Jobs · Legal · Pennsylvania

Security & Compliance Analyst

Silvi Materials · Fairless Hills, PA · 1 mo ago
LegalFull-time

About the role

We are seeking a Security & Compliance Analyst to support and strengthen our organization’s cybersecurity posture across a hybrid environment of on-premise systems and cloud platforms (including Microsoft Dynamics 365, SaaS applications, and operational technologies).

Responsibilities

  • Monitor security alerts, logs, and events across systems (firewalls, endpoints, servers, ERP, and SaaS platforms)
  • Investigate and respond to potential security incidents and vulnerabilities
  • Support endpoint protection, network security, and identity/access management initiatives
  • Affiliate with vulnerability scanning, patch management, and remediation tracking
  • Maintain and enforce IT security policies, standards, and procedures
  • Affiliate with internal and external audits, including evidence collection and documentation
  • Track and report on compliance metrics and risk posture
  • Identify, assess, and document security risks across systems and processes
  • Work with stakeholders to implement mitigation strategies
  • Conduct third-party/vendor risk assessments
  • Ensure secure data flow between systems (ERP, dispatch systems, APIs, middleware, etc.)
  • Review API integrations and authentication mechanisms
  • Collaborate on secure architecture for hybrid environments
  • Manage and audit user access across systems (Active Directory, Azure AD, ERP systems)
  • Conduct periodic access reviews and enforce least-privilege principles
  • Support security awareness training programs for employees
  • Promote best practices around phishing, data handling, and system access

Qualifications

  • Bachelor's or Associate’s degree in Information Technology or a related field
  • 2-5+ years of experience in cybersecurity, IT compliance, or risk management
  • Strong understanding of network security, identity & access management, and endpoint security
  • Experience with security frameworks (NIST, CIS, ISO, SOC 2)
  • Familiarity with cloud platforms (Microsoft 365, Azure preferred)
  • Experience reviewing logs, alerts, and performing incident response
  • Experience in the concrete/construction industry is also a plus
  • Strong communication and interpersonal skills
  • Excellent organizational skills and attention to detail
  • Able to manage multiple priorities in a fast-paced environment

Preferred Experience

  • In a hybrid environment (on-prem + cloud + SaaS)
  • Exposure to ERP systems (e.g., Microsoft Dynamics 365)
  • Knowledge of API security and integrations
  • Familiarity with SIEM, MDM, and EDR tools
  • Certifications such as Security+, CISSP, CISM, or CISA

Key Skills

  • Strong analytical and problem-solving ability
  • Attention to detail and documentation discipline
  • Ability to communicate technical risks to non-technical stakeholders
  • Organized and able to manage multiple priorities

Benefits

Leading Benefits Medical, Prescription, Dental, Vision, 401K, Pension, Short- and Long-Term Disability, Life Insurance, Tuition Reimbursement.

Similar jobs