1,428 Security Analyst jobs in the United States

Responsibilities:

• Monitor security systems and networks for potential threats and vulnerabilities.
• Respond to security incidents, conduct investigations, and perform root cause analysis.
• Coordinate with other departments and external entities during incident response.
• Maintain and update incident response plans and playbooks.
• Stay up-to-date with the latest security trends, technologies, and threats.
• Recommend and implement enhancements as needed to incident response procedures, tools, and controls.
• Work with various stakeholders on the appropriate tactics to protect the organization.
• Proactively work with partners and suppliers to achieve objectives on time and within budget.
• Direct and/or take appropriate action with partners to build enterprise class solutions, respond to issues/threats, and communicate to stakeholders.
• Actively engage in the greater Information Security and privacy community (e.g. peer groups, seminars, conferences, etc.) to help identify new technologies, new techniques and new partners.

Key Qualifications:

• 5+ years of relevant experience is required.
• 3+ years of experience working in incident response roles.
• Bachelor's degree in Computer Science, Management Information Systems, Information Security or equivalent is required.
• Cybersecurity certifications (e.g. CISSP, GIAC certifications, etc.) are preferred.
• Experience working with CIS Critical Controls, NIST CSF and ISO 27001 frameworks are preferred.

Technical Skills and Abilities

• Strong interpersonal, written, and verbal communication skills
• Demonstrated experience working with a team to solve technical problems.
• Ability to focus on and achieving results.
• Demonstrated reliability and follow through on commitments and assignments.
• Demonstrate professionalism and courtesy in all interactions.
• Demonstrated ability to implement security best practices.
• Work well under pressure (i.e., a critical system is down)
• Able to work independently and as part of a team.
• Working knowledge of scripting (PowerShell, Python, Perl, etc.)
• Working knowledge of core network and systems administrator protocols
• Working knowledge of network solutions/technologies
• Experience working with Security Information and E.vent Management (SIEM) and Security Orchestration and Automation Response (SOAR) platforms.
• Experience with EDR solutions.
• Ability to analyze and interpret security logs and data.
• Experience with and ability to implement security best practices.
• Experience with security tools (vulnerability scanners, sniffers, log correlation tools)
• Experience with Windows, Linux, and Mac operating systems

#LI-DNI

This role is based in our Columbus, OH or Washington, D.C. office. A reasonable rate of compensation for this position is between $90,000-$100,000 per year.

Enterprise Systems & Applications

Candidates must be US Citizens, Lawful Permanent Residents, or be able to gain clearance to access export-controlled information. The University is not able to provide Visa Sponsorship for this position.

Are you seeking to make a difference in the lives of students? Are you desirous of enabling research that is changing our world? Would you like to have a strong influence in setting direction for a technology organization whose mission focuses on education, research, and application of knowledge to solve some of the world's great challenges? If so, we would like to talk to you. If you are a potential member of the S&T information technology team and are humble, coachable, approachable, introspective, and passionate about building relationships, then we want to talk to you. Serving at Missouri University of Science and Technology is a calling. We are revitalizing our campus and looking to a bright future. Join us.

This position will serve as a technical security expert. This position will be a part of the ISO led security team for risk and compliance and serve in a technical role for security under the ISO's direction for all S&T security.

Firewall Management:

• Configure, monitor, and maintain enterprise firewalls to ensure secure network traffic and prevent unauthorized access
• Develop and implement firewall policies and rules based on industry standards and security best practices
• Design and manage network segmentation to protect sensitive data and systems from potential threats
• Troubleshoot and resolve firewall-related incidents and performance issues
• Collaborate with network teams to ensure firewall and network segmentation changes are aligned with organizational goals
• Collaborate with Networking and Systems Infrastructure team on the maintenance of data center firewall rulesets and routing related to service delivery

Azure Security and Active Directory Management:

• Manage Azure Active Directory as part of a systemwide team, ensuring secure and scalable identity and access management
• Implement and manage security solutions within Microsoft Azure, including configuring security policies, managing resources, and monitoring for vulnerabilities
• Ensure proper configuration and security of Active Directory services, including group policy management, permissions, and role-based access controls
• Contribute to the maintenance of local custom web tools for privilege delegation capabilities of AD/Azure/other management functions

