Associate Security Analyst

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or a related field, or equivalent hands on experience through internships, labs, projects, or prior work.
• 0 to 2 years of experience in information security, information technology, or a related technical field.
• Basic knowledge of information security concepts, principles, and best practices, including core concepts such as least privilege, authentication, and encryption.
• Familiarity with security controls, standards, and technical environments commonly used to support business operations.
• Ability to identify, analyze, and document security risks, issues, and findings.
• Exposure to security, systems, networking, cloud, or infrastructure concepts through education, certifications, internships, or work experience.
• Basic technical and analytical skills, including troubleshooting, problem solving, and the ability to learn new technologies, processes, and security practices in a changing environment.
• Effective written and verbal communication skills, with the ability to collaborate across teams.

Nice To Haves

• Entry level certifications such as CompTIA Security+, Network+, CCNA, Linux+, or equivalent foundational cloud or security certifications.
• Exposure to cloud platforms such as AWS, Azure, or GCP.
• Familiarity with containers through academic, lab, or personal project experience.
• Basic scripting experience, with Python preferred and Bash or similar acceptable.
• Awareness of identity technologies such as Active Directory, SSO, SAML, and OAuth.
• Understanding of system or infrastructure hardening concepts.
• Exposure to compliance or regulated environments.

Responsibilities

• Assist in the development, implementation, maintenance, and documentation of information security policies, standards, procedures, controls, and baseline configurations aligned with industry best practices such as NIST and CIS.
• Support security functions intended to protect the organization’s systems, applications, infrastructure, data, and operations.
• Assist in securing modern infrastructure, including cloud platforms and containerized environments.
• Learn and contribute to container security practices, including image scanning, runtime protections, and workload hardening.
• Identify, analyze, document, and help address security risks, vulnerabilities, issues, findings, and control gaps across systems, applications, and infrastructure.
• Collaborate with internal teams, senior analysts, and engineers to support remediation efforts, compensating controls, and the adoption of secure practices.
• Assist with monitoring, testing, and maintaining security controls, related processes, and corporate systems in alignment with established policies and controls.
• Support compliance, audit, and regulatory activities, including internal and external audit readiness, through documentation, evidence gathering, and control validation.
• Contribute to security automation efforts, including scripting and tooling, primarily in Python, and support identity and access management processes such as SSO, IAM, and role based access controls.
• Stay current on information security practices, technologies, certifications, and emerging threats, and perform other related duties as assigned.

Benefits

• Medical, dental, vision and life insurance
• Retirement savings – 401(k) plan with generous company matching contributions (up to 6%), financial advisory services, potential company discretionary contribution, and a broad investment lineup
• Tuition reimbursement up to $5,250/year
• Business-casual environment that includes the option to wear jeans
• Generous paid time off upon hire – including a paid time off program plus ten paid company holidays and three floating holidays each calendar year
• Paid volunteer time — 16 hours per calendar year
• Leave of absence programs – including paid parental leave, paid short- and long-term disability, and Family and Medical Leave (FMLA)
• Business Resource Groups (BRGs) – BRGs facilitate inclusion and collaboration across our business internally and throughout the communities where we live, work and play. BRGs are open to all.