Information Security Analyst

Good Day Farm•Little Rock, AR

About The Position

The Information Security Analyst is responsible for safeguarding the organization’s information assets by identifying, assessing, and mitigating security risks. This role monitors security systems, investigates potential threats, evaluates IT controls, and partners with cross-functional teams to ensure compliance with internal policies and industry best practices. The analyst will play a key role in maintaining the confidentiality, integrity, and availability of company data across on-premises and cloud environments.

Requirements

Must be able to obtain a state medical marijuana badge and pass a background check.
Reliable transportation and valid driver’s license are required.
Must be able to communicate with GDF Team effectively and professionally.
Must perform under high pressure situations.
Strong customer service orientation.
Ability to work in a fast-paced environment and handle high stress situations.
Self-Motivated.
Ability to multitask.
Excellent organizational skills.
Ability to stay focused.
Positive attitude and strong work ethic.
Must be a team player with a “can do” attitude.
Available to work weekends, after normal business hours, and holidays as needed.
Bachelor’s degree in information security, Computer Science, IT, or related field — or equivalent experience.
2+ years of experience in cybersecurity, information security, IT security operations, or related role.
Knowledge of security principles, frameworks, and best practices (e.g., NIST, CIS, ISO 27001).
Experience with security monitoring tools (SIEM, EDR/XDR, vulnerability scanners).
Familiarity with IAM concepts and controls.
Strong analytical, problem-solving, and incident response skills.
Experience with cloud security such as Microsoft 365 and AWS.

Nice To Haves

Security-related certification(s) (Security+, CySA+, SSCP, GSEC).

Responsibilities

Monitor security tools, dashboards, and alerts to identify and respond to threats in real time.
Investigate and triage security events, escalating incidents when necessary.
Conduct root-cause analysis and ensure proper remediation and documentation.
Manage endpoint security policies, including antivirus, EDR/XDR, and patching compliance.
Support vulnerability management programs by performing scans, analyzing results, and tracking remediation.
Assist with internal and external security audits, assessments, and regulatory compliance efforts.
Maintain and update security documentation, policies, and procedures.
Evaluate third-party vendors for security risk and compliance requirements.
Support identity and access management (IAM) processes, including provisioning/deprovisioning and periodic access reviews.
Ensure proper enforcement of MFA, conditional access, and privileged account controls.
Assist in developing security awareness content to educate employees on cybersecurity best practices.
Contribute to ongoing improvement of security controls, monitoring, and reporting.
Collaborate with IT, Operations, Compliance, and other teams to improve security posture.
Participate in security-related projects including system hardening, tool deployment, and incident preparedness.
Research and recommend new security tools, standards, and best practices.