Associate, Security Analyst

About the Role

The Security Analyst will support the organization’s enterprise‑level security program, focusing on vendor risk management, user access audits, and risk management based on the NIST Cybersecurity framework. This role is ideal for someone with a strong security foundation and a desire to grow within a collaborative team environment. • Participate in Microsoft migration initiatives (currently in year one) • Conduct quarterly user access audits for the Microsoft Tenant and critical third‑party systems and maintain accurate vendor input records • Onboard, manage, and maintain ProcessUnity software for Third‑Party Risk Management (TPRM) • Assist with NIST framework risk remediation efforts and ongoing risk management • Participate in the Incident Response process, including tabletops • Assist in writing, updating, and inventory of Security Policies • Assist in answering audit questionnaires and policy reviews • Collaborate with cross‑functional teams to ensure compliance with established security policies • Contribute to security awareness and internal training initiatives • Stay current on emerging threats, IAM best practices, and compliance requirements

Key Responsibilities

• ▸microsoft migration
• ▸access audits
• ▸processunity
• ▸nist remediation
• ▸incident response
• ▸policy management

What You Bring

• Must be able to complete all physical requirements of this role with or without a reasonable accommodation • Bachelor’s degree in Cybersecurity or related field required • 3–4 years of experience in security or risk management within an enterprise environment • Familiarity with TPRM processes and tools – ProcessUnity experience preferred • Business experience working with an established security program • Strong communication and team collaboration skills; technical depth not required, but a security background is essential • Experience managing vendor risk and using tools like ProcessUnity • A solid understanding of NIST CSF and remediation processes • Strong organizational skills for quarterly audits and compliance tracking in a regulated industry • A collaborative mindset and ability to work effectively across business and technical teams

Requirements

• ▸cybersecurity degree
• ▸3-4 years
• ▸processunity
• ▸nist csf
• ▸communication
• ▸vendor risk

Benefits

Base salary ranges from USD 80,000 to USD 90,000 per year, with eligibility for discretionary bonuses up to 10 % of base salary based on performance. Additional compensation may include commissions, stipends, or non‑cash incentives, and benefits such as health insurance, retirement plans, and paid time off, subject to eligibility. • Hybrid or remote work options may vary by role to support work-life balance • Competitive pay that values your contributions • Incentives designed to reward your achievements • Paid flexible PTO to disconnect or celebrate life milestones • Paid 14+ holidays, including your birthday, to disconnect and celebrate • Paid Parental Leave that begins after 90 days • Paid volunteer time off to give back to your community • Monthly workshop weeks; fewer meetings & more collaboration • Robust health plan options that begin within at least 30 days of your employment • Monthly phone reimbursement • Wellness allowance and perks, including a yearly subscription to a meditation app • Employee Assistance Program (EAP) for access to confidential support services • Company retirement options including 401(k) + matching & Roth account option

Work Environment

Hybrid