizations from email-based cyber threats. They often collaborate with IT and security teams to develop strategies and training programs that minimize the risk of phishing attacks. By analyzing trends and reporting incidents, they contribute to enhancing the overall security posture of a company.

What are the key skills and qualifications needed to thrive as a Phishing Email Analyst, and why are they important?

To thrive as a Phishing Email Analyst, you need strong analytical skills, knowledge of cybersecurity principles, and experience with threat detection—often supported by degrees in IT or cybersecurity and relevant certifications. Familiarity with email security gateways, SIEM tools, and phishing simulation platforms is typically required. Attention to detail, critical thinking, and effective communication are vital soft skills in this role. These competencies enable accurate identification and response to phishing threats, helping protect organizations from cyberattacks.
More about Phishing Email Analyst jobs
What cities are hiring for Phishing Email Analyst jobs? Cities with the most Phishing Email Analyst job openings:
What states have the most Phishing Email Analyst jobs? States with the most job openings for Phishing Email Analyst jobs include:
Infographic showing various Phishing Email Analyst job openings in the United States as of July 2026, with employment types broken down into 100% Full Time. Highlights an 100% In-person job distribution, with an average salary of $73,261 per year, or $35.2 per hour.
Information Security Risk and Compliance Analyst

Information Security Risk and Compliance Analyst

Capitol Federal Savings Bank

Topeka, KS

Full-time

Medical, Dental, Life, Retirement, PTO

Posted 2 days ago


Job description

Job Description:

Job Title: Information Security Risk and Compliance Analyst

Location: Topeka, KS

Employment Type: Full-Time

About Capitol Federal

At Capitol Federal Savings Bank, we are committed to helping individuals, families, and communities achieve financial success. With a long-standing tradition of integrity, service, and financial stewardship, we strive to deliver exceptional banking experiences to every customer we serve.

Our team members are the foundation of our success. We believe in fostering a supportive environment where employees can grow professionally, contribute meaningfully, and build rewarding careers.

Position Summary

The Information Security (IS) Risk and Compliance Analyst is a member of the Compliance and Risk Management team, working under the Information Security Officer Assistant Risk Manager with strong collaboration with the Information Technology (IT) Security department. This position monitors key system access changes, configurations, and controls to ensure compliance with policy and best practices. The position also oversees the process for employee reporting of suspicious e-mails. This position manages the Bank's social engineering and phishing testing program and provides user security training and awareness, including in person presentations and written communication. This position performs IS risk assessments and supports other reviews of security control effectiveness. This position requires a knowledge of IT and IS best practices to advise on and assist with the Bank's compliance with security and privacy requirements. As well, independent decision making on matters of moderate complexity and appropriate discretion in handling of confidential information is required.

Key Responsibilities

The responsibilities listed below represent the primary duties of this position. Additional duties may be assigned as needed.

  • Monitor key system access changes, configurations, and other access controls and advise IT personnel and business management on access policies and best practices.
  • Oversee process for researching and responding to employee and consumer reported suspicious e-mails, and assist with phishing e-mail escalation and handling. Maintain the Bank's phishing email platform.
  • Plan, perform, and monitor Bank social engineering and phishing exercises, including coordination with third-party provider and maintenance of internal phishing platform. Report exercise results to management.
  • Manage the Bank's security awareness training program, including developing training and awareness content, communicating with users in writing and verbally, and performing new employee training presentations.
  • Perform IS risk assessments, such as GLBA-required information security assessments and electronic banking risk assessment, and other reviews of security control effectiveness. As needed, work directly with IT and business management to assess and advise on IS risks and controls.
  • Participate in proactive team efforts to achieve departmental and company goals, including involvement in IS projects impacting the department's processes.
  • Perform other duties as assigned.
  • Must comply with current applicable laws, regulations and bank policies and procedures. Comply with all safety policies, practices and procedures. Report all unsafe activities to supervisor and/or Human Resources.

Required Qualifications

  • At least 5 years of related experience, preferably within IT audit, governance, risk, or compliance domains.
  • Additional industry certification related to information security or cybersecurity required (preferably: Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC).
  • Working knowledge of IS and cybersecurity best practices, risks, and controls is imperative.
  • Excellent analytical and organizational skills, with strong observational skills and attention to detail.
  • Strong written and verbal communication skills, with ability to work with wide variety of audiences (e.g., senior management, entry level employees, etc.).
  • Must have experience with Microsoft Office and similar applications for compilation and presentation of daily tasks. Intermediate Microsoft Excel experience required, including use of semi-complex functions. Microsoft VBA knowledge preferred.
  • A significant level of trust and diplomacy is required to be an effective subject matter expert in the position. In-depth dialogues, conversations and explanations with employees, direct and indirect reports, and with outside vendors of a sensitive and/or highly confidential nature is a normal part of the daily activities. Communications can involve motivating, influencing, educating and/or advising management and employees matters on significance related to information security.

Core Competencies

Successful candidates typically demonstrate the following competencies:

  • Customer Service
  • Communication Skills
  • Integrity and Professionalism
  • Problem Solving
  • Attention to Detail
  • Team Collaboration
  • Unconditional Ethics

Why Join Capitol Federal?

Capitol Federal offers employees a supportive workplace and opportunities for career growth.

Benefits may include:

  • Competitive compensation
  • Retirement and savings plans
  • Flexible Spending Accounts
  • Paid time off and holidays
  • Employee Assistance Program
  • Health, Dental, Life and Disability coverage
  • Parental Leave
  • Professional development opportunities
  • Career Advancement Pathways

CapFed is an equal opportunity employer.