This is not a “sit behind a dashboard and escalate tickets” cybersecurity role. This is a true hands-on Cybersecurity Analyst opportunity for someone who wants ownership, visibility, and impact.
This individual will be the primary cybersecurity resource for the organization, supported by an internal infrastructure team and outsourced security partners. Direct hire in Warrenville, and it’s a hybrid position!
What you will do:
• Support day-to-day cybersecurity operations and GRC activities
• Monitor security tools and respond to security incidents
• Strengthen security across cloud, endpoint, email, identity, vendor, and compliance environments
• Support cybersecurity audits and audit remediation activities
• Write, maintain, and update cybersecurity policies, standards, and procedures
• Establish and monitor cybersecurity standards
• Lead security awareness training and coordinate phishing simulation exercises
• Support vendor risk assessments and compliance program coordination
• Manage cybersecurity documentation and change management coordination
• Identify risks, weaknesses, and remediation opportunities through risk assessments and threat modeling
• Work closely with IT teams, business leaders, executives, and outside security partners
• Translate technical cybersecurity risk into practical business guidance
Required experience:
• 5–10 years of cybersecurity experience
• Must have hands-on experience with CrowdStrike Falcon EDR, MDR, Vulnerability Management, or similar platforms
• Microsoft Azure and Entra ID, including identity, conditional access, and cloud security
• Hands-on experience with Microsoft 365 Security, including Defender, Compliance Center, Purview, or similar tools
• Hands-on experience with Zscaler ZPA, zero-trust network access, or similar platforms
• Strong understanding of cybersecurity governance, risk, and compliance practices
• Experience writing and maintaining cybersecurity policies, standards, and procedures
• Experience performing or supporting cybersecurity audits
• Strong documentation, communication, and stakeholder management skills
• Ability to work with technical teams and business leaders to identify and remediate security risks
Compensation, Benefits, and Schedule
• Annual salary range: $110K–$140K
• Full benefits package included
• Hybrid schedule with onsite work Tuesday, Wednesday, and Thursday
Interested or know someone who may be a fit? Please message me directly b p e n n e y @ s i e r r a i t s . c o m if you like with the headline bus.
Thank you!
SierraITS