Security Analyst

About Vertilocity Founded in 2007 as a Pittsburgh‑based IT services firm, Vertilocity has grown through strategic partnerships and now has offices in North Carolina, Colorado, New Jersey, and Pennsylvania. We provide consulting services and solutions to a diverse portfolio of clients spanning Fortune 500 companies and private businesses across the eastern United States and beyond. Summary We are seeking a dynamic and experienced Security Analyst to join our team. The ideal candidate will possess a strong background in IT consulting, with expertise in analyzing business processes, identifying software solutions, and implementing technology‑driven strategies to meet client needs. The Security Analyst will be responsible for protecting an organization’s computer systems, networks, and data from cyber threats. They monitor systems for security breaches, investigate violations, implement security measures, and respond to incidents. The role involves assessing and maintaining security policies, tools, and strategies to safeguard information. Qualifications Bachelor’s degree in computer science, Information Technology, or related field preferred. 2+ years of experience in cybersecurity or a related field. Experience with Microsoft Windows Server, Microsoft 365, Microsoft Azure, Barracuda Email Defense, Fortinet, SonicWall, Axcient 365, Datto BCDR, Arctic Wolf, Sentinel One, ThreatLocker, Huntress, Perimeter 81, Kaseya Dark Web ID, Cisco DUO, Cisco Umbrella, RapidFire Tools: Network Detective, Compliance Manager GRC, VulScan. Strong problem‑solving and decision‑making abilities. Familiarity with threat intelligence platforms and incident response. Excellent communication skills to articulate security issues to both technical and non‑technical audiences. Ability to work in a team and collaborate with various departments. Responsibilities Incident Response Sentinel One, Huntress, Defender for Endpoint monitoring and response. Email account takeover monitoring and response (Barracuda, M365). SIEM alert response and coordination with SOC team. ThreatLocker – required application blocked. Incident investigation (M365, Windows servers, firewalls, etc.). Incident‑related client communication. Maintenance/Management Firewall security configuration and review. Create and maintain best practices documentation. Firewall firmware updating. Vulnerability scanning – review and response. VolScan, Sentinel One, Arctic Wolf. Developing response plan and prioritizing. Internal and client reporting and follow‑up. KnowBe4 training and phishing campaigns for existing clients. Onboarding new clients and setting up campaigns. Managing groups and tailored training for very targeted individuals. ThreatLocker – managing approved applications and groups. Microsoft Windows and Microsoft 365. Security best practices review. Active Directory. Intune/Endpoint. M365 security. M365 Purview (compliance). Create and maintain documentation on recommended baseline configurations. Compliance Management of compliance portals. Risk assessment. Policy and procedure review. Pen test review. Network assessment. Controls assessment. Requirements assessment (gap analysis). Evidence gathering. Developing a plan of action. Written evaluation of risks. Evaluation of potential impact of mitigations. Prioritization of mitigations based on risk, cost, time to implement, potential impact. Presentation of PoA to client executives and technical decision makers. Vendor technical review. Risk evaluation. Supply chain evaluation. Privacy policy evaluation. Employee training and attestation management. Deployment of monitoring tools. Continuous monitoring of compliance status. Disaster Recovery Testing/Documentation Restoring files, folder structure, email from backup tools. Local and cloud virtualization of backups to validate restoration works and systems function. Documentation of the process and procedures. Issues and special directions for each workload. Required order of operations for restore. Evidence of testing for compliance purposes. Development and maintenance of disaster recovery policies for client review and approval. Other duties as required by the needs of the organization. Physical Requirements Travel is required for this position (mostly local). Must be able to lift 50 lbs. and sit for extended periods of time. Benefits We Offer Competitive compensation. Lucrative new business and employee referral bonuses. Anniversary bonus. Open paid‑time‑off policy. Flexible work environment to offer work/life balance. 401(k) plan with company match and safe harbor contributions. Medical, dental, and vision insurance. Company‑paid life insurance. 9 paid holidays. Annual performance reviews. Equal Employment Opportunity Vertilocity provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. #J-18808-Ljbffr