Account Management:

• Oversee user account lifecycle management, including the provisioning, de-provisioning, and auditing of user access to systems
• Ensure adherence to the principle of least privilege across all account management activities
• Conduct regular reviews of user accounts and permissions to identify and mitigate potential security risks

Incident Response:

• Lead and participate in security incident response activities, including investigating, analyzing, and mitigating security incidents
• Hunt for and remediate phishing campaigns, ensuring timely detection and neutralization of threats
• Secure email to prevent misuse and ensure the integrity of organizational communications
• Perform forensic analysis and root cause investigations to determine the scope and impact of security events
• Develop and document incident response procedures and runbooks to improve the organization's response capabilities
• Collaborate with other teams to ensure proper escalation and resolution of security incidents

Vulnerability Management:

• Administer vulnerability management tools, discovery, tracking, and remediation coordination
• Administer Microsoft security environment including Defender, Entra, Purview, and Sentinel
• Lead technical security operations including security monitoring and reporting
• Monitor security systems and logs for signs of potential vulnerabilities or breaches
• Develop and maintain security dashboards and reports for senior management and stakeholders
• Provide guidance on emerging threats, vulnerabilities, and best practices
• Provide oversight to other teams for patch management progress/state as well as help to determine when security issues require immediate vs delayed action

Risk Management and Compliance:

• Ensure that security controls comply with industry regulations, such as CUI, NSPM-33, PCI, HIPAA, NIST 800-171, NIST 800-172, ITAR, NERC, and organizational policies
• Conduct regular security assessments, vulnerability scans, and penetration tests
• Review software, hardware, services, and vendors for adoption
• Recommend and implement security enhancements based on risk assessments and security audits
• Maintain compliance with export-controlled data regulations and work closely with law enforcement on related matters

• Bachelors degree in computer science, cybersecurity, or similar fields, or equivalent experience
• Ability to work on export controlled projects
• Ability to obtain and maintain a top-secret security clearance is required

• 5 years of experience in security analysis with hands-on experience in firewall management, Azure, Active Directory, account management, and incident response
• A cyber security certification such as CISSP, CISM, CEH, or equivalent is required
• Expertise in incident response, phishing remediation, mass email security, risk mitigation, and security operations
• Expertise in data security concepts such as security labeling, Controlled Unclassified Information (CUI), Secret, and Top-Secret information, and tools such as Microsoft Purview preferred
• Expertise in Microsoft security and networking tools such as Active Directory, Domain Controllers, Defender, Entra, and Sentinel preferred
• Expertise in vulnerability scanning tools such as Tenable, Qualys, Nessus, and Nmap
• Knowledge of access management models such as Identity and Access Management (AIM_ access controls, Access Control List (ACL) access controls, Privileged Access Workstation (PAWs), Role-Base Access Controls (RBAC), Attribute-Based Access Controls (ABAC), Privilege Escalation access control, and Zero Trust Network Access (ZTNA) preferred
• Ability to work with export-controlled data and collaborate with law enforcement agencies
• Strong understanding of security frameworks such as NIST CSF, NIST 800-53, NIST 800-88, PCI, ITAR, NERC, ISO 27001, and CIS Controls
• Proficiency in scripting and automation (PowerShell, Python) for security purposes is a requirement
• Excellent analytical, problem-solving, and communication skills.
• Existing security clearance is preferred

The anticipated hiring range for this position has been established as $52,223-$120,078 annually.

Salary is determined by a variety of factors, including but not limited to, the individual's particular combination of education, skills, and experience, as well as organizational requirements.

Your total compensation goes beyond the number on your paycheck. The University of Missouri provides generous leave, health plans, and retirement contributions that add to your bottom line.

Grade: GGS 9E, 10, 11, 12, OR 13
University Title: SECURITY ANALYST- ENTRY, SPECIALIST, EXPERT, PRINCIPAL, OR EXPERT.
To review the University of Missouri's Staff Compensation Structure you can view the Job Code detail page. Internal applicants can determine their university title by accessing the Talent Profile tile in myHR.

Applications will be accepted until this position is filled.

