IT Security Analyst

About

An established manufacturing company based in Lansdale, PA is seeking an IT Security Analyst to join its growing cybersecurity team. In this role, you will take ownership of several key security programs, including Vulnerability Management, Third-Party Risk Management, Web Application Firewall (WAF) oversight, and Security Awareness. You will drive the day-to-day execution and coordination of these initiatives while also contributing to core security operations such as incident response, phishing investigations, and SIEM alert monitoring.

This position is ideal for someone who enjoys balancing program ownership with hands-on security operations work. You will partner closely with IT, engineering, and business teams to strengthen the organization’s security posture across a global manufacturing environment. The ideal candidate brings a foundation in IT or information security (including audit exposure), strong analytical thinking, and the ability to communicate effectively with both technical and non-technical stakeholders.

The organization is committed to fostering a diverse and inclusive workplace where all employees are treated equitably and with respect.

Required Skills & Experience

• 2+ years of experience in Information Security, IT, or a related field
• Bachelor’s degree in Computer Science, Information Systems, or similar discipline
• Working knowledge of security frameworks such as ISO 27001/2, CIS, or NIST
• Strong analytical and problem-solving skills with the ability to assess and prioritize risk
• Exposure to core security domains such as vulnerability management, vendor risk, or security operations
• Ability to manage tasks independently while contributing to team-based initiatives
• Strong written and verbal communication skills across a variety of audiences
• Experience collaborating with cross-functional teams including IT, business units, and leadership
• Self-driven, organized, and capable of handling multiple priorities simultaneously
• Strong interpersonal skills and a team-oriented mindset

Desired Skills & Experience

• Hands-on experience with vulnerability scanning tools and remediation processes
• Familiarity with third-party/vendor risk assessment practices
• Exposure to WAF technologies and application security concepts
• Experience working with SIEM platforms and alert triage
• Knowledge of phishing analysis and security awareness training tools
• Understanding of incident response workflows and documentation practices

What You Will Be Doing

• Leading the vulnerability management lifecycle, including intake, prioritization, tracking, and validation of remediation efforts
• Analyzing scan results and penetration testing findings, translating them into actionable, risk-based recommendations
• Managing third-party risk activities, including vendor assessments, risk tracking, and coordination with internal stakeholders
• Overseeing WAF performance by reviewing alerts, tuning rules, and ensuring alignment with application risk
• Administering and enhancing the security awareness program, including training delivery, phishing campaigns, and reporting
• Supporting incident response efforts through investigation, documentation, and follow-up activities
• Reviewing and analyzing phishing submissions and contributing insights to improve user awareness
• Participating in SIEM monitoring, alert triage, and escalation as part of a shared team rotation
• Collaborating with infrastructure, application, and business teams to continuously improve security controls

Tech Breakdown

• 35% Vulnerability Management
• 20% Third-Party Risk Management
• 15% Security Awareness & Training
• 15% WAF & Application Security
• 15% Security Operations (Incident Response, SIEM, Phishing)

Daily Responsibilities

• 30% Tracking vulnerabilities, coordinating remediation, and producing reports
• 20% Partnering with internal teams and vendors on security initiatives
• 20% Monitoring and responding to alerts, incidents, and phishing activity
• 15% Supporting training programs and analyzing awareness metrics
• 15% Documentation, reporting, and continuous improvement efforts

The Offer

You will receive the following benefits:

• Competitive salary based on experience
• Medical, dental, and vision insurance
• 401(k) with company match
• Paid time off and company holidays
• Opportunities for career advancement and professional development
• Exposure to a wide range of security tools and enterprise environments
• Collaborative, team-focused work culture

Applicants must be currently authorized to work in the US on a full-time basis now and in the future.