{"id":790,"date":"2025-12-11T07:43:33","date_gmt":"2025-12-11T07:43:33","guid":{"rendered":"https:\/\/skillbasedmatching.com\/jobs\/?post_type=jobpost&#038;p=790"},"modified":"2025-12-11T07:44:47","modified_gmt":"2025-12-11T07:44:47","slug":"group-it-security-analyst-security-operations-risk-and-compliance","status":"publish","type":"jobpost","link":"https:\/\/skillbasedmatching.com\/jobs\/current-jobs\/group-it-security-analyst-security-operations-risk-and-compliance\/","title":{"rendered":"Group IT Security Analyst \u2013 Security Operations, Risk, and Compliance"},"content":{"rendered":"\n<p>\u200bThis is a full-time, <strong>remote (US)<\/strong> <strong>Group IT Security Analyst<\/strong> role at Marmon Electrical (part of Marmon Holdings, a Berkshire Hathaway company). This hands-on position works closely with the Group VP of IT to ensure the security and integrity of the organization\u2019s systems and data. The analyst is responsible for managing security tools, leading compliance initiatives (especially <strong>CMMC<\/strong>), and driving risk management activities across the decentralized group.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u200b<strong>Location:<\/strong> Remote, United States.<\/li>\n\n\n\n<li>\u200b<strong>Experience:<\/strong> <strong>At least five years<\/strong> of experience in IT security, plus experience in providing desktop\/network support.<\/li>\n\n\n\n<li>\u200b<strong>Education\/Certification:<\/strong> Bachelor&#8217;s degree in a related field and relevant certifications (e.g., <strong>Network+, Security+, DR, CISSP, CISM, or CISA<\/strong>).<\/li>\n\n\n\n<li>\u200b<strong>Travel:<\/strong> Estimate of about <strong>10% travel<\/strong> to businesses is required.<\/li>\n\n\n\n<li>\u200b<strong>Focus:<\/strong> Tool management (Qualys, SentinelOne, etc.), CMMC compliance, third-party risk management (SOC 2), security policy implementation, and incident response.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">\u200bEssential Duties: Compliance, Monitoring, and Risk Management<\/h2>\n\n\n\n<p>\u200bThe analyst&#8217;s role spans proactive defense, regulatory adherence, and incident handling across the Electrical group&#8217;s decentralized environment.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u200b<strong>Security Tool Management:<\/strong> Proactive management and monitoring of existing cyber tools (e.g., <strong>Qualys, SentinelOne, Abnormal, Proof Point, Bitsight, Delinea, Artic Wolf<\/strong>, etc.).<\/li>\n\n\n\n<li>\u200b<strong>Compliance Leadership:<\/strong> Lead initiative to ensure defense businesses are <strong>CMMC compliant<\/strong>. Ensure compliance with <strong>PCI-DSS, ISO 27001, GDPR, CCPA, NIST, ITAR<\/strong>, and other regulations (based on current <strong>CIS standards<\/strong>) .<\/li>\n\n\n\n<li>\u200b<strong>Policy &amp; Procedure:<\/strong> Implement security policies and procedures and ensure business compliance with Marmon Standard Practice Instructions.<\/li>\n\n\n\n<li>\u200b<strong>Third-Party Risk:<\/strong> Ensure <strong>third-party risk assessments<\/strong> are completed and that each service provider shares a <strong>SOC 2 Type 2 report<\/strong>.<\/li>\n\n\n\n<li>\u200b<strong>Incident Lifecycle:<\/strong> Monitor security events, conduct risk assessments, manage security incidents (containment, investigation, recovery), and collaborate on <strong>incident response and disaster recovery plans<\/strong>.<\/li>\n\n\n\n<li>\u200b<strong>Asset Management:<\/strong> Assist businesses in managing computer assets (ensuring cybersecurity tools installed and plans for end-of-life systems). Assist with domain registrations (SPF, DKIM, DMARC).<\/li>\n\n\n\n<li>\u200b<strong>Collaboration:<\/strong> Coordinate all security activities with Marmon Corporate and other IT teams. Participate in IT audits\/assessments and train employees on best practices.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">\u200bRequired Qualifications and Technical Expertise<\/h2>\n\n\n\n<p>\u200bThe candidate must have strong hands-on experience across both offensive and defensive security tools and core security frameworks.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u200b<strong>Experience:<\/strong> At least <strong>5 years in IT security<\/strong>, with experience in desktop\/network support.<\/li>\n\n\n\n<li>\u200b<strong>Security Technologies:<\/strong> Strong knowledge of security tools, including <strong>firewalls, antivirus software, IDS, offensive pen testing, defensive pen testing<\/strong>, and other security tools.<\/li>\n\n\n\n<li>\u200b<strong>Architecture:<\/strong> Experience with <strong>zero trust architecture<\/strong> and implementing zero trust principles.<\/li>\n\n\n\n<li>\u200b<strong>Frameworks:<\/strong> Familiarity with industry standards and regulations such as <strong>ISO 27001, CCPA, GDPR, and CIS<\/strong>.<\/li>\n\n\n\n<li>\u200b<strong>Communication:<\/strong> Excellent communication skills, including communicating technical information to non-technical stakeholders.<\/li>\n<\/ul>\n\n\n\n<p>\u200b<strong>Preferred Experience:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u200bPrevious experience in a highly <strong>decentralized and disparate technology environment<\/strong>.<\/li>\n\n\n\n<li>\u200bExperience with Mergers and acquisitions and systems integration.<\/li>\n\n\n\n<li>\u200bFamiliarity with vendor tools like <strong>Microsoft, Cisco, Palo Alto, VMware, Hyper-V, Qualys, SentinelOne<\/strong>, etc.<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>\u200bThis is a full-time, remote (US) Group IT Security Analyst role at Marmon Electrical (part of Marmon Holdings, a Berkshire Hathaway company). This hands-on position works closely with the Group VP of IT to ensure the security and integrity of the organization\u2019s systems and data. The analyst is responsible for managing security tools, leading compliance [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"menu_order":0,"template":"","jobpost_category":[648,44],"jobpost_job_type":[39],"jobpost_location":[1041],"jobpost_tag":[990,3634,1261,1253,3633,81,3636,3635,1614,1940],"class_list":["post-790","jobpost","type-jobpost","status-publish","hentry","jobpost_category-information-technology","jobpost_category-security","jobpost_job_type-remote","jobpost_location-united-states","jobpost_tag-5-years-experience","jobpost_tag-cmmc-compliance","jobpost_tag-incident-response","jobpost_tag-iso-27001","jobpost_tag-it-security-analyst","jobpost_tag-remote","jobpost_tag-security-tools-management","jobpost_tag-soc-2-type-2","jobpost_tag-third-party-risk","jobpost_tag-zero-trust"],"_links":{"self":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost\/790","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost"}],"about":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/types\/jobpost"}],"author":[{"embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/users\/1"}],"wp:attachment":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/media?parent=790"}],"wp:term":[{"taxonomy":"jobpost_category","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_category?post=790"},{"taxonomy":"jobpost_job_type","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_job_type?post=790"},{"taxonomy":"jobpost_location","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_location?post=790"},{"taxonomy":"jobpost_tag","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_tag?post=790"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}