IT Cybersecurity - IT Security Analyst

Chromalloy is a global engineering & solutions company. We are a leading provider of aftermarket parts, repairs, and solutions that safely & reliably extend the life of aircraft engines and gas turbines. We develop, manufacture and repair critical turbine components for a range of engine platforms. Our solutions support the engines running the aerospace, energy and defense industries around the world.

Video: What We Do

Why work at Chromalloy?

Chromalloy employees are proud, passionate problem-solvers who strive to live our values every day. A career with Chromalloy is an opportunity to learn from top industry experts, work with important technologies, and unlock a passion for innovation. Join our team of experts, innovators and problem-solvers delivering world-class solutions for our customers. As a global company, we are committed to creating an inclusive environment where all employees feel represented, heard, and able to bring their best selves to work every day. Be part of something bigger with Chromalloy!

Our Total Rewards Program is designed to support you today and in the future.

• Comprehensive and flexible benefit options starting on day one, including medical, dental, vision, EAP, wellness incentives, and 401(k) with employer matching.
• Development & progression opportunities for every employee - regular performance conversations, training and development curriculum, and engineering fellowship programs.
• Paid time off, including vacation, sick time, paid holidays, and parental leave-all eligible on your first day of employment!
• Competitive pay, including eligibility for quarterly and annual bonuses, depending on role and site.

Eligibility for individual benefit plans may vary based on employment status.

Job Description

The Global IT Security Analyst is a critical role responsible for monitoring, detecting, investigating, and responding to cybersecurity threats across our global environment. This is an ideal opportunity for someone motivated by hands-on incident response, cross-functional collaboration, and strengthening the security posture of systems, infrastructure, and end-user computing.

We are looking for an individual with strong technical depth and the judgment to prioritize and drive incidents to resolution, while clearly communicating impact, status, and next steps to both technical teams and business partners. You will help build repeatable response playbooks and partner with end users to improve security awareness and reduce risk.

Primary Accountabilities:

• Monitor, triage, and investigate security alerts using SIEM and endpoint detection and response (EDR) tooling; validate severity and scope, and document findings.
• Execute and continuously improve incident response processes (prepare, detect, contain, eradicate, recover); develop and maintain playbooks and runbooks for common scenarios (phishing, malware, account compromise, ransomware).
• Perform incident investigation and analysis using logs and telemetry (identity, endpoint, network, cloud); conduct basic packet and host analysis as needed to determine root cause and attacker activity.
• Coordinate incident response with the SOC/MDR provider and internal teams (IT, Infrastructure, HR, Legal, and business stakeholders); ensure timely escalation and handoffs.
• Lead containment and remediation actions (e.g., isolate endpoints, disable accounts, block indicators, reset credentials) and track actions through to closure with clear timelines and ownership.
• Drive post-incident reviews (lessons learned) and implement corrective actions to reduce recurrence, improve detection logic, and strengthen controls.
• Maintain awareness of the current threat landscape and translate threat intelligence into actionable detections, hardening recommendations, and user guidance.
• Support governance and assurance activities including policy/standard reviews, control evidence collection, and third-party risk and audit activities (e.g., ISO 27001, NIST, CIS).
• Create and tune detection content (queries, correlation rules, and indicators) to improve signal quality and reduce false positives in security monitoring tools.
• Perform basic malware triage and forensic collection as needed (e.g., preserve evidence, analyze artifacts, support deeper analysis by internal teams or vendors).
• Engage end users during investigations (e.g., phishing reports, suspicious activity) with clear guidance and empathy; contribute to security awareness initiatives (phishing education, safe computing practices) and incorporate user feedback to improve processes.

Qualifications

Education and Experience:

• BS degree in Computer Science, Engineering or Information Technology or equivalent.
• 3-5 years of experience in a cybersecurity/SOC/IT security operations role with exposure to incident triage, investigation, and coordinated response.
• Working knowledge of security frameworks and control concepts (ISO 27001/27002, NIST 800-53/171, CIS Controls) and how they translate into operational controls.
• Experience with common security tooling is preferred (SIEM, EDR, vulnerability scanning, email security, identity platforms; SOAR a plus). Certifications such as Security+, GCIH, GCIA, CEH, SSCP, or equivalent are preferred.
• Strong written and verbal communication skills; able to explain risk and response steps to end users and stakeholders, produce incident documentation, and present post-incident findings.
• Must be able to travel as needed, sometimes as much as 30%.

The salary range for this position reflects a broad spectrum of experience levels. Individual compensation within the range is determined by multiple factors, including relevant experience, education, certifications, job related skills, internal equity, and market conditions. We evaluate each candidate individually to ensure fair and competitive pay decisions.

Due to government regulation only US persons (U.S. citizen, U.S. naturalized citizen, U.S. permanent resident, holder of U.S. approved political asylee or refugee status) may be considered for this role.

Chromalloy participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S.

Any offer of employment will also be conditioned upon the successful completion of a background investigation and drug screen in accordance with company policy and applicable federal and state regulations.

Chromalloy is an equal opportunity employer - vets/disabled.

In the United States, if you need a reasonable accommodation for the online application process due to a disability, please contact: https://www.chromalloy.com/contact-us/