IT Security Analyst en Ruoff Mortgage Company Inc

Description

Position Summary

The IT Security Analyst is responsible for protecting the organization’s digital assets by implementing and monitoring security measures. This role plays a key part in identifying vulnerabilities, auditing access controls, and responding to security incidents. The analyst ensures compliance with internal security policies and industry best practices, working independently and collaboratively within the IT team to safeguard systems, networks, and data.

Essential Responsibilities

• Monitor and maintain the company’s security infrastructure, including IAM systems, endpoint protection, and phishing detection tools.
• Review and audit access privileges across systems such as Active Directory, Azure AD, and cloud platforms to ensure proper user access.
• Assist in developing and maintaining security benchmarks (e.g., CIS standards) and ensure systems are configured accordingly.
• Investigate and respond to security alerts, incidents, and suspicious activities, escalating issues as necessary.
• Maintain accurate software/hardware asset inventories and support compliance reporting.
• Conduct periodic security assessments and assist in preparing documentation for audits.
• Promote user awareness and education on security policies and safe computing practices.

Knowledge, Skills and Abilities

• In-depth understanding of cybersecurity concepts, IAM practices, and security frameworks such as CIS Benchmarks.
• Familiarity with M365, Azure AD, networking protocols, and endpoint security tools.
• Strong analytical, problem-solving, and organizational skills.
• Excellent written and verbal communication, including technical documentation.
• Ability to handle confidential information with discretion and integrity.

Requirements

Experience and Training 

• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field required.
• Minimum of 3 years of experience in a cybersecurity, IT security, or IT analyst role.
• Industry certifications (e.g., Security+, CISSP, CEH) preferred.
• Experience with log analytics, phishing mitigation, and vulnerability assessments is a plus.

Physical Demands and Work Environment

Physical Demands:

• Mostly sedentary, however, while performing the duties of this job, the employee is occasionally required to walk; reach with hands and arms; stoop; talk and hear.
• Extensive reading and computer use is expected more than 50% of the time. Receiving and expressing detailed information verbally, in person and by telephone is essential. Must be able to verbally communicate effectively with others.
• Occasionally lift and/or move up to 15 pounds.
• Regular attendance is necessary and essential to this position.

Work Environment:

• Professional atmosphere in a branch environment
• Routinely uses office equipment such as computers, phones, photocopiers, filing cabinet and fax machine. 

Job Dimensions 

Internal Relationships: All internal staff 

External Relationships: Software and other technical systems vendors.