Visa Sponsorship Information:
Applicants must be authorized to work in the United States. The University will not sponsor applicants for this position for employment visas.

University Information
Missouri S&T is one of the nation's leading research universities with over 100-degree programs in 39 disciplines. It was founded in 1870 as one of the first technological institutions west of the Mississippi River. Located about 100 miles west of St. Louis in the vibrant community of Rolla, Missouri S&T is an accessible, safe, and friendly campus surrounded by Ozarks' scenery. Missouri S&T offers undergraduate degrees in engineering, the sciences, liberal arts, humanities, and business, with M.S. and Ph.D. programs available in many of the science and engineering programs. With over 7,000 students and 300 faculty, Missouri S&T is big enough to accommodate a broad population, yet small enough for individuals to build high visibility and impactful careers.

About Rolla
Rolla, Missouri offers several great advantages that help individuals enjoy a high quality of life. Rolla is an ideal place for families, with its low cost of living, excellent schools, safe neighborhoods, and a range of recreational activities suitable for all ages. The Ozark Scenic Riverways and beautiful landscapes offers abundant opportunities for outdoor enthusiasts of every lifestyle. With its vibrant community, Rolla hosts multiple events, concerts, art exhibitions, and theater performances throughout the year. The university's Leach Theatre showcases nationally renowned performers for campus and community alike. Overall, living in Rolla offers a high quality of life with a supportive community, affordable living, beautiful natural surroundings, and numerous opportunities for personal and professional growth.

This position is eligible for University benefits. As part of your total compensation, the University offers a comprehensive benefits package, including medical, dental and vision plans, retirement, paid time off, short- and long-term disability, paid parental leave, paid caregiver leave, and educational fee discounts for all four UM System campuses. For additional information on University benefits, please visit the Faculty & Staff Benefits website at

Equal Employment Opportunity

The University of Missouri is an Equal Opportunity Employer.

To request ADA accommodations, please call the Office of Equity & Title IX at .

OverviewThe Cloud & AI organization accelerates Microsoft's mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers' heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. Microsoft is one of the largest enterprise service companies in the world. Microsoft Cyber Defense Operations is seeking a Security Analyst to join our team. In this role, you'll collaborate with security experts across Microsoft to investigate threats, proactively hunt for compromise, enhance and automate processes, and contribute your expertise to initiatives that strengthen the security and scalability of our services. You'll be part of a team focused on identifying emerging threats, coordinating large-scale responses, and driving investigations that protect our customers.This is a unique opportunity to work in a high-impact environment where your contributions directly support the security of Microsoft's cloud platform and online services. The Senior Security Investigator will be passionate about strengthening defenses and protecting customers from evolving threats. If you're driven by the mission to protect and innovate, this role offers continuous opportunities to learn and grow.Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
ResponsibilitiesPerforming analysis on security escalations to determine root cause and impactConduct forensics and maintaining chain-of-custody as neededSupport cross company Security incidents and crisisCreate technical documentation for SOC analysts and teams to followEvaluate security risks and their impact to the Microsoft Cloud platform and its online servicesEmbody our culture and values

WE ARE HEALTHCARE SYSTEMS OF AMERICA. Our mission is to elevate healthcare standards, improve patient outcomes, and create value for communities across the United States. Healthcare Systems of America (HSA) is more than a healthcare provider-we're a community built on excellence, innovation, and compassion. If you're looking for a career that makes a difference, empowers you to grow, and gives you the opportunity to impact lives, HSA is where you belong.

Healthcare Systems of America operates 8 community hospitals across 3 states. We service a multitude of patients and their families across our vast network, while remaining committed to the professional development of our staff, the functional improvement of our patients, and the cultivation of strong partnerships within our communities.

WHAT WE OFFER

• Career Growth & Development - We are an essential, stable and growing company with many opportunities for training and advancement within the medical field that all employees and team members can benefit from.
• Supportive & Inclusive Culture - We foster an environment where every team member is valued, heard, and empowered to succeed.
• Meaningful Work - Every day, you'll contribute to patient care, cutting-edge medical solutions, and life-changing treatment and technologies.

