Information Security Analyst II

Information Security Analyst II Join a highly regarded organization known for its strong culture, employee engagement, and long-standing commitment to excellence. The company values individuals who are conscientious, collaborative, and customer-focused, and fosters an environment where employees feel a sense of belonging and opportunity for growth. This is an organization that invests in its people, encourages diverse perspectives, and takes pride in delivering meaningful impact. Work Location This is a hybrid position with in-office collaboration days (approximately 3 days per week). The role can be based in the Midwest region. Position Overview Under limited supervision, the Information Security Analyst II partners with internal stakeholders to support and enhance the organization's information security program. This role contributes to the development and execution of security policies, processes, and standards, and may lead small to moderate initiatives. The Analyst works closely with IT teams to deploy and monitor security controls, assess risk, and strengthen the organization's overall security posture. Key Responsibilities Support and execute information security initiatives, including leading small to mid-sized efforts Contribute to the development and implementation of security policies, procedures, and standards Collaborate with IT teams to deploy and monitor technical security controls Support incident response activities and vulnerability management efforts Assist in developing security awareness, training, and documentation Research emerging security trends, technologies, and best practices Recommend solutions to mitigate risks and address security vulnerabilities Required Experience & Skills 2-4 years of experience in Information Security or a related field Knowledge of network infrastructure, cloud platforms, and modern operating systems Experience with SIEM tools and incident response processes Familiarity with business impact analysis, control assessments, and vendor risk management Exposure to security frameworks such as

NIST, CIS, MITRE ATT&CK, ISO

27001, ITIL, or COBIT Strong communication skills with the ability to engage technical and non-technical stakeholders Experience developing or leveraging scripting/automation to improve efficiency Exposure to Identity & Access Management (IAM) and governance processes (joiner/mover/leaver lifecycle, access controls) Strong analytical thinking and problem-solving skills Security-first mindset Preferred Qualifications Bachelor's degree in Cybersecurity, Information Systems, or related field (or equivalent experience) Industry certifications such as Security+, CISSP, SSCP, or GIAC