Security Analyst (GRC & Security Operations)

About This Role

Support the security program across governance, risk, compliance, and day-to-day security operations for a fast-growing leader in supply chain resilience and risk management. This role provides hands-on exposure to real-world security challenges, working closely with senior engineers to scale security needs.

Responsibilities

• Assist with SOC 2 and other compliance frameworks by collecting, organizing, and maintaining audit evidence
• Respond to customer security questionnaires and RFI requests with accuracy and attention to detail
• Maintain risk registers and remediation tracking to ensure issues are documented and progress is visible
• Support periodic risk assessments and internal control reviews
• Help update and maintain security policies, standards, and procedures
• Monitor security alerts and escalate incidents following established procedures
• Support phishing simulations and security awareness initiatives
• Track vulnerability findings and remediation efforts across teams
• Maintain security dashboards and operational metrics
• Assist senior engineers with validating cloud security configurations

Requirements

• 1-3 years of experience in information security, IT, or compliance roles
• Foundational understanding of security principles and risk management concepts
• Strong analytical, documentation, and communication skills
• Self-motivated and detail-oriented with ability to manage priorities
• Bachelor’s degree

Qualifications

• Bachelor’s degree required
• 1–3 years of experience in information security, IT, or compliance roles

Nice to Have

• Exposure to SOC 2, NIST 800-171, or ISO 27001 frameworks
• Familiarity with AWS or other cloud environments
• Familiarity with Microsoft enterprise tools
• Experience with SIEM, phishing simulation tools, or vulnerability management platforms
• Security+ certification

Skills

* Required skills

Benefits