Information Security Analyst II

At Benchmark, we are driven by our purpose: to innovate for a healthier, safer, and better-connected world to create a brighter future. When you join us, you become part of a team passionate about making a meaningful impact across various sectors, including commercial aerospace, defense, advanced computing, next-generation communications, complex industrials, medical, and semiconductor capital equipment. We prioritize career growth, fostering a culture that ensures you reach your full potential. At Benchmark, your work is purpose-driven, enabling you to create a positive impact on the world and make your career truly meaningful. You'll be part of a collaborative, diverse, and inclusive team that values your ideas and contributions.

Summary:
Completes security tasks to defend the organization's network and information assets applying the appropriate level of confidentiality, integrity and availability as determined by leadership . Perform security monitoring and analysis of alerts, events and incidents. Provide reporting to leadership as required. Identify security vulnerabilities or and assist system owners with the development and execution of remediation plans. Improve organizational security awareness through training, policies and procedures and tracks compliance throughout the organization. Maintain an up-to-date understanding of industry best practices.

Responsibilities:
* Participate in committee work that addresses information security issues.
* Conduct and /or assist with the deployment of security awareness training.
* Perform risk assessments to include, but not limited to, policy compliance review, vulnerability analysis and risk mitigation.
* Direct implementation of information, network and user security standards and best practices for the organization.
* Ensure that IT security audits are conducted periodically
* Conduct continuous security monitoring and detection
* Improve continuous security monitoring solutions based on lessons learned from simulated and actual incidents
* Analyze security event data from customer computing platforms, network elements, and security devices
* Monitor the organization's networks for security issues or incidents and investigate violations when they occur.
* Document security incidents and assist with assessing the impact assessment.
* Perform vulnerability assessments and provide assistance with how to remediate identified vulnerabilities as required.
* Perform security tests and identify network vulnerabilities and remediation steps.

Complexity Performs all essential functions under the direction of the management. Monitors and alerts on suspicious activities and vulnerabilities Performs all essential functions in IT Security to Prevent, Detect, Mitigate, and Recover from a cyber incident. Performs all essential functions in IT Security to Prevent, Detect, Mitigate, and Recover from a cyber incident. Evaluates technology, policies, procedures and activities to improve security.

Discretion Follows existing policy and processes to ensure security with minimal supervision and guidance. Makes decisions related to security that the assigned scope of work and systems. Makes decisions related to security that have a major impact on the ability to identify and remediate risks throughout the organization.

Collaboration. Regularly interacts with users, site IT staff to remediate security issues. Regularly interacts with users, site IT staff to remediate security issues. Works with management to develop training and security procedures. Regularly interacts with users, site IT staff to remediate security issues. Works with management to develop training and security procedures. Works with Sr Management and IT Infrastructure to develop Policy.

Inquisitive. Must be able to evaluate highly complex and dynamic situations and adjust to the situation. Continuously assess new technologies as well as tactics, techniques and processes used for protecting organizational assets.

Qualifications:

* 7+ years of experience in a hands-on security engineering/analyst role.
* Expertise with security compliance or risk management is a plus
* Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) or equivalent preferred
* Capable leader, advisor, mentor, and coach; someone who motivates and inspires.
* Extensive hands-on experience of conducting vulnerability assessments, TCP/IP, audit, IDS/IPS, firewalls, and VPNs
* Experience with cloud environments and how they relate to security

Secure clearance REQUIRED

Extensive experience with the following technologies:
* Active Directory
* DLP
* Firewalls
* HIDS/NIDS/IPS
* IAM
* IPSec
* Network Configuration/Design
* Network segmentation
* SIEM
* Vulnerability scanners
* Strong understanding of DFARS, ISO 27001/27002, Center for Internet Security Critical Controls, NIST 800 Series, CoBIT, SOX, etc.

Certification:
Required: N/A
Preferred: Security+, CISSP, GIAC

Secure clearance REQUIRED

Education:

Qualifications 2-5 Years in directly related experience or
Bachelor's degree in computer science or related field.

Geographical Location: California:Santa Ana

Physical Location: Santa Ana, CA

Shift: Shift 1

Work Schedule: M-F 0700-1530

Full Time

Compensation Range: $111,700.00 to $167,550.00 USD Many factors are considered in compensation decisions, including but not limited to skills, certifications, licensures, experience, training, incumbent data, and other business needs.

Benefits and Other Compensation: Benchmark provides a comprehensive benefits package, including a Bonus Plan, 401(k), Paid Time Off, and Health, Dental, and Vision Insurance, all based on scheduled hours. Benchmark complies with applicable state and local employee leave laws.

Application Deadline: This job posting will remain open until filled.

Additional Notices: Benchmark adheres to applicable state and local laws regarding employee leave benefits. This includes, but is not limited to, providing time off pursuant to the Colorado Healthy Families and Workplaces Act, in accordance with its plans and policies. Candidates applying for remote work based in Washington state, may obtain PTO eligibility for this position by emailing careers@bench.com.

Export Control: This job position may include access to controlled information or technology covered under applicable U.S. export control laws. As such, employment for this job position may be contingent on either verification that an applicant falls under the definition of a "U.S. Person" (which includes U.S. citizens, U.S. lawful permanent residents, and those granted U.S. asylum or refugee status) or on the Company timely obtaining any necessary export license required under federal laws. The Company evaluates such export license situations on a case-by-case basis and may decline to proceed with a job applicant in its sole discretion since export license applications can take many weeks to be processed.

In our innovative environment, you'll work with cutting-edge technology, leading the way in engineering design and delivering world-class manufacturing services for products that make a real difference in the lives of others. At Benchmark, your career is more than just a job. It's an opportunity to be part of something bigger, where your work matters and helps shape a brighter future for everyone. Together, we will achieve extraordinary things.

Benchmark is an equal opportunity employer. We are bringing together a diverse workforce with unique talents, life experiences, cultures, and perspectives to promote an innovative, collaborative, and creative place to work. If you need assistance or an accommodation due to a disability, please email us at careers@bench.com.