Security Analyst

iT1, a leading national technology solution provider headquartered in Tempe, AZ, is looking for a skilled and experienced Security Analyst to join our team. iT1 has been ranked as one of Arizona’s Best Places to Work for over a decade, running in the Small Business category. You will be exposed to many of the top technology offerings in the market and can work with some of the most talented people in the country.

As a Cybersecurity Analyst, you are expected to have a strong technical background in security operations, threat detection, and incident response. This role is responsible for protecting both internal and customer environments while serving as a key operational interface with Managed Detection and Response (MDR) partners.

You will contribute to the maturity and scalability of security operations by building processes, developing runbooks, and enabling internal teams to consistently and effectively respond to security events.

Key Responsibilities:

Threat Monitoring and Incident Response:

• ·Monitor security tools and platforms for suspicious activity and potential threats.
• Investigate and triage alerts, respond to incidents, and document findings, root cause, and remediation actions.

MDR Customer and Partner Interface:

• Serve as the primary operational interface between customers, MDR providers, and internal teams for security events and escalations.

• Coordinate incident response activities across MDR partners and internal teams
• Communicate security incidents, risks, and remediation status to customers
• Participate in incident reviews, RCA discussions, and customer meetings
• Ensure MDR services align with customer SLAs and contractual requirements
• Escalate critical risks and ensure timely resolution across stakeholders

Vulnerability and Risk Management:

• Perform vulnerability assessments and coordinate remediation activities across environments.
• Identify and prioritize risks and recommend mitigation strategies to internal leadership and customers.

Security Operations and Tooling:

• Maintain and tune security tools including SIEM, EDR, firewalls, and intrusion detection/prevention systems.
• Analyze logs and telemetry to identify threats and improve detection capabilities.

Process Development and Runbooks:

• Develop and maintain security operations processes, SOPs, and incident response runbooks to support consistent and scalable service delivery.
• Create repeatable workflows for incident detection, escalation, and remediation
• Continuously refine playbooks based on lessons learned and threat intelligence
• Support onboarding of new customers by defining operational procedures

Training and Enablement (Help Desk & Infrastructure):

• Partner with Help Desk and Infrastructure teams to build security awareness and operational readiness.
• Deliver training on security tools, processes, and escalation procedures
• Enable teams to identify, triage, and escalate security events appropriately
• Provide ongoing guidance to improve cross-team collaboration and response effectiveness

Governance, Compliance, and Documentation:

• Support development and enforcement of security policies, standards, and procedures.
• Participate in audits and maintain documentation aligned to frameworks such as ISO 27001, NIST, SOC 2, and CMMC.

Continuous Improvement:

• Stay current with emerging threats, vulnerabilities, and industry trends.
• Recommend and implement improvements to strengthen security posture across internal and customer environments.

Technical Requirements:

• 2+ years of experience in cybersecurity, SOC operations, or managed security services
• Experience working with MDR providers or managed security environments
• Strong understanding of incident response processes and threat detection
• Experience developing documentation, runbooks, or operational processes
• Ability to communicate technical security issues to both technical and non-technical audiences
• Experience with Microsoft Security tools, CrowdStrike, Palo Alto, SentinelOne
• Strong analytical, problem-solving, and organizational skills
• Ability to manage multiple priorities and respond effectively under pressure

Preferred Certifications:

• CompTIA Security+
• CompTIA CySA+
• Certified Ethical Hacker (CEH)
• GIAC (GSEC, GCIH)
• Microsoft Security Certifications (preferred)

Physical Demands

• Sit at a computer for 8 hours per day
• Keyboarding for 8 hours per day
• Near Vision (working with small objects or reading small print)
• Speaking (communicating information to clients/coworkers)
• Hearing Requirements (In person speech, telephone, other sounds)

• Medical, dental, and vision benefits with highly subsidized premiums
• Two weeks paid time off in your first year, with increasing PTO as tenure increases, and most major holidays off
• 401(k) Plan with employer match
• Onsite Fitness Center
• Onsite Monthly Massages