IT Security Analyst I

Role overview

The Information Technology Security Analyst I supports the organization’s information security program by handling routine security operations, monitoring activities, and administrative work. The role partners with senior security professionals to help safeguard the confidentiality, integrity, and availability of company systems, data, and information assets in line with GLBA, FFIEC guidance, and internal security policies and standards.

This is a hands-on, execution-oriented position that offers exposure to core security functions while working within established procedures and close supervision.

Responsibilities

• Help distribute Business Impact Analysis questionnaires to internal business teams.
• Monitor responses, chase outstanding submissions, and organize the information into BIA worksheets or SharePoint lists.
• Flag missing details, mismatches, or other issues for review by senior information security staff.
• Support Disaster Recovery Program activities and related preparation work.
• Assist in watching and sorting security alerts tied to malware, phishing, endpoint protection, firewall events, and intrusion detection systems.
• Escalate suspected incidents to senior security personnel according to incident response procedures.
• Take part in documenting and investigating basic security events with guidance from senior staff.
• Assist with security infrastructure discussions and record any requirements that are identified.
• Support vulnerability management tasks such as gathering scan outputs, checking asset inventories, following remediation progress, and performing basic confirmation of fixes on remediated systems.
• Contribute to information security risk assessments by collecting evidence, helping with questionnaires and control checks, and maintaining risk tracking records.
• Assist with gathering audit evidence and keeping examiner-request materials organized in repositories.
• Support the improvement, communication, and enforcement of security policies, standards, and procedures.
• Help run security awareness efforts, including phishing simulations and employee training tracking.
• Keep records accurate for security tools, incidents, and compliance-related activities.
• Work with IT teams and business units to collect information needed for security reviews.
• Raise risks, issues, and control gaps promptly to senior security staff.
• Join team meetings, tabletop exercises, and training sessions to strengthen security knowledge.
• Protect client and bank information at all times and follow company policies.
• Represent and reinforce the company’s mission, vision, values, and Pillars of Success.
• Complete monthly training on time to stay current on bank regulations, policies, and procedures.
• Work from the assigned worksite during regular business hours and/or other scheduled hours.
• Perform other duties as assigned.

Requirements

• Ability to carry out assigned security tasks under defined procedures and supervision.
• Comfort working with security operations, monitoring, documentation, and administrative support work.
• Ability to handle sensitive information confidentially and comply with internal policies.
• Willingness to collaborate with IT and business teams and escalate concerns quickly.
• Ability to complete required monthly training and keep up with regulatory and policy expectations.
• Availability to work onsite during regular business hours or assigned hours.

Compensation and benefits

The salary range for this role is $50,000 to $75,000 per year.

Eligible full-time associates receive a benefits package that includes medical coverage, dental coverage, vision coverage, a 401(k) plan, company-paid life insurance, short-term and long-term disability coverage, and company-paid vacation, paid leave, and holidays.

Additional information

The position will stay open until a qualified candidate is selected.