IT Security Analyst at jetsupport

About JSSI Founded in 1989 and headquartered in Chicago, Jet Support Services, Inc. (JSSI) is the largest independent provider of hourly cost maintenance programs for business aviation. JSSI delivers comprehensive coverage for engines, airframes, and auxiliary power units (APUs) across more than 300 different aircraft makes and models, helping owners and operators stabilize maintenance budgets, maximize aircraft availability, and protect asset value throughout the lifecycle of ownership.   JSSI has built a portfolio of complementary business lines designed to simplify the economic and technical complexity of business aviation; these include Maintenance teams, Traxxall maintenance tracking software, Parts & Engines, Conklin aircraft cost and performance data, and Aviation Capital asset-based financing solutions. Together, these offerings support owners, operators, and maintenance providers with integrated tools spanning ownership and maintenance planning, execution, and financial management.   With more than 6,500 aircraft supported through programs and software platforms, JSSI leverages its unique independence, unmatched scale, and data-driven insight to deliver customized solutions and support models aligned to the interests of each client — regardless of aircraft platform. JSSI is backed by leading institutional investors GTCR, Genstar Capital, and Blackstone. Learn more at jetsupport.com.  Duties and Responsibilities: • Monitor ticket queues, security alerts, dashboards, and threat intelligence feeds to identify, investigate, and remediate potential security issues. • Follow all stages of the NIST incident response framework, including detection, eradication, and recovery. • Perform initial analysis, triage, and remediation of security alerts from email, endpoint, identity, and cloud security tools such as security information and event management (SIEM), email security platforms, endpoint detection and response (EDR/XDR), and scripting/querying utilities for automation and investigation. • Perform vulnerability management activities, including tracking findings, validating remediation, and maintaining accurate records. • Support maintenance of security devices, systems, and tools according to best practices. • Routinely assess network and cloud security posture against best practices. • Investigate and respond to email phishing alert reports and quarantine release requests. • Oversee the organization’s security awareness training program, including simulated phishing campaigns, to ensure compliance. • Support cybersecurity initiatives and projects to continually improve the organization’s security posture and program maturity. • Help maintain and update security metrics, dashboards, and recurring reports for leadership and audits. • Document and improve operational procedures with an eye toward efficiency. • Support information security audits and client due diligence questionnaires by collecting evidence and maintaining documentation. • Collaborate with other IT professionals to advise on and ensure compliance with cybersecurity best practices. • Participate in after-hours on-call rotation and respond to critical security alerts after hours. • Perform other duties as assigned. Desired Credentials: • 3-5 years' experience in Information Technology roles • 2 years’ experience working as a SOC analyst or similar experience • Bachelor's degree in Computer Science, Information Security, or a related field • Cybersecurity certifications such as Security+, CySA+, SSCP, CCSP or CEH highly valued • Excellent written and verbal communication skills • Detail orientation and strong analytical problem-solving abilities • Ability to effectively prioritize tasks and project in a fast-paced environment • In-depth knowledge of networking protocols and experience configuring network security devices such as firewalls and IDS/IPS • Experience with Endpoint Detection and Response (EDR) and XDR services • Experience with Email Security platforms such as Microsoft Defender for Office, Proofpoint, and Mimecast • Experience with the Microsoft Defender Security suite strongly preferred • Scripting/query language experience such as Bash, PowerShell, KQL • Hands-on experience setting up and querying SIEM tools such as Sumo Logic • Knowledge of data privacy and compliance regulations as well as cybersecurity frameworks such as ISO 27001 and NIST JSSI is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, or other characteristic protected by law. JSSI does not accept unsolicited resumes from individual recruiters or third-party recruiting agencies in response to job postings. No fee will be paid to third parties who submit unsolicited candidates directly to our hiring managers or Recruiting Team.