Information Security Analyst

Westminster, CO


Improve safety and stay compliant. Learn why 10,000 companies trust KPA EHS Software and consulting to keep their companies safe.

View company page

Founded in 1986, KPA is a leading provider of Environment, Health & Safety (EHS), and Workforce Compliance software and consulting services. We succeed if our clients can send their employees home at night, having not experienced a workplace accident or injury. The combination of software, consulting, and training helps clients identify, remedy, and prevent workplace safety and compliance problems so they can focus on what’s important – their core business.  Help us help keep people safe and businesses working efficiently. Named as one of Built In Colorado’s Best Places to Work for five years in a row, KPA is made up of talented individuals working together for the greater good. We’re here to help our clients build safe, thriving organizations, and we’re looking for people with a common goal to help us do it. 
Position DescriptionAs a member of the technology team you will report to the Information Security Manager. This position will be hands on cover a wide scope of technologies and responsibilities. This position will assist the Information Security Manager with the completion of projects and day to day tasks. KPA specializes in EHS and workforce compliance and offers multiple SaaS applications to its customers. As such a strong understanding of information security within the contact of web applications and their underlying technologies is key.


  • Understand the current threat landscape, emerging trends and utilize those skills in day-to-day activities
  • Respond to security events from alert sources as necessary (EDR, SIEM, MDR, WAF, phishing, etc.)
  • Supporting the completion of annual SOC 2 and maturity assessment audits
  • Utilize current tooling to monitor, troubleshoot and complete internal/external/web application vulnerability scans
  • Proactively identify and work to address security gaps and/or improve existing security posture
  • Provide technical security guidance to external departments (development, DevOps, sales, etc.) and assist with the implementation and adoption of processes and policies
  • Expand single sign-on (SSO) adoption proactively and as needed
  • Coordinate with external consulting firm to complete annual penetration testing
  • Writing and/or updating company policies and procedures

  • Bachelor's degree in information security or information technology preferred
  • Information security certifications: Security+, SSCP, CISSP GIAC, etc.
  • 3+ years of experience in a hands-on information security role
  • 2+ years of experience working in a system administrator role specifically dealing with SaaS applications
  • Prior experience assisting with or completing SOC 2 audits and understanding of NIST CSF
  • Familiarity with information security tools including but not limited to EDR, SIEM, DLP, vulnerability management, security awareness training, password management
  • Experience working in cloud native environments (AWS, Azure, Office 365, etc.) with an understanding of the associated security components and best practices
  • Act as an escalation point for other internal departments as needed for security related assistance
  • Windows, macOS, Linux, SQL, firewall, WAF management and administration experience
  • Experience reviewing, procuring, and implementing security solutions
  • Strong understanding of cryptography, incident response, access control, disaster recovery, DNS, DHCP, MFA, password management Active Directory, etc.
  • Strong self-governing work ethic, integrity, written/verbal skills, follow through and follow up on tasks and projects
  • Able to multitask, prioritize, and track time efficiently
  • Desire to learn and continually improve self and others though knowledge sharing
  • Work ethic that corresponds with KPA’s core values: Integrity – Teamwork – Helpfulness – Excellence – Agility – Respect


  • Base salary range between $90-110k
  • Bonus potential of 10% annually
  • This is a full time, exempt position

Physical Requirements:

  • Physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
  • - Working at a computer typing and view a screen - Constantly- Stationary sitting or standing - Constantly- Visual Recognition - Constantly- Hearing/Listening - Occasionally- Communicating verbally and/or in writing - Occasionally- Travel - Seldom
Don’t meet every job requirement? At KPA, we are dedicated to building a diverse, inclusive, and authentic workplace. Studies have shown that women and people of color are less likely to apply unless they meet every requirement. If you’re excited about the role but your past experience doesn’t align perfectly with every qualification, we still encourage you to apply! You might just be the right candidate for this or other roles.
As a growing company KPA values its employees by supporting them with a full benefits package including Medical, Dental, Vision, Flexible Spending Accounts, PTO, Paid and Floating Holidays, 401k with Company match and immediate vesting, Company-funded Life Insurance, Employee Assistance Programs, and Pet Insurance.
About KPA
Founded in 1986, KPA is a leading provider of Environment, Health & Safety (EHS), and Workforce Compliance software and consulting services. KPA solutions help clients identify, remedy, and prevent workplace safety and compliance problems across their entire enterprise. The combination of KPA's software, consulting services, and award-winning training content helps organizations minimize risk so they can focus on what's important—their core business.  
We are passionate about what we do, how we do and why we do it. Our culture is driven by the KPA core values – Integrity, Helpful, Excellence, Agile, Respectful, and Teamwork. Success will be determined by the capabilities, energy and character of the people we bring into our organization and the performance they achieve.
KPA, with headquarters in Colorado and teammates throughout the United Sates, is recognized as one of Colorado's Best Midsize Places to Work by Built In Colorado for 2024.  
“To be ranked in Built In’s Best Places to Work Awards is a recognition of KPA’s dedication to creating a team of outstanding professionals and our efforts to create a positive and safe workplace culture for everyone,” said Chris Fanning, KPA President and CEO. “I believe we’ve developed a high caliber organization comprised of passionate people who are experts in their respective fields and deliver great value to our customers.”
KPA is committed to providing equal opportunity in all of our employment practices, including selection, hiring, promotion, transfer, and compensation, to all qualified applicants and employees without regard to race, religion, religious dress/grooming, color, ethnicity, sex (including sex stereotyping), sexual orientation, gender identity or gender expression, national origin, ancestry, citizenship status, creed, uniform service member status, military or veteran status, marital status, pregnancy, breast-feeding and/or pregnancy-related conditions, age, protected medical condition, leave status, physical or mental disability, genetic characteristics, or any other legally-protected status in accordance with the requirements of all federal, state and local laws. In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.
If you need assistance or an accommodation due to a disability, you may contact us at
Apply now Apply later
  • Share this job via
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Active Directory Agile Audits AWS Azure CISSP Cloud Compliance Cryptography DevOps DNS EDR Firewalls GIAC Incident response Linux MacOS NIST Pentesting SaaS SIEM SOC SOC 2 SQL SSCP SSO Vulnerability management Vulnerability scans Windows

Perks/benefits: 401(k) matching Flex hours Flex vacation Health care Insurance Medical leave Salary bonus Signing bonus Team events

Region: North America
Country: United States
Job stats:  40  11  0
Category: Analyst Jobs

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.