Home › Companies › BCA6DB2B908FD5BA9AD3B28E74BA5B1D › Security Analyst (60611)

Security Analyst (60611)

BCA6DB2B908FD5BA9AD3B28E74BA5B1D · Vancouver Office - Vancouver, WA 98683; 17800 SE Mill Plain Blvd 190 Mailbox 9, Vancouver, WA, 98683, USA · Hybrid · Active · $85,000–$100,000 / year · Paycom ATS

Job facts

Field	Value
Company	BCA6DB2B908FD5BA9AD3B28E74BA5B1D
Title	Security Analyst (60611)
Normalized title	-
Department / team	Information Technology
Location	Vancouver, WA, United States
Work model	Hybrid / Hybrid
Employment type	Full Time
Salary	$85,000–$100,000 / year
Status	active
ATS provider	Paycom ATS
Posted / first seen	2026-05-28 / 2026-05-31
Changed / last seen	2026-05-31 / 2026-06-06

Related slices

Page	What it contains	Open
Company jobs	Active postings from BCA6DB2B908FD5BA9AD3B28E74BA5B1D.	Open
Company breakdowns	Role, location, ATS, and work model facets for this company.	Open
ATS provider jobs	Active postings observed through Paycom ATS.	Open
Provider filtered search	The same provider as a filtered job collection.	Open
City jobs	Active postings in Vancouver.	Open
Department jobs	Active postings in Information Technology.	Open
Work model jobs	Active Hybrid postings.	Open
Lifecycle events	Open, update, close, and reopen events for this posting.	Open
Original posting	Canonical source or apply URL captured from the ATS.	Open

Linked records

Company	BCA6DB2B908FD5BA9AD3B28E74BA5B1D
Source	8888a5ee-eda0-4fe7-b231-5b424dea182b
ATS provider	Paycom ATS

