Job Details
Description
JOB TITLE:
Security Analyst
DEPARTMENT: Corporate
FLSA: Exempt
WORKING CONDITIONS: In office, Onsite
Position is not routinely exposed to adverse environmental conditions; typical office environment.
REPORTS TO: SVP, IT
DIRECT REPORTS: none
Verst Logistics is looking for a Security Analyst to join our IT Team. Reporting directly to the SVP, IT, this role offers a unique opportunity to work across Security Operations (SOC) and Governance, Risk, and Compliance (GRC), blending hands-on threat detection with strategic risk management. You will be responsible for monitoring, analyzing, and responding to security incidents, ensuring the confidentiality, integrity, and availability of our critical systems and data. By proactively identifying vulnerabilities and implementing security controls, you will play a key role in protecting the company from evolving cyber threats.
In addition to security operations, you will collaborate closely with internal teams, customers and vendors to support compliance efforts and security reviews. Your ability to communicate effectively and build strong partnerships will be essential in reducing risk and ensuring alignment across multiple domains.
Governance, Risk, And Compliance (GRC)
- Develop, implement, and maintain security policies, standards, and procedures in line with regulatory requirements (e.g., NIST, ISO 27001, HIPAA, PCI DSS, GDPR).
- Conduct risk assessments to identify and mitigate threats to information assets.
- Monitor and report on compliance, tracking the effectiveness of security controls.
- Manage security audits, coordinate with external auditors, and address findings.
- Maintain security documentation and ensure alignment with evolving regulations.
- Provide security awareness training and support incident response planning.
Security Operations Center (SOC)
- Monitor SIEM systems and security tools for threats and vulnerabilities.
- Investigate and respond to security incidents, documenting analysis and remediation steps.
- Perform vulnerability scanning, penetration testing, and security assessments.
- Collaborate with IT teams to implement security controls and remediate risks.
- Stay informed on emerging threats and contribute to threat intelligence initiatives.
- Participate in incident response exercises and develop security reports for management.
Key Work Experience & Competencies
- 3+ years of experience handling security challenges in a high-growth environment
- Strong understanding of security frameworks and standards (e.g., NIST, ISO 27001, SOC 2).
- Knowledge of relevant regulations and compliance requirements (e.g., HIPAA, PCI DSS, GDPR).
- Working knowledge of Windows, Linux and Mac OS.
- Familiarity with risk assessment methodologies and frameworks.
- Experience in developing and implementing security policies, standards, and procedures.
- Strong analytical, problem-solving, and incident response skills.
- Excellent communication and interpersonal skills, with the ability to effectively interact with technical and non-technical stakeholders.
- Excellent organizational and planning skills.
- Strong communications and interpersonal abilities.
- Strong analytical, critical thinking and attention to detail skills.
- Treats others with respect and value, with diplomacy and tact.
- Ability to listen, build rapport, and credibility as a partner within the business.
- Strong customer service orientation.
- Ability to make sound and logical judgments under intense pressure.
- Self-directed and self-regulated, while being accountable for his/her area of ownership and role.
- Ability to balance the needs of customers in a challenging 3PL setting with the requirements to maintain a stable, secure, and ever-changing IT environment.
- Ability to manage high severity issues and escalate as appropriate.
- Bachelor’s degree in related field or equivalent years of experience plus post-secondary technical certifications preferred.
- Certification in one or more cloud technologies strongly preferred
- Less than 5% of domestic travel
The duties and responsibilities listed above are representative of the duties of the position, and do not include all the tasks that the incumbent may be required to perform. The incumbent must be able to perform all of the essential functions of this job, either with or without reasonable accommodation.
Review and Approval: Indicates review by incumbent and approval by supervisor.
Employee: _______________________________ Date: _____________________
Supervisor: _______________________________
Date: ___