Be yourself at Protolabs Studies have shown that women and people of color are less likely to apply to jobs unless they meet every single qualification.  We are an equal opportunity employer, and we are committed to building a diverse team that feels they are valued in the workplace.  So do you feel you do not meet every single requirement but still intrigued? We encourage you to still apply!  You can help make our company even better.  We do not discriminate based on race, color, national origin, sexual orientation, gender, age, mental or physical ability, or any way you represent yourself.  We strongly believe diversity makes for more successful teams. Why Protolabs? We are the leaders in digital manufacturing. We hire doers, makers, and creative thinkers who tackle our roles with an entrepreneurial spirit. Our culture is centered around meaningful work that brings new and innovative products to market at unprecedented speeds. We are a diverse team that comes from all walks of life and take pride in our team who is smart, genuine, humble, and passionate about what we do. It’s our people who fuel our creativity and make our culture feel like home. Join our team as an Information Security Analyst! This is a hybrid role being onsite at HQ in Maple Plain, MN on Tuesday, Wednesday, and Thursday. The Information Security Analyst – Compliance is responsible for supporting the organization’s security governance, risk, and compliance (GRC) activities. This role ensures adherence to regulatory, industry, and customer security requirements across multiple frameworks, including NIST, SOX, CMMC, ISO 27001, and PCI DSS. The analyst will work cross‑functionally to assess controls, manage evidence, perform risk assessments, and drive continuous improvement of the security compliance program. You will • Security Operations & Incident Response - Support, maintain, and enhance compliance programs aligned to NIST, SOX ITGC controls, CMMC, ISO 27001, and PCI DSS • Participate in readiness assessments, gap analyses, and control audits • Coordinate documentation, evidence collection, and control testing for audits and certifications Governance, Risk & Policy Management • Contribute to creation, maintenance, and review of security policies, standards, and procedures • Conduct and document periodic risk assessments to identify security risks and support mitigation activities • Ensure documentation aligns with regulatory and framework requirements Audit Support & Control Testing • Execute internal control testing, including design and operating effectiveness assessments • Partner with internal and external auditors for audit activities • Track remediation activities for compliance gaps and audit findings Security Monitoring & Continuous Improvement • Monitor compliance control performance and identify improvement opportunities • Assist in developing metrics and dashboards for compliance and risk • Support third party vendor security reviews including compliance assessments • Prepare detailed reports on security breaches, including root cause analysis and recommendations for remediation Cross Functional Collaboration • Work with IT, Legal, Finance, Engineering, and Operations on compliance obligations • Provide subject matter expertise on regulatory and security frameworks • Assist with onboarding and training employees on security compliance responsibilities Training & Awareness • Develop, maintain and deliver security compliance training programs tailored to regulatory obligations • Promote awareness of security policies, standards, and compliance requirements across the organization • Collaborate with HR, IT and Communication teams to coordinate annual and ad-hoc training campaigns • Track and report on training completion, adoption and effectiveness to ensure organizational security awareness • Support continuous improvement of the security awareness program by analyzing trends, user behavior and any compliance gaps • Other duties as assigned What it takes • Bachelor’s Degree in Information Security, Information Technology, Computer Science, or equivalent practical experience • Formal schooling or experience deploying a broad set of cybersecurity technologies and programs including SOC, NAC, SIEM, CASB, PKI, IDS, IPS, PCI, ISO, DLP, UTM, UEBA, CEH, SSCP, and OWASP Top 10 / secure coding best practices • 3+ years of experience in information security across: security operations, vulnerability management, incident response, governance/risk/compliance, or cloud/application security • Strong analytical, documentation, and communication skills Bonus points for • Demonstrated knowledge and experience of cybersecurity frameworks including NIST, ISO 27001, CMMC, SOX ITGC, and PCI DSS • Experience with GRC platforms (e.g., FutureFeed, Cyturus, etc) • Certifications such as Security+, CISA, CISM, ISO 27001 Lead Auditor/Implementer • Experience in regulated or manufacturing environments • Ability to manage multiple projects and priorities in parallel and work cross-functionally with engineering, IT, and audit • Experience with audits, risk assessments, and control testing • History of staying current in cyber-security field • Ability to be on call in the event of a security incident • Ability to travel 10% of the time What's in it for you • We offer a competitive Total Rewards Program including: • Salary, Bonus, Long Term Incentives • Health Insurance: Traditional OR High Deductible plan • Flexible Spending Accounts • Health Savings Account (including employer contributions) • Dental & Vision • Basic and Supplemental Life Insurance • Short-Term & Long-Term Disability • Paid caregiver leave • PTO + Holiday Pay + Wellness Hours + Volunteer Hours • 401k with company match & immediate vest • Employee Stock Purchase Program at a 15% discounted rate • Matching grants through Protolabs foundation • And More! Proto Labs maintains ITAR-compliant operations in all of our United States based facilities. Due to ITAR regulations, this role is only open to U.S. Citizens, lawful permanent residents (green card holders) or foreign nationals granted refugee or asylee status. Individuals with temporary visas (e.g. E, F-1, H-1, H-2, L, B, J, TN or OPT) are not eligible for hire in this role. Proto Labs, Inc. is an Equal Opportunity Employer Physical Demands: While performing the essential duties of this job, the employee is regularly required to sit; use a computer keyboard, monitor and mouse, telephone and printer; reach with hands, and arms, talk, see and hear. The employee is occasionally required to stand, walk, stoop or kneel and must occasionally lift and/or move up to 25 pounds. Work Environment: Indoors (A/C); nonsmoking; the majority of this job function is performed in an office setting requiring normal safety precautions. However, there may be job duties that require the employee to spend time in the manufacturing areas exposed to machinery and noise; eye protection occasionally required. Occasionally works in outside weather conditions. Occasionally works near moving mechanical parts and in high, precarious places and is occasionally exposed to wet and/or humid conditions, fumes or airborne particles, toxic or caustic chemicals, risk of electrical shock and vibration. The noise level in the work environment is usually quiet to moderate.

Information Security Analyst at Protolabs

Similar Engineering Jobs

Staff Software Engineer

Machine Learning Engineer

Staff Embedded Software Engineer, Safety Compute Platform

Share this job

About Protolabs

Senior Software Engineer - Applications

Human Resources Business Partner (HRBP)

Director, FP&A

Translation Jobs

Popular Skills

Jobs by Salary

For Job Seekers

For Employers