Description

Description At Core Health & Fitness , our purpose is to live and share our passion for fitness. We bring innovative health and fitness solutions to the global market with brands like StairMaster, Schwinn, Nautilus, Star Trac, Throwdown, Wexer, Gym Rax, Core Fit Collective and we’re still growing. We press into the future of fitness to ensure the creation of quality products and programming that meet the needs of an ever-evolving industry. At Core we are committed to building an energetic, diverse, and inclusive workspace. We value our differences and see community strength in diversity and representation. We’re always on the lookout for innovators, dreamers and doers who are passionate about fitness and wellbeing. We explore all opportunities to improve ourselves, our business partners, and our community. If you’re looking for a fulfilling career in helping people, find the best version of themselves, you’ve come to the right place. We are looking for a Security Analyst to join our growing organization! Qualifications General Position Summary: The Security Analyst is a hands-on role within IT responsible for daily operation and continual improvement of the company’s security and privacy posture across on-prem and SaaS environments and global user base. This role focuses on monitoring and tuning a 13+ tool security stack, detecting and responding to threats, and supporting growing regulatory and customer compliance demands (GDPR, PII, and industry frameworks.) Roles and Responsibilities Security Monitoring, Tools & Incident Response Monitor and manage alerts across a multi-tool ecosystem (e.g., MDR/XDR, email security, IDS/IPS, firewall, MDM, vulnerability scanner, DLP, password/privileged access tools, cloud security, backup/DR, and threat-intel feeds). Normalize, correlate, and tune alerts from 13+ tools to reduce noise and focus on high-value events, maintaining clear runbooks for triage and escalation. Lead initial investigation and containment of incidents (phishing, malware, account compromise, ransomware, data exfiltration), coordinating with Helpdesk, systems engineer, and network architect as needed. Maintain case records, evidence, and post-incident reports that feed into continual improvement of rules, playbooks, and configurations. Vulnerability, Configuration Management & Auditing Operate vulnerability management tools to scan servers, endpoints, network devices, and key applications; track remediation with system owners and prioritize based on business impact. Work with the technical architect/network engineer to implement and validate secure configurations, hardening baselines, network segmentation, and logging on firewalls, VPN, and other perimeter tools. Monitor vendor security advisories, CVEs, and threat bulletins and recommend patching or compensating controls for high-risk exposures. Audit work for IAM/access management, RBAC roles. Tool Integration, Automation & Optimization Administer day-to-day operations of the security toolset: manage access, policies, rules, connectors, and integrations with infrastructure and identity platforms. Collaborate with IT to integrate security tools with ticketing, identity, and logging platforms, and help design lightweight automation/playbooks where supported (e.g., auto-quarantine, IP blocking, user notifications). Evaluate overlapping capabilities across the 13+ tools and provide recommendations to simplify, consolidate, or better utilize existing investments. Compliance, Privacy & Customer Demands Support implementation and ongoing operation of controls for GDPR, PII protection, and security frameworks (e.g., SOC 2-like controls, ISO/NIST-aligned practices as pursued by the business). Use SIEM and related tools for log retention, evidence gathering, and reporting to support audits, customer due-diligence requests, and data-privacy impact assessments. Maintain and update security documentation (asset lists, data flows, risk registers, control matrices, and tool inventories) to reflect the current environment. Participate in CAB process as appropriate. Policies, Awareness & Support for Small Teams Contribute to security and privacy policies, standards, and procedures that are practical for a lean infrastructure team while meeting regulatory expectations. Evaluate and update IT policies as needed. Prepare targeted awareness content and simulations focusing on phishing, account security, data handling, and secure use of manufacturing/warehouse systems. Serve as a security point of contact for Helpdesk and application owners, providing guidance embedded into day-to-day processes and changes. Required qualifications Education & Experience Bachelor’s degree in Information Security, Computer Science, Information Systems, or equivalent practical experience. 3+ years in an information security, SOC analyst, or infrastructure role with hands-on responsibility for multiple security tools in a small or mid-sized enterprise. Experience supporting mixed environments with on-prem servers, SaaS, and distributed business applications. Technical Skills Practical experience with several of the following categories: SIEM/log management, EDR/XDR, email security, IDS/IPS, next-gen firewalls/VPN, web filtering/proxy, vulnerability scanning, DLP, MDM/endpoint management, identity security (SSO/MFA), and secure backup/DR. Strong understanding of network and system fundamentals (Windows and virtualization, basic Linux, TCP/IP, DNS, routing, VPNs) and how attacks traverse these layers. Familiarity with data protection and privacy practices (GDPR and PII handling) and at least one security or compliance framework. Ability to use scripting or automation (PowerShell, Python, or similar) for log analysis, enrichment, and small workflow automations is preferred. Required Soft Skills Strong analytical and problem-solving skills with the ability to interpret noisy alerts from many tools into clear, prioritized actions. Effective communication with both technical and non-technical stakeholders, including concise incident and risk reporting. Comfortable working in a lean team, balancing operational workload with project and improvement work, and taking ownership of issues from detection through closure. Independent thinker. Can operate independently within the guidance and priorities set by IT leadership and prioritizes production issues over administrative tasks. Proactive, self-motivated, and organized with attention to detail. Open, honest, and transparent approach to dealing with any issue. Certifications (preferred) One or more: Security+, CySA+, CISSP, SSCP, GSEC, or similar practitioner-level security certifications. Additional plus: privacy/compliance-focused credentials (e.g., ISO 27001 lead implementer/auditor, CIPP/E) or vendor certifications for SIEM/EDR or other core tools. Working Conditions & Expectations Standard business hours in PST, with participation in an on-call rotation for high-severity security incidents and major maintenance. Hybrid work model (mostly remote) with on-site time at headquarters and key facilities for assessments, rollouts, and incident support. Occasional after-hours work during patch windows, tool upgrades, and audit deadlines. Position Status Level: Staff FLSA: Exempt Supervises: NA Salary Range - $85,000.00 - $100,000.00 Annually This job description reflects management’s assignment of essential functions. It is only a summary of the typical functions of the job, not an exhaustive or comprehensive list of all possible job responsibilities, tasks, and duties. The responsibilities, tasks, and duties of the employee might differ from those outlined in the above job description, and other duties may be part of the role, as assigned. It does not restrict the tasks that may be assigned nor is it considered a contract of employment overriding at-will employment. In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire. Core Health& Fitness is an equal opportunity employer that does not discriminate on the basis of race, color, national origin, sex, disability, age, religion, sexual orientation, gender identity, gender expression, creed, disabled veteran status, marital status, or Vietnam-era veteran status. If you are a person with a disability and you need assistance in applying for a position with Core Health & Fitness, please contact our Human Resources department at [email protected] and direct assistance will be provided.

