Information Security Analyst
Westminster, CO
Applications have closed
KPA
Improve safety and stay compliant. Learn why 10,000 companies trust KPA EHS Software and consulting to keep their companies safe.Position DescriptionAs a member of the technology team you will report to the Information Security Manager. This position will be hands on cover a wide scope of technologies and responsibilities. This position will assist the Information Security Manager with the completion of projects and day to day tasks. KPA specializes in EHS and workforce compliance and offers multiple SaaS applications to its customers. As such a strong understanding of information security within the contact of web applications and their underlying technologies is key.
Responsibilities:
- Understand the current threat landscape, emerging trends and utilize those skills in day-to-day activities
- Respond to security events from alert sources as necessary (EDR, SIEM, MDR, WAF, phishing, etc.)
- Supporting the completion of annual SOC 2 and maturity assessment audits
- Utilize current tooling to monitor, troubleshoot and complete internal/external/web application vulnerability scans
- Proactively identify and work to address security gaps and/or improve existing security posture
- Provide technical security guidance to external departments (development, DevOps, sales, etc.) and assist with the implementation and adoption of processes and policies
- Expand single sign-on (SSO) adoption proactively and as needed
- Coordinate with external consulting firm to complete annual penetration testing
- Writing and/or updating company policies and procedures
- Bachelor's degree in information security or information technology preferred
- Information security certifications: Security+, SSCP, CISSP GIAC, etc.
- 3+ years of experience in a hands-on information security role
- 2+ years of experience working in a system administrator role specifically dealing with SaaS applications
- Prior experience assisting with or completing SOC 2 audits and understanding of NIST CSF
- Familiarity with information security tools including but not limited to EDR, SIEM, DLP, vulnerability management, security awareness training, password management
- Experience working in cloud native environments (AWS, Azure, Office 365, etc.) with an understanding of the associated security components and best practices
- Act as an escalation point for other internal departments as needed for security related assistance
- Windows, macOS, Linux, SQL, firewall, WAF management and administration experience
- Experience reviewing, procuring, and implementing security solutions
- Strong understanding of cryptography, incident response, access control, disaster recovery, DNS, DHCP, MFA, password management Active Directory, etc.
- Strong self-governing work ethic, integrity, written/verbal skills, follow through and follow up on tasks and projects
- Able to multitask, prioritize, and track time efficiently
- Desire to learn and continually improve self and others though knowledge sharing
- Work ethic that corresponds with KPA’s core values: Integrity – Teamwork – Helpfulness – Excellence – Agility – Respect
Compensation:
- Base salary range between $90-110k
- Bonus potential of 10% annually
- This is a full time, exempt position
Physical Requirements:
- Physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. - Working at a computer typing and view a screen - Constantly- Stationary sitting or standing - Constantly- Visual Recognition - Constantly- Hearing/Listening - Occasionally- Communicating verbally and/or in writing - Occasionally- Travel - Seldom
As a growing company KPA values its employees by supporting them with a full benefits package including Medical, Dental, Vision, Flexible Spending Accounts, PTO, Paid and Floating Holidays, 401k with Company match and immediate vesting, Company-funded Life Insurance, Employee Assistance Programs, and Pet Insurance.
About KPA
Founded in 1986, KPA is a leading provider of Environment, Health & Safety (EHS), and Workforce Compliance software and consulting services. KPA solutions help clients identify, remedy, and prevent workplace safety and compliance problems across their entire enterprise. The combination of KPA's software, consulting services, and award-winning training content helps organizations minimize risk so they can focus on what's important—their core business.
We are passionate about what we do, how we do and why we do it. Our culture is driven by the KPA core values – Integrity, Helpful, Excellence, Agile, Respectful, and Teamwork. Success will be determined by the capabilities, energy and character of the people we bring into our organization and the performance they achieve.
KPA, with headquarters in Colorado and teammates throughout the United Sates, is recognized as one of Colorado's Best Midsize Places to Work by Built In Colorado for 2024.
“To be ranked in Built In’s Best Places to Work Awards is a recognition of KPA’s dedication to creating a team of outstanding professionals and our efforts to create a positive and safe workplace culture for everyone,” said Chris Fanning, KPA President and CEO. “I believe we’ve developed a high caliber organization comprised of passionate people who are experts in their respective fields and deliver great value to our customers.”
KPA is committed to providing equal opportunity in all of our employment practices, including selection, hiring, promotion, transfer, and compensation, to all qualified applicants and employees without regard to race, religion, religious dress/grooming, color, ethnicity, sex (including sex stereotyping), sexual orientation, gender identity or gender expression, national origin, ancestry, citizenship status, creed, uniform service member status, military or veteran status, marital status, pregnancy, breast-feeding and/or pregnancy-related conditions, age, protected medical condition, leave status, physical or mental disability, genetic characteristics, or any other legally-protected status in accordance with the requirements of all federal, state and local laws. In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.
If you need assistance or an accommodation due to a disability, you may contact us at hr@kpa.io.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Active Directory Agile Audits AWS Azure CISSP Cloud Compliance Cryptography DevOps DNS EDR Firewalls GIAC Incident response Linux MacOS NIST Pentesting SaaS SIEM SOC SOC 2 SQL SSCP SSO Vulnerability management Vulnerability scans Windows
Perks/benefits: 401(k) matching Flex hours Flex vacation Health care Insurance Medical leave Salary bonus Signing bonus Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Senior Cybersecurity Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Information System Security Officer jobs
- Open Security Consultant jobs
- Open Information Systems Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Information Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Security Architect jobs
- Open CISA-related jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open GCP-related jobs
- Open ISO 27001-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Vulnerability management-related jobs
- Open Security Clearance-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open SQL-related jobs
- Open PowerShell-related jobs