​This is a full-time, remote (US) Group IT Security Analyst role at Marmon Electrical (part of Marmon Holdings, a Berkshire Hathaway company). This hands-on position works closely with the Group VP of IT to ensure the security and integrity of the organization’s systems and data. The analyst is responsible for managing security tools, leading compliance initiatives (especially CMMC), and driving risk management activities across the decentralized group.

• ​Location: Remote, United States.
• ​Experience: At least five years of experience in IT security, plus experience in providing desktop/network support.
• ​Education/Certification: Bachelor’s degree in a related field and relevant certifications (e.g., Network+, Security+, DR, CISSP, CISM, or CISA).
• ​Travel: Estimate of about 10% travel to businesses is required.
• ​Focus: Tool management (Qualys, SentinelOne, etc.), CMMC compliance, third-party risk management (SOC 2), security policy implementation, and incident response.

​Essential Duties: Compliance, Monitoring, and Risk Management

​The analyst’s role spans proactive defense, regulatory adherence, and incident handling across the Electrical group’s decentralized environment.

• ​Security Tool Management: Proactive management and monitoring of existing cyber tools (e.g., Qualys, SentinelOne, Abnormal, Proof Point, Bitsight, Delinea, Artic Wolf, etc.).
• ​Compliance Leadership: Lead initiative to ensure defense businesses are CMMC compliant. Ensure compliance with PCI-DSS, ISO 27001, GDPR, CCPA, NIST, ITAR, and other regulations (based on current CIS standards) .
• ​Policy & Procedure: Implement security policies and procedures and ensure business compliance with Marmon Standard Practice Instructions.
• ​Third-Party Risk: Ensure third-party risk assessments are completed and that each service provider shares a SOC 2 Type 2 report.
• ​Incident Lifecycle: Monitor security events, conduct risk assessments, manage security incidents (containment, investigation, recovery), and collaborate on incident response and disaster recovery plans.
• ​Asset Management: Assist businesses in managing computer assets (ensuring cybersecurity tools installed and plans for end-of-life systems). Assist with domain registrations (SPF, DKIM, DMARC).
• ​Collaboration: Coordinate all security activities with Marmon Corporate and other IT teams. Participate in IT audits/assessments and train employees on best practices.

​Required Qualifications and Technical Expertise

​The candidate must have strong hands-on experience across both offensive and defensive security tools and core security frameworks.

• ​Experience: At least 5 years in IT security, with experience in desktop/network support.
• ​Security Technologies: Strong knowledge of security tools, including firewalls, antivirus software, IDS, offensive pen testing, defensive pen testing, and other security tools.
• ​Architecture: Experience with zero trust architecture and implementing zero trust principles.
• ​Frameworks: Familiarity with industry standards and regulations such as ISO 27001, CCPA, GDPR, and CIS.
• ​Communication: Excellent communication skills, including communicating technical information to non-technical stakeholders.

​Preferred Experience:

• ​Previous experience in a highly decentralized and disparate technology environment.
• ​Experience with Mergers and acquisitions and systems integration.
• ​Familiarity with vendor tools like Microsoft, Cisco, Palo Alto, VMware, Hyper-V, Qualys, SentinelOne, etc.