Full job record

Job ID	7e87828a7d627f03449d677adbe0074d67812ba5
Org ID	16875909-a259-47d5-8122-dd28dda52b35
Source ID	8888a5ee-eda0-4fe7-b231-5b424dea182b
Board ID	8888a5ee-eda0-4fe7-b231-5b424dea182b
Provider	paycom
Provider Job Key	306653
Title	Security Analyst (60611)
Normalized Title	—
Status	active
Active	yes
Location Text	Vancouver Office - Vancouver, WA 98683; 17800 SE Mill Plain Blvd 190 Mailbox 9, Vancouver, WA, 98683, USA
Department	Information Technology
Team	—
Employment Type	full_time
Workplace Type	hybrid
Remote Policy	hybrid
Country	United States
Region	WA
City	Vancouver
Salary Raw	$85,000.00 - $100,000.00 Salary/year
Salary Min	85,000
Salary Max	100,000
Salary Currency	USD
Salary Period	year
Source URL	https://www.paycomonline.net/v4/ats/web.php/jobs/ViewJobDetails?job=306653&clientkey=BCA6DB2B908FD5BA9AD3B28E74BA5B1D
Apply URL	https://www.paycomonline.net/v4/ats/web.php/jobs/ViewJobDetails?job=306653&clientkey=BCA6DB2B908FD5BA9AD3B28E74BA5B1D
First Seen At	2026-05-31 19:07:04Z
Last Seen At	2026-06-06 09:53:53Z
Last Checked At	2026-06-06 09:53:53Z
Last Changed At	2026-05-31 19:07:04Z
Inactive At	—
Source Posted At	2026-05-28 00:00:00Z
Source Updated At	—
Raw Payload Uri	s3://job-postings-prod-raw-590183727216/raw/provider=paycom/board=BCA6DB2B908FD5BA9AD3B28E74BA5B1D/date=2026-06-06/2026-06-06T09-53-52-043Z-aa223733f0b3be68cc37be3e55dfc2956e76aa519fe6b57e185917f0509acea4.json

Event Fields

{
  "content_hash": "ef6d0001878b1dfb949e987ea609a22fb47d20cd9afa1cbe694b6d6112f7200a",
  "source_hash": "5a9a12de8b259a43010b2ab2e384a44136adc1796c1d127405c762224beeee50",
  "last_changed_at": "2026-05-31T19:07:04.817Z",
  "active_status": "active"
}

Parsed Structured

{
  "language": "en",
  "location": {
    "raw": "Vancouver Office - Vancouver, WA 98683; 17800 SE Mill Plain Blvd 190 Mailbox 9, Vancouver, WA, 98683, USA",
    "city": "Vancouver",
    "region": "WA",
    "country": "United States",
    "is_remote": false,
    "confidence": 0.8
  },
  "salary_max": 100000,
  "salary_min": 85000,
  "inferred_at": "2026-06-06T09:53:53.787Z",
  "launch_scope": {
    "reason": "english_us_canada",
    "included": true,
    "language": "en",
    "location": {
      "raw": "Vancouver Office - Vancouver, WA 98683; 17800 SE Mill Plain Blvd 190 Mailbox 9, Vancouver, WA, 98683, USA",
      "city": "Vancouver",
      "region": "WA",
      "country": "United States",
      "is_remote": false,
      "confidence": 0.8
    },
    "countries": [
      "United States"
    ]
  },
  "remote_policy": "hybrid",
  "salary_period": "year",
  "workplace_type": "hybrid",
  "salary_currency": "USD"
}

Extensions

{}

Native Structured

{
  "detail": {
    "city": "Vancouver",
    "jobId": 306653,
    "level": "Experienced",
    "endDate": "",
    "legalId": 4132,
    "isHotJob": false,
    "jobShift": "",
    "jobTitle": "Security Analyst (60611)",
    "location": "Vancouver Office - Vancouver, WA 98683",
    "startDate": "",
    "clientCode": "0CP97",
    "remoteType": "Hybrid",
    "description": "<p><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#444444;\">At&nbsp;<strong>Core Health &amp; Fitness</strong>, our purpose is to live and share our passion for fitness. We bring innovative health and fitness solutions to the global market with brands like&nbsp;<strong>StairMaster,&nbsp;Schwinn,&nbsp;Nautilus,&nbsp;Star Trac,&nbsp;Throwdown,&nbsp;Wexer,&nbsp;Gym Rax,&nbsp;Core Fit Collective&nbsp;