POSITION SUMMARY

The Security Analyst performs investigations and analysis to support cybersecurity operations across HSA Hospitals' Microsoft-centric environments. This role reviews SOC escalations, conducts internal investigations, and collaborates with team members to remediate threats and improve security processes with consideration for HIPAA compliance and privacy.

PRIMARY RESPONSIBILITIES

• Analyze and validate security incidents escalated by the SOC provider.
• Perform proactive investigation of alerts generated internally from Microsoft Windows, server, and Azure environments.
• Document findings, create incident tickets, and assist in remediation planning.
• Support vulnerability management and threat hunting activities.
• Contribute to improvements in security processes, playbooks, and reporting.
• Maintain awareness of emerging cyber threats relevant to healthcare and Microsoft environments.
• Interpret and apply HIPAA security and privacy requirements in daily operational work.

EXPERIENCE/EDUCATION REQUIREMENTS

• Bachelor's degree in Cybersecurity, Information Technology, or related field, or equivalent real-world experience and job history in security operations or analysis.
• 2+ years of experience in security analysis, incident response, or SOC operations.
• Strong familiarity with Microsoft Windows operating systems, server infrastructure, and Azure environments.
• Understanding of HIPAA compliance and its relevance to security operations.

CERTIFICATIONS PREFERRED

• Security+, CySA+, GCIH, or similar.

*Description*
Daily support of the company information security infrastructure.
Tier 3 support for cybersecurity operations
Implementation and tuning of MSS, SIEM, and vulnerability management systems.
Support for NextGen firewalls, antivirus, DDoS protection, and endpoint detection tools.
Monitoring and configuring email, data loss prevention, and network access control solutions.
Participation in CSIRT and development of Systems Security Plans (SSPs).
*Skills*
Information security, Cyber security, Cloud, Vulnerability management, Siem
*Top Skills Details*
Information security,Cyber security,Cloud,Vulnerability management,Siem
*Additional Skills & Qualifications*
Minimum 5 years of combined IT and cybersecurity experience.
At least 3 years of direct information security experience.
Experience with:
SIEM platforms
Cloud-based email security
Office 365 security
Vulnerability management systems
Zero-trust and MFA implementations
Incident response procedures
Bachelor's degree in Computer Science, Information Systems, or related field.
Preferred certifications: CISSP, CISM, CISA, CompTIA CASP.
*Experience Level*
Intermediate Level
*Pay and Benefits*
The pay range for this position is $60.00 - $72.00/hr.
Eligibility requirements apply to some benefits and may depend on your job
classification and length of employment. Benefits are subject to change and may be
subject to specific elections, plan, or program terms. If eligible, the benefits
available for this temporary role may include the following:
* Medical, dental & vision
* Critical Illness, Accident, and Hospital
* 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available
* Life Insurance (Voluntary Life & AD&D for the employee and dependents)
* Short and long-term disability
* Health Spending Account (HSA)
* Transportation benefits
* Employee Assistance Program
* Time Off/Leave (PTO, Vacation or Sick Leave)
*Workplace Type*
This is a fully onsite position in Tallahassee,FL.
*Application Deadline*
This position is anticipated to close on Sep 19, 2025.
h4>About TEKsystems:

We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

About TEKsystems and TEKsystems Global Services

We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.

The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

• Actively monitor and respond to cybersecurity incidents related to alerted policy violations
• Analyze and investigate incidents to determine their nature and scope
• Document incidents and response activities in detail
• Stay updated with the latest cybersecurity threats and trends
• Assist in developing and refining incident response strategies and procedures

• 1 - 2 years of experience in information security, or other equivalent combination of education or equivalent work experience; certifications a plus
• 1-year of experience performing event and log analysis including one or more of the following: Anti-Virus, Intrusion Detection Systems, Firewalls, Active Directory, Web Proxies. Data loss prevention tools and other security tools found in large enterprise network environments; along with experience working with Security
• Knowledge in incident response lifecycles, common cyber-attacks, and federal incident reporting requirements
• Familiarity with various network and host-based security applications and tools, such as network and host assessment/scanning tools, network and host-based intrusion detection systems, and other security software packages
• Experience with indicators of attack and compromise
• Familiarity with Azure, Red Canary, and Qualys a plus

Security Analyst

Location Fort Rucker, AL
Job Posting No Req. , Pos.

