Information Security Analyst

Job Title: Information Security Analyst

Department: Information Security

Location: Remote

Reports to: Information Security Manager or Lead Information Security Engineer

FLSA Status: Exempt Regular Full-Time

Role Summary:

The Information Security Analyst plays a key role in maintaining, monitoring, and improving Trulieve’s security posture. This role is responsible for daily cybersecurity operations, incident response, and the management of endpoint, cloud, and infrastructure security tools. The CSOC analyst will collaborate cross functionally to remediate threats, validate controls, support compliance efforts, and contribute to strategic security initiatives. The successful candidate brings strong analytical skills, attention to detail, and a commitment to security excellence.

Key Duties and Responsibilities:

· Collaborate closely with engineers, architects, vendors, IT and Security leadership, and cross-functional teams to design secure, highly available production environments, enforce security requirements, address identified risks, and suggest strategic plans.

· Monitor, triage, and follow up on security alerts from the SIEM system and other monitoring services; escalate incidents per response plan, document actions, analyze and notify appropriate team members, and recommend alert logic improvements.

· Manage incidents using endpoint tools to contain and remediate threats; review endpoint threats, maintain protection agents, and update response playbooks.

· Respond to cloud security alerts, validate controls, resolve misconfigurations, support automation, and maintain a secure environment for end users.

· Document all security activities, support audits with evidence and validation, and automate record-keeping as needed.

· Regularly generate InfoSec operations reports, analyze metrics and trends, and recommend improvements to processes and systems.

· Support strategic security projects by delivering assigned tasks, identifying risks, and recommending scalable solutions.

· Demonstrate practical problem-solving, communication, and organizational skills while working with current and emerging technologies.

· Adapt quickly to dynamic and changing environments, providing detailed solutions with some supervision.

· Possess experience with Office 365 and Azure services.

· Promote cybersecurity awareness, support legacy infrastructure, and maintain a disciplined, systematic approach to all tasks.

Skills and Qualifications:

· Bachelor's Degree (or equivalent experience) – Computer Science, Engineering, Information Technology, or related discipline.

· Have 3+ years of experience in Information Security SOC/SIRT, implementing security best practices, or 3+ years in a system administrator role.

· Security or advanced IT certification is desired (Security+, MCSA, GIAC, or equivalent) but not required.

· Experience working in a cloud infrastructure.

· Experience monitoring and responding to security alerts and events.

· Self-motivated and capable of working effectively with some supervision.

· Can build professional relationships and have great communication skills.

· Have a solid customer-focused mindset.

Work Schedule:

· 40+ hours weekly with flexible hours depending on department needs.

Equal Opportunity Employer / Trulieve Supports a Drug-Free Workplace