Information Security Analyst

As the leading global type 1 diabetes (T1D) research and advocacy organization, Breakthrough T1D helps make everyday life with T1D better while driving toward cures. We invest in the most promising research to turn ideas into life-changing therapies and devices. We work with government, regulatory officials, and insurance companies to address issues that impact the T1D community -- breaking through barriers that limit access to care worldwide. We provide resources and guidance that makes it easier to live and thrive with T1D. This is more than a moment -- we're empowering a movement for the T1D community. Share your support and help educate and empower individuals facing type 1 diabetes.

Our mission is to improve lives today and tomorrow by accelerating life changing breakthroughs to treat, prevent and ultimately, cure T1D and its complications. Always, we are guided by a single purpose: As we drive towards curing type 1 diabetes, we help make everyday life better for the people who face it.

The Information Security Analyst reports to the Director of Information Security and plays a key role in supporting the organization's cybersecurity posture. This position assists with protecting digital assets by helping to drive risk identification, vulnerability management, and incident response, while also contributing to compliance and security operations across the organization.

This role is part of the Information Security Team and also has cross-functional reach, working with teams across infrastructure, development, client services, and the Security Operations Center (SOC) to address findings, prioritize remediation, and support organization-wide security initiatives.

The analyst is expected to take an active role in day-to-day security operations and contribute meaningfully to the organization’s risk reduction, operational efficiency, and security maturity.

SPECIFIC RESPONSIBILITIES:

• Respond to security incidents escalated by the Security Operations Center (SOC), including analysis, documentation, and coordination of follow-up actions
• Manage and support endpoint detection and response (EDR) tools such as CrowdStrike
• Manage and support the vulnerability management platform (e.g., Qualys), ensuring vulnerabilities are tracked, documented, and followed through to remediation
• Collaborate with Client Services, infrastructure, and development teams to support vulnerability remediation and help build secure infrastructure across endpoints, servers, and network devices
• Maintain and update the organizational risk register and proactively identify items that should be added based on observed findings
• Create and manage internal tickets for vulnerabilities and security issues and follow up with stakeholders to drive progress and resolution
• Take the lead on recurring security operations processes such as patching meetings, vulnerability reviews, and incident follow-ups
• Support the Director of Information Security in developing and executing phishing awareness campaigns and related communications
• Review and operationalize threat intelligence received from various sources, including feeds our organization subscribes to and others identified independently, and use this to inform detection and mitigation efforts
• Maintain and improve process documentation, security runbooks, and playbooks
• Assist with the development, review, and maintenance of security policies, standards, and procedures to ensure alignment with best practices and organizational needs
• Contribute to the team’s internal technical knowledge and visibility of key risks

EXPERIENCE & REQUIREMENTS:

• 2–5 years of experience in cybersecurity, information security, or a related IT or systems role with hands-on security responsibilities
• Experience managing or supporting tools like CrowdStrike, Qualys, Tenable, Rapid7, or similar
• Familiarity with CVSS scoring, patching workflows, and security incident response processes
• Experience working in or supporting cloud environments, such as Microsoft Azure, Office 365, or AWS
• Strong written and verbal communication skills
• Proficient with office productivity tools such as Microsoft Word and Excel; able to work with tables, exported data, and maintain documentation effectively
• Strong analytical skills, decision-making ability, and professional judgment
• Proactive, self-directed, and comfortable taking ownership of tasks and processes
• Able to work independently and effectively within cross-functional teams
• Strong organizational skills, attention to detail, and a customer-focused mindset
• Willingness to pursue ongoing professional development through self-guided learning, vendor resources, or team-based knowledge sharing

EDUCATION:

• Associate degree or equivalent work experience in a related technical field is preferred
• Certifications such as Network+, Security+, SSCP, CISSP, CCSP, or SANS are a plus

TRAVEL REQUIREMENTS

• Some limited travel may be required for training, team meetings, or organizational events

Targeted Salary Range is $90,000 - $115,000

Essential Functions:

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this position.  Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

While performing the duties of this position, the employee is regularly required to talk or hear.  The employee frequently is required to use hands or fingers, handle or feel objects, tools or controls.  The employee is occasionally required to stand, walk, sit, reach with hands and arms, climb or balance, and stoop, kneel, crouch or crawl.

The employee must occasionally lift and/or move up to 25 pounds, and infrequently up to 50 pounds.  Specific vision abilities required by this position include close vision, distance vision, color vision, peripheral vision, and the ability to adjust focus.

The noise level in the work environment is usually moderate.

Additional information:

Requests for medical, religious, and other exemptions will be considered on an individual basis. Breakthrough T1D will comply with all federal, state, and local laws.

Breakthrough T1D supports a diverse and inclusive workforce.
Breakthrough T1D is an Equal Opportunity Employer. 
All your information will be kept confidential according to EEO guidelines.