Start Date TBD
Contract FT Rucker AMS

Salary Range DOE
Posting Date July 24, 2025

Union No
FLSA Status Exempt

Shift Work Possible FT/PT Full-time

Relocation No
Travel Possible
M1 Support Services (M1) is seeking a knowledgeable and experienced Security Analyst to support our Fort
Rucker AMS
Contract . This position reports to M1's Fort Rucker Security Manager/FSO.
Primary responsibilities include, but are not limited to the following:
* Experience supervising up to 10 employees IAW company policies and a Collective Bargaining Agreement desired.
* Experience supervising first responders to ensure employees are trained and prepared to respond immediately.
* Experience supervising multiple situations simultaneously is desired.
* Ability to ensure employees possess required qualifications/certifications and training standards are maintained.
* Experience in identifying and mitigating areas vulnerable to insider threats/active assailant situations.
* Experience with problem solving processes (Identifying the problem to developing recommendations) preferred.
* Experience in projecting and maintaining sufficient manpower, technical data, tools, and equipment to meet mission
requirements.
* Experience analyzing, sustaining and executing industrial security program within regulatory requirements desired.
* Other duties as assigned.
In addition, the candidate should possess the following requirements:
* Must be able to attain and maintain security clearance as required by PWS.
* Must be proficient in MS Office.
* Must be reliable, self-motivated, and able to deal with stressful situations while maintaining a professional attitude.
* Ensure compliance with the Performance Work Statement (PWS) and company procedures and policies.
* Ensure the safest work environment possible through the periodic inspection of facilities, vehicles, tools, and
equipment.
* Ensure attendance is monitored, manage timecards, and assign overtime as necessary.
* Experience maintaining and enforcing a Personnel Security Program desirable.
* Experience managing an Information Security Program desirable.
* Experience maintaining and updating an Information Security Plan is desired.
* Experience maintaining, updating and analyzing threats within a Physical Security Plan desired.
* Experience assessing, executing and adapting an Antiterrorism/Force Protection Program is preferred.
* Experience maintaining an Operations Security (OPSEC) Plan is preferred. (OPSEC level II desired.)
* Must be reliable, self-motivated, and able to deal with stressful situations and timelines while maintaining a professional
and non-confrontational attitude.
Education/Certification:
* High school diploma or equivalent (General Education Development (GED) Certificate) required.
Physical demands and Environmental Conditions:
* This classification activity is typically accomplished in an office environment and as such requires the scope of
physical movements and postures normally associated with these activities. Typical physical demands or activities
include climbing, standing, bending, stooping, pushing, reaching and walking. This classification is subject to moving
in and about aircraft hangars, outside environments, and/or other work areas as necessary.
M1 Support Services, a business headquartered in Denton, Texas provides a variety of professional, technical, and maintenance services
to the Department of Defense and government agencies.
M1 Support Services is an equal opportunity employer. All qualified applicants will receive consideration for employment without
regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.
M1 Support Services offers a comprehensive benefits package including several options for Medical, Dental, Vision, Life and Dependent
Life, AD&D, Short-and Long-term Disability. We also offer Flexible Spending Accounts for qualified health and dependent care expenses,
as well as a free Employee Assistance Program.

ABOUT THIS POSITION

As a Security Analyst at Waystar, you will play a vital role in detecting, analyzing, and responding to cybersecurity threats in real-time. You’ll work within our Security Operations Center (SOC), leveraging advanced tools to protect our hybrid cloud infrastructure. This position offers hands-on experience with threat intelligence, incident response, and proactive threat hunting in a collaborative, fast-paced environment.

WHAT YOU'LL DO

• Monitor and analyze security alerts and logs 24/7/365 using SIEM, EDR, IDS/IPS, and threat intelligence platforms.

• Investigate potential security incidents to determine scope, impact, and severity.

• Conduct root cause analysis and assist in containment, eradication, and recovery efforts.

• Participate in threat hunting activities to proactively detect and mitigate emerging threats.

