IT Security Analyst - USA Based

C

Canadian Bank Note Company

IT Security Analyst - USA Based

Danville, VA
Full Time
Paid
  • Responsibilities

    Job Description

    Internal Job Title: IT Security Analyst

    Job Type: Permanent, Full-Time

    Job Location: United States (NY, NJ, PA, MD, DE, VA, NC, or WI-based preferred)

    Work Model: Remote (on-site employer/customer visits required)

    Position Summary

    As an IT Security Analyst at CBN Secure Technologies Inc., you will play a key role in both the strategic and hands-on protection of our enterprise systems. This is not a purely monitoring or compliance role — you will actively deploy, configure, and secure systems in complex on-premises environments where automation is central to our operations.

    You will be responsible for hardening infrastructure, integrating security systems into deployments, and directly supporting the secure configuration of enterprise applications while managing SIEM operations, incident response, and vulnerability reviews. Your work will also include building automation pipelines, performing system audits, and collaborating with infrastructure teams to enforce security standards from the ground up. We encourage fresh ideas and value your input on how security should be implemented, giving you the opportunity to shape our security program.

    Responsibilities

    • Technical Security Operations * Deploy, configure, and harden Linux systems and applications with a security-first approach, ensuring on-premises installations follow best practices. * Build, maintain, and secure pipelines using automation and scripting languages to streamline configuration management and enforce security baselines. * Collaborate with infrastructure and operations teams to integrate security into deployments, upgrades, and system migrations.

    • Security Incident and Event Management * Design, implement and maintain automated processes within the SIEM environment to enhance threat detection, incident response and log management. * Collaborate with cross-functional teams to integrate security controls and enhance the overall effectiveness of the SIEM solution. * Develop and maintain automated responses to common security incidents.

    • Operational Security Prime * Collaborate with Risk and Compliance personnel to gather evidence for Compliance requirements (SOC II, ISO 27001, PCI, NIST 800-53, etc.). * Develop and implement processes for daily/weekly/monthly evidence collection, ensuring accuracy, completeness and timeliness in response to audit requests. * Collaborate with stakeholders to address compliance gaps and implement corrective actions.

    • Technical Security Analysis * Monitor SIEM alerts and investigate security incidents to determine the root cause and appropriate remediation actions. * Design, implement and maintain automated security processes to enhance efficiency and reduce response times. * Prioritize and remediate identified vulnerabilities in collaboration with system owners and IT teams. * Create and maintain documentation related to security policies, procedures and configurations.

    • Collaboration and Communication * Communicate security risks and findings to technical and non-technical audiences effectively. * Build relationships with stakeholders across groups to understand needs and requirements and the associated notification process.

  • Qualifications

    Qualifications

    Education and Knowledge

    • Bachelor's degree in Computer Science (or similar) or an equivalent combination of relevant education and additional relevant work experience
    • SANS, ISACA or GIAC certification is preferred
    • Knowledge and experience with the following:
      • Systems & Infrastructure
        • Hands-on experience with Linux administration
        • Experience with configuration management and automation tools (Puppet, Ansible, Terraform)
      • Compliance & Frameworks
        • Exposure to regulatory and security frameworks (NIST 800-53, SOC II, ISO 27001, PCI-DSS)
        • Experience participating in audit evidence collection and remediation efforts is an asset
      • Log Management and/or SIEM systems experience (asset)

    Experience

    • 4+ years in Systems Administration or similar role
    • 1+ year in an IT security related position is preferred

    Technical Environment

    • OS/Command Line : Linux, Windows
    • Security Technologies : IAM/RBAC, Conditional Access, MFA, H/NIDS, Traditional Perimeter and Endpoint security
    • Automation Languages : Python, Ruby, Bash, PowerShell
    • Source Control & CI/CD: Git, GitLab, GitHub, etc.
    • Virtualization : VMWare, oVirt, XCPng, Kubernetes, Docker, etc.
    • **Standards & Benchmarks: **CIS Benchmarks, DISA STIGs, NIST National Vulnerability Database (NVD), etc.

    Competencies and Soft Skills

    • Self-Direction & Initiative

    Comfortable taking ownership of tasks with minimal supervision, proactively identifying areas for improvement, and driving them to completion.

    • Analytical & Problem-Solving Mindset

    Ability to break down complex security and system challenges, identify root causes, and design practical, effective solutions under time constraints.

    • Technical Curiosity & Growth Mindset

    Eagerness to learn new technologies, dive deep into open-source tools, and continuously improve both technical skills and security practices.

    • Collaboration & Teamwork

    Strong interpersonal skills to work closely with IT operations, development, and compliance teams, fostering a cooperative and solution-focused culture.

    • Clear & Adaptable Communication

    Capable of explaining technical issues to both technical and non-technical audiences, tailoring the message appropriately for stakeholders.

    • Resilience & Adaptability

    Able to remain focused and effective under pressure, particularly during incident response, and flexible when priorities shift in a fast-paced environment.

    Mandatory Requirements

    • Legal Status : Must be legally eligible to work in USA
    • Language : Must be fluent in English (reading, writing, speaking)
    • Travel : Ability to travel approx. 3-6 weeks/year

    Additional Information

    Equal Opportunity Employer

    CBN STI is committed to achieving a skilled and diversified workforce that reflects the diversity of the American population. We encourage applications from everyone, regardless of age, race, disability, gender identity, religion, sexual orientation, or marital status. We are also committed to developing inclusive, barrier-free selection processes and work environments. If contacted regarding this competition, please advise the interview coordinator of any accommodation measures you may require.