Information Security Analyst I

Description

Join Laserfiche as an Information Security Analyst I and play a hands-on role in defending the systems that power a global leader in digital transformation. In this dynamic position, you’ll dive into real security operations—monitoring, detection engineering, vulnerability management, and security configuration—while helping grow the enterprise security program.

You’ll work across cloud and on‑prem environments, implementing and continuously improving security controls that safeguard critical applications, data, and infrastructure. This is a highly collaborative role where you’ll partner with teams across ITS, the Business Transformation Office, GRC, Development, and more to ensure Laserfiche’s security posture is strong, scalable, and aligned with business goals.

If you’re passionate about hands-on security work, eager to learn, and excited to make a direct impact on enterprise protection, this role offers the opportunity to grow, innovate, and contribute from day one.

Location:

• Hybrid: Three days per week (Tuesday, Wednesday and Thursday) in-office in Long Beach, CA
• Remote work from home on Mondays and Fridays
• Periodic after-hours support may be required for security incidents or maintenance activities. 

About the Role - Key Responsibilities:

Security Engineering and Control Implementation

• Configure and manage security tools including endpoint detection and response (EDR), SIEM, vulnerability management platforms, email security, identity and access management (IAM) and other security technologies. 
• Support ITS and Development teams in integrating security controls into system architecture and deployment workflows.
• Assist in the evaluation and implementation of new security technologies to enhance prevention, detection and response capabilities.
• Safeguard Laserfiche information in accordance with Laserfiche Information Security Policies.

Security Monitoring and Incident Response

• Monitor security events and alerts from SIEM, EDR, cloud-native logging tools and other detection platforms.
• Perform triage, investigation and root cause analysis of security incidents and suspicious activity.
• Support incident response efforts in coordination with ITS and business stakeholders.
• Develop and tune detection rules, alerts and automated response playbooks to improve security visibility and reduce false positive rates.
• Document incidents, response actions and lessons learned to strengthen operational maturity.
• Participate in tabletop exercises and incident response testing activities.

Vulnerability Management and Threat Mitigation

• Perform recurring vulnerability scans across infrastructure, endpoints, applications and cloud environments.
• Validate findings, prioritize remediation based on risk and track mitigation progress with system owners.
• Conduct configuration reviews and security assessments of systems and cloud resources.
• Stay current on emerging threats, vulnerabilities and exploit techniques, and recommend appropriate countermeasures.
• Partner with ITS and Development teams to drive timely remediation of security findings.

Cloud and Identity Security

• Support security configuration and monitoring of cloud and SaaS environments including AWS, Microsoft 365 and Okta. 
• Review IAM roles, policies and permissions to enforce least privilege and proper access controls. 
• Assist in the secure implementation of new cloud services and infrastructure changes. 

Collaboration, Documentation and Continuous Improvement

• Contribute to security awareness initiatives, including phishing simulations, training content and employee communications to promote a security-conscious culture.
• Provide technical security guidance to internal stakeholders and assist in responding to security-related customer or vendor inquiries.
• Support internal audits and compliance initiatives by gathering technical evidence of control implementation.
• Participate in risk assessments, vendor reviews and architecture design discussions.
• Help refine security policies, standards and procedures based on operational experience.

About You - Essential Qualifications: 

• Bachelor’s degree in cybersecurity, information systems, computer science or related field. 
• Experience in security operations, information security or a related technical role.
• Relevant certifications such as Splunk, Security+, CySA+, BTL1, PSAA or AWS Cloud Practitioner are preferred.
• Experience supporting on-premises, hybrid and cloud environments.
• Foundational understanding of security operations, including monitoring, incident response and vulnerability management.
• Familiarity with SIEM platforms (Splunk preferred), EDR solutions and vulnerability management tools.
• Foundational understanding of network security principles including segmentation, firewall management, VPN technologies and traffic analysis.
• Experience with Windows and Linux system administration and hardening practices.
• Awareness of common attack frameworks such as MITRE ATT&CK and prevalent adversary techniques.
• Strong analytical and problem-solving skills with attention to detail.

The salary range varies, and pay is based on several factors including but not limited to education, certifications (if applicable), candidate’s geographic region, job-related knowledge, skills and years of experience amongst other factors. 

• $40.87 - $52.88 per hour

Perks & Benefits at a Glance

• Generous time off:
  • 15 Days of Vacation
  • 3 Floating Holidays
  • 2 Paid Volunteer Days
  • 9 Paid Holidays
• Hybrid Work Environment
• Free Parking: covered and EV charging stations
• Various 401 (k) Investment Options and Generous Company Match
• HMO and PPO Medical Care Options 

Applicants must be authorized to work for Laserfiche in the United States on a full-time basis without the need for employer sponsorship. We are unable to sponsor new employment visas, or take over sponsorship of existing employment visas, at this time.

About Us

Laserfiche is a global leader in intelligent document management and business process automation, dedicated to helping organizations drive digital transformation. Headquartered in Long Beach, California, Laserfiche empowers businesses of all sizes—from dynamic startups to Fortune 500 enterprises—to accelerate productivity, improve collaboration, and deliver exceptional customer experiences.

Through scalable workflows, customizable digital forms, and AI-powered automation, the Laserfiche platform enables teams to simplify complex processes and operate with greater efficiency. Our no-code solutions empower employees to innovate, adapt quickly, and make data-driven decisions that move their organizations forward.
 
 

With a strong global presence and offices across North America, Europe, and Asia, Laserfiche is recognized for its commitment to innovation, quality, and customer success. Our people-first culture fosters professional growth, continuous learning, and collaboration—making Laserfiche a place where talented individuals can shape the future of digital enterprise technology.

Learn more about our team  here . 

Laserfiche  complies with all Equal Opportunity and Affirmative Action regulations. Laserfiche makes all employment decisions – such as recruiting, hiring, training, promotion, compensation, professional development practices, discipline and termination – without regard to race, religion, color, national origin, ancestry, citizenship, sex, pregnancy, age, creed, physical or mental disability, medical condition, genetic characteristic, marital status, veteran status, gender identity/expression, sexual orientation or any other characteristic protected by law, except as may be permitted by law.

Laserfiche provides reasonable accommodations for applicants with disabilities upon request. For more information, please contact Talent Acquisition at or View phone number on jobs.jobcopilot.com. 

Pursuant to the California Fair Chance Act, Los Angeles County Fair Chance Ordinance for Employers, and the Los Angeles Fair Chance Initiative for Hiring Ordinance, we will consider for employment qualified applicants with arrest and conviction records. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness, meet client expectations, standards, and accompanying requirements, and safeguard business operations and company reputation. 

#LI-Hybrid