• Collaborate with internal teams (IT, DevOps, Compliance) to resolve incidents and implement preventive controls.

• Create, maintain, and improve technical documentation and standard operating procedures (SOPs) for security incident detection and response.

• Assist in tuning and maintaining security tools and rulesets to enhance detection capabilities.

• Create and deliver reports on security incidents, trends, and metrics to SOC leadership and stakeholders.

• Contribute to user education initiatives and security awareness training across the organization.

WHAT YOU'LL NEED

• 2+ years of experience working in a Security Operations Center (SOC) or in a hands-on threat detection and response role.

• Understanding of Linux, Windows, and MacOS fundamentals.

• Strong understanding of security fundamentals, attack techniques (e.g., MITRE ATT&CK), and threat landscapes.

• Hands-on experience with log analysis, data correlation, and forensic investigation.

• Proficiency with security tools such as:

• SIEM (e.g., Chronicle, QRadar)

• EDR (e.g., CrowdStrike, SentinelOne)

• IDS/IPS (e.g., Suricata, Snort)

• Threat Intelligence Platforms (TIPs)

• Familiarity with hybrid cloud environments (e.g., AWS, Azure, GCP) and modern infrastructure models.

• Solid grasp of incident response lifecycle: detection, triage, containment, eradication, recovery, and post-mortem.

• Knowledge of NIST, CIS Controls, or other security frameworks.

• Excellent written and verbal communication skills with the ability to explain technical topics to non-technical stakeholders.

• The ability to create precise technical documentation.

• Ability to stay calm and focused under pressure and during high-severity incidents.

Preferred Qualifications

• Relevant certifications such as: CompTIA Security+ , CySA+ , GCIH , GCIA , Network+ , or equivalent

• Experience with automation and scripting (e.g., Python, PowerShell, SOAR tools).

• Exposure to compliance standards such as HIPAA, HITRUST, or SOC 2.

• Experience supporting 24x7 operations or working in a rotating shift environment.

ABOUT WAYSTAR

Through a smart platform and better experience, Waystar helps providers simplify healthcare payments and yield powerful results throughout the complete revenue cycle.

Waystar’s healthcare payments platform combines innovative, cloud-based technology, robust data, and unparalleled client support to streamline workflows and improve financials so providers can focus on what matters most: their patients and communities. Waystar is trusted by 1M+ providers, 1K+ hospitals and health systems, and is connected to over 5K commercial and Medicaid/Medicare payers. We are deeply committed to living out our organizational values: honesty; kindness; passion; curiosity; fanatical focus; best work, always; making it happen; and joyful, optimistic & fun.

Waystar products have won multiple Best in KLAS® or Category Leader awards since 2010 and earned multiple #1 rankings from Black Book™ surveys since 2012. The Waystar platform supports more than 500,000 providers, 1,000 health systems and hospitals, and 5,000 payers and health plans. For more information, visit waystar.com or follow @Waystar ( on Twitter.

WAYSTAR PERKS

• Competitive total rewards (base salary + bonus, if applicable)

• Customizable benefits package (3 medical plans with Health Saving Account company match)

• We offer generous paid time off for our non-exempt team members, starting with 3 weeks + 13 paid holidays, including 2 personal floating holidays. We also offer flexible time off for our exempt team members + 13 paid holidays

• Paid parental leave (including maternity + paternity leave)

• Education assistance opportunities and free LinkedIn Learning access

• Free mental health and family planning programs, including adoption assistance and fertility support

• 401(K) program with company match

• Pet insurance

• Employee resource groups

Waystar is proud to be an equal opportunity workplace. We celebrate, value, and support diversity and inclusion. Qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, disability status, genetics, marital status, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.

This applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.

Job Category: Technology/Engineering

Job Type: Full time

Req ID: R2694

Description

Envestnet is seeking a Security Analyst to join our Enterprise Security team. This is a hybrid role, with in-office work required at our Berwyn, PA office location.

