Security Analyst

At IWCO, we spend our days in the relentless pursuit of better ideas, better creativity and better performance across all direct response marketing channels. It's about being impactful, disciplined and measurable, while enjoying the process, being a part of a supportive team and having some fun along the way.

IWCO cares and plays an active role in our communities. We also work closely with industry partners, like the U.S. Postal Service, paper suppliers, technology innovators and execution partners to drive added value for our clients, push creativity, decrease costs and to drive better performance.

If you're thinking of a new career, every day at IWCO we're about doing the same thing for our employees as we do for our clients: Making Better HappenSM. We care about results. And we care about each other. We all strive to be better today than we were yesterday. We offer a competitive compensation and benefits package and on-site wellness programs - not to mention the opportunity to work with the most talented people in marketing who'll challenge you and help you become better every day.

We offer a competitive compensation package, including paid time off, medical benefits, personal time, and paid holidays.

Overall Summary:

The Security Analyst I participates in all aspects of IWCO's Information Security program. This includes governance, risk, and compliance (GRC), audit, security testing and assessment, third-party vendor management, event monitoring and response, awareness and training, and continuous improvement efforts.

Primary Duties/Responsibilities:

• Facilitate the completion of questionnaires and security, compliance, and client audits.
• Document, maintain and enforce information security related policies, procedures, standards, and processes.
• Assist in the creation, distribution and monitoring of security awareness program.
• Identify strengths and weaknesses of existing processes, methods, and tools.

• Support continuous security assessment using vulnerability management tools to assess and mitigate vulnerabilities.
• Review of IT systems and applications, performing regular tuning, and health and integrity checks of security systems to ensure proper function and monitoring.
• Coordinate communications to timely resolve security and compliance issues.
• Participate in the incident response team and review alerts from the Security Incident and Event Management (SIEM).
• Help safeguard IWCO information systems by regularly engaging in authorized ethical hacking and penetration testing using industry best practices and guidelines.

• Remain informed on key regulations, compliance initiatives, threats, and technological advancements.
• Perform other (or other related) duties as applicable or assigned.

Required Skills/Abilities/Competencies:

• Superior analytical, evaluative and problem-solving abilities.
• Exceptionally self-motivated and directed.
• Ability to motivate others in a team-oriented, collaborative environment.
• Ability to organize, prioritize and allocate workload for optimum efficiency.
• Excellent written, verbal, and interpersonal communication skills and ability to interact effectively with all levels internally and externally.
• Capacity to work collaboratively with remote sites and teams, as well as independently.
• Prioritize tasks meeting critical deadlines while maintaining accuracy and quality.
• Microsoft Office proficiency especially Word, Excel, and PowerPoint.

Education and Experience:

• Bachelor's Degree in MIS, Computer Science, Engineering, or related degree, or possess 1 years' related work experience in IT audit, corporate security, or compliance.
• Experience with IT and Security tools and technologies is preferred (e.g., Azure / O365, Endpoint Detection & Response, IPS/IDS, Kali Linux, web filtering, etc.).
• General knowledge of IT systems and security standards.
• Prior work with ISO/IEC 27001/2, SOC2, NIST, HIPAA, PCI, etc.
• Project Management experience.
• Experience with Business Analytics tools (e.g., Power BI, Qlik, Tableau)
• Security certification (SSCP, Security ) or obtain within one year of hire.

Physical Requirements:

• Ability to work 8 hours consecutively.
• Prolonged periods of sitting at a desk and working on a computer.
• Occasional Travel: 10%