Security & Compliance Analyst
Silvi Materials · Fairless Hills, PA · 1 mo ago
LegalFull-time
About the role
We are seeking a Security & Compliance Analyst to support and strengthen our organization’s cybersecurity posture across a hybrid environment of on-premise systems and cloud platforms (including Microsoft Dynamics 365, SaaS applications, and operational technologies).
Responsibilities
- Monitor security alerts, logs, and events across systems (firewalls, endpoints, servers, ERP, and SaaS platforms)
- Investigate and respond to potential security incidents and vulnerabilities
- Support endpoint protection, network security, and identity/access management initiatives
- Affiliate with vulnerability scanning, patch management, and remediation tracking
- Maintain and enforce IT security policies, standards, and procedures
- Affiliate with internal and external audits, including evidence collection and documentation
- Track and report on compliance metrics and risk posture
- Identify, assess, and document security risks across systems and processes
- Work with stakeholders to implement mitigation strategies
- Conduct third-party/vendor risk assessments
- Ensure secure data flow between systems (ERP, dispatch systems, APIs, middleware, etc.)
- Review API integrations and authentication mechanisms
- Collaborate on secure architecture for hybrid environments
- Manage and audit user access across systems (Active Directory, Azure AD, ERP systems)
- Conduct periodic access reviews and enforce least-privilege principles
- Support security awareness training programs for employees
- Promote best practices around phishing, data handling, and system access
Qualifications
- Bachelor's or Associate’s degree in Information Technology or a related field
- 2-5+ years of experience in cybersecurity, IT compliance, or risk management
- Strong understanding of network security, identity & access management, and endpoint security
- Experience with security frameworks (NIST, CIS, ISO, SOC 2)
- Familiarity with cloud platforms (Microsoft 365, Azure preferred)
- Experience reviewing logs, alerts, and performing incident response
- Experience in the concrete/construction industry is also a plus
- Strong communication and interpersonal skills
- Excellent organizational skills and attention to detail
- Able to manage multiple priorities in a fast-paced environment
Preferred Experience
- In a hybrid environment (on-prem + cloud + SaaS)
- Exposure to ERP systems (e.g., Microsoft Dynamics 365)
- Knowledge of API security and integrations
- Familiarity with SIEM, MDM, and EDR tools
- Certifications such as Security+, CISSP, CISM, or CISA
Key Skills
- Strong analytical and problem-solving ability
- Attention to detail and documentation discipline
- Ability to communicate technical risks to non-technical stakeholders
- Organized and able to manage multiple priorities
Benefits
Leading Benefits Medical, Prescription, Dental, Vision, 401K, Pension, Short- and Long-Term Disability, Life Insurance, Tuition Reimbursement.