IT Compliance and Security Analyst

Foundation Building Materials

$73K — $94K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • 5-7 years of information security experience focusing on compliance and risk assessments.
  • Knowledge of PCI, SOC compliance standards, and security initiatives.
  • Familiarity with network security technologies and their integration into enterprise systems.
  • Proficient in penetration testing and vulnerability assessment techniques.
  • Experience with identifying cloud and network vulnerabilities across platforms like Azure, AWS, and GCP.
  • Strong communication skills for relaying security information to stakeholders.

Responsibilities

  • Assess and mitigate information security risks and vulnerabilities across the enterprise.
  • Monitor computer networks and systems for security-related events.
  • Prepare recommendations for corrective actions following security assessments.
  • Investigate and document security breaches and incidents.
  • Facilitate risk remediation activities and report on mitigation efforts.
  • Support IT audits and compliance activities with regulatory standards.
  • Collaborate with teams to implement protective security technologies.

Benefits

  • Comprehensive medical, dental, and vision insurance.
  • Health Savings Account (HSA) and Flexible Spending Account (FSA).
  • Company-paid life insurance and accident coverage.
  • Optional voluntary life and accident insurance.
  • Critical illness and hospital indemnity insurance available.
  • Legal insurance plan for added security.
  • Generous paid time off (PTO) and company holidays.
  • 401(k) plan with a generous company match.
Full Job Description
Overview

Position Overview

The IT Compliance and Sec Analyst is responsible for supporting the day-to-day operational aspects of IT system security designs, policies, and solutions in partnership with Security Architects, Technical Operations, and Information Security leadership. This role participates in projects across business and IT teams and supports enterprise information security initiatives that protect company systems, networks, applications, and information assets while reducing organizational risk and maintaining compliance requirements.

Responsibilities and Qualifications

Key Responsibilities

Information Security Operations & Risk Management
  • Assess information security risks and facilitate remediation of identified vulnerabilities across the enterprise.
  • Assess information risks and facilitate remediation of identified vulnerabilities affecting networks, systems, and applications.
  • Monitor computer networks, systems, and cloud environments for security-related events and concerns.
  • Prepare findings and recommendations for corrective actions related to identified security risks and vulnerabilities.
  • Investigate and document security breaches and cybersecurity incidents.
  • Facilitate and monitor risk remediation activities and report findings related to risk mitigation efforts.
  • Perform vulnerability scans in partnership with Technical Operations teams and support remediation efforts.


Security Compliance, Audits & Governance
  • Support IT audits, IT risk assessments, and regulatory compliance activities.
  • Perform assessments of the IT security and risk posture across networks, systems, software applications, and third-party vendors as part of the Vendor Management Program.
  • Support compliance initiatives related to PCI, SOC, and other applicable security requirements. Infrastructure Security & Technical Collaboration.
  • Collaborate with Technical Operations teams to implement and maintain security measures designed to protect systems and information infrastructure.
  • Support the implementation and operation of security technologies including firewalls and data encryption solutions.
  • Participate in cross-functional initiatives involving business and IT stakeholders to support enterprise information security objectives. Security Awareness & Continuous Improvement.
  • Stay current on information security trends, standards, emerging threats, and industry developments.
  • Develop company-wide information security best practices and recommendations.
  • Research security enhancements and provide recommendations to management.
  • Support and administer the organization's Security Awareness Program.


Additional Responsibilities & Miscellaneous
  • Perform other duties as assigned to support IT and corporate objectives.


Qualifications
  • Experience in an information security related role with exposure to PCI, SOC compliance, risk assessments, and related security initiatives.
  • Experience with networking security technologies and integrating security technologies into enterprise environments.
  • Experience with computer network penetration testing, vulnerability testing, and related techniques.
  • Experience identifying, mitigating, and communicating cloud, network, and system vulnerabilities and misconfigurations across Azure, AWS, and GCP environments.
  • Experience interpreting and communicating security-related information to employees and business stakeholders.
  • Prior experience performing security reviews and risk assessments preferred.
  • Experience evaluating security products and managing vendor relationships preferred.
  • Strong communication and time management skills


Compensation and Benefits

Reports To

VP Compliance, Security & Adv Tec

Compensation

The listed pay range reflects the expected base rate for this position. Within the range, individual pay may vary based on experience, qualifications, and work location within state. This is a full-time position with competitive pay and benefits.
  • Base: $73,000 - $94,000 per year
  • Bonus: 10% Target Bonus
  • Total Compensation (Base + Bonus): The successful candidate could reasonably expect a Total Compensation Package in the range of $77,000 - $108,000
  • Equity: This role is not eligible for equity opportunities, awards or grants.


Benefits

At FBM, we're committed to supporting our employees both personally and professionally. We offer a comprehensive and competitive benefits package designed to help you thrive inside and outside of work. Our excellent package includes:
  • Medical, Dental and Vision plans with leading national providers
  • Health Savings Account (HSA) / Flexible Spending Account (FSA)
  • Company Provided Basic Life and Accident Death & Dismemberment (AD&D)
  • Voluntary Life and Accidental Death & Dismemberment (AD&D)
  • Critical illness, Hospital Indemnity, Accident Coverage
  • Legal Insurance Plan
  • Paid Time Off (PTO) & Paid Company Holidays
  • 401(k) plan with generous company match


Posting Period

This job will be posted for at least 5 days, starting on the initial post date reflected above.

Salary Range

Min: USD $73,000.00/Yr., Max: USD $94,000.00/Yr.

Similar Jobs

More Jobs at Foundation Building Materials

More Information Technology Jobs

Find similar IT Compliance and Security Analyst jobs: