Job Description:
Primary Objectives:
- Assist in monitoring and analyzing security events using SIEM & EDR tools.
- Support vulnerability management activities, including scanning, tracking, and coordinating remediation efforts across systems and applications.
- Participate in identity-related incident investigations, including unauthorized access, account compromise, and privilege misuse.
- Contribute to the development and enforcement of security policies and procedures.
- Document findings, actions, and lessons learned from security incidents.
- Stay current with emerging threats, vulnerabilities, and industry best practices.
Major Areas of Accountability:
- Security Monitoring & Incident Response
- Monitor security alerts and logs using SIEM and other tools.
- Escalate and assist in triaging security incidents.
- Participate in incident investigations and contribute to root cause analysis and reporting.
- Security Tools & Infrastructure Support
- Assist in maintaining and tuning security tools (e.g., EDR/MDR, RMM).
- Support deployment and configuration of new security technologies.
- Help ensure tools are integrated and functioning as expected.
- Identity & Access Incident Remediation
- Investigate identity-related incidents such as unauthorized access, account compromise, and privilege misuse.
- Support implementation of identity protection measures (e.g., MFA, conditional access policies).
- Endpoint Remediation
- Perform hands-on remediation of individual servers and workstations, including patching, malware removal, and configuration fixes.
- Collaborate with desktop support and infrastructure teams to ensure secure endpoint configurations.
- Document remediation actions and update asset records accordingly.
- Policy & Awareness Support
- Contribute to the development and enforcement of security policies and standards.
- Assist in delivering security awareness training and phishing simulations.
- Provide feedback on user behavior and recommend improvements to awareness programs.
- Documentation & Reporting
- Maintain accurate records of incidents, vulnerabilities, and remediation activities.
- Prepare reports for internal stakeholders on security posture and incident trends.
- Document procedures and contribute to knowledge base articles.
- Other duties
- Follow existing incident, problem, request, and change management processes provide continual feedback to simplify and improve existing processes.
Education:
Associates degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience)
Experience:
- 2 or more years of experience working as a cybersecurity analyst / engineer role or equivalent role.
- Security+ certification
- Robust communication skills (verbal, written, and presentation skills)
Travel Requirements:
As needed <5 %
Physical Demands
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
While performing the duties of this job, the employee is regularly required to sit; use hands to finger, handle, or feel; reach with hands and arms; and talk or hear. The employee is occasionally required to stand; walk; and stoop, kneel, crouch, or crawl. The employee must occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this job include close vision, distance vision, peripheral vision, depth perception, and ability to adjust focus.
Compensation Information:
The compensation for this position ranges from $68,000 to $85,000 based on relevant education and experience.
ITW is an equal opportunity employer. We value our colleagues’ unique perspectives, experiences and ideas and create workplaces where everyone can develop their careers and perform to their full potential.
As an equal employment opportunity employer, ITW is committed to equal employment opportunity and fair treatment for employees, beginning with the hiring process and continuing through all aspects of the employment relationship.
All qualified applicants will receive consideration for employment without regard to race, color, sex, gender identity, sexual orientation, religion, national origin, age, disability, protected Veteran status or any other characteristic protected by applicable federal, state, or local laws.