Envestnet is transforming the way financial advice is delivered through its connected technology, advanced insights, and asset management solutions – backed by industry-leading service and support. Since 1999, Envestnet has served the wealth management industry and today supports trillions in platform assets, serving over a hundred thousand financial advisors. The vast majority of the nation’s leading banks, the largest wealth management and brokerage firms, and over 500 of the largest RIAs rely on Envestnet’s wealth management platform and solutions to drive business growth, boost productivity, and deliver better financial outcomes for their clients. 

Envestnet’s Strategy:

• Deliver the industry-leading wealth management platform, powered by advanced data and insights 
  
• Leverage our scale and efficiencies to serve our clients’ needs comprehensively 
  
• Enable financial advisors to deliver more holistic advice – reflecting a more complete view of their clients’ financial lives, and in a more connected environment
  

For more information, please visit

Job Summary:

We are seeking a proactive and detail-oriented Security Analyst to join our Envestnet's Cyber Defense Team. This role will report into the Director of Security Operations. This position plays a key role in safeguarding our organization's digital assets by actively monitoring security systems, responding to security incidents, and managing vulnerabilities across our infrastructure. This role also contributes to Threat Huntting, Security response Automation and continuously enhancing our overall security framework. As a vital member of our team, you will contribute significantly to the development and maintenance of our Security Operations Center (SOC) processes and procedures.

Job Responsibilities:

• Perform initial analysis and triage of security incidents, escalating to senior team members when necessary.
  
• Support day-to-day operations of the Security Operations Center (SOC)by monitor security alerts and events from various security tools (SIEM, EDR, IDS/IPS) and investigate potential security incidents.
  
• Act as a first responder to security incidents and participate all stages of the incident response lifecycle, which includes detection, analysis, containment, eradication, recovery, and post-incident review.
  
• Conduct vulnerability scanning across networks, applications, and systems to identify security weaknesses. Analyze vulnerability scan results, prioritize findings, and work with IT teams to facilitate remediation efforts.
  
• Work with IT and development teams to validate, patch, and resolve security findings.
  
• Document security configurations, incidents, and vulnerability remediation activities.
  
• Maintain and update SOC runbooks and security documentation, while contributing to the improvement of security operations processes and incident response playbooks.
  
• Engage in proactive threat hunting activities to uncover hidden threats and vulnerabilities and automating incident triage and response tasks using SOAR
  
• Assist in the research and evaluation of new security threats, vulnerabilities, and technologies.
  
• Collaborate with the offensive security team on purple teaming exercises using the Breach and Attack Simulation (BAS) platform.
  
• Participate in security awareness training initiatives for employees.
  
• Adherence to and application of Envestnet legal, compliance, risk, business continuity and administrative policy within the role and department(s) including the timely completion of training & awareness, affirmations and testing as requested. 
  
• As part of the responsibilities for this role, you will understand and readily support Envestnet's established corporate business practices, policies, internal controls and procedures designed to create value or minimize risk
  

Required Qualifications:

• Bachelor’s degree in computer science, Information Security, or a related field (or equivalent practical experience).
  
• 4+ years of experience in cybersecurity, with exposure to Security Operations, Incident Response, or Vulnerability Management.
  
• Relevant certifications such as CompTIA Security+, CySA+, or EC-Council CEH are a plus.
  
• Basic understanding of cybersecurity concepts, including network protocols, operating systems (Windows, Linux), and common attack vectors.
  
• Familiarity with security tools such as SIEM platforms, EDR solutions, and vulnerability scanners.
  
• Strong analytical and problem-solving skills with a keen eye for detail.
  
• Excellent communication skills, both written and verbal, with the ability to convey technical information clearly.
  
• Ability to work effectively in a team environment and independently when required.
  
• Eagerness to learn and adapt to new technologies and threats.
  

Envestnet: 

• Be a member of an innovative and industry leading financial technology and solutions company 
  
• Competitive Compensation/Total Reward Packages that include:
  
  • Health Benefits (Health/Dental/Vision)
    
  • Paid Time Off (PTO) & Volunteer Time Off (VTO)
    
  • 401K – Company Match
    
  • Annual Bonus Incentives
    
  • Parental Stipend 
    
  • Tuition Reimbursement
    
  • Student Debt Program
    
  • Charitable Match 
    
  • Wellness Program

Envestnet is an Equal Opportunity Employer.

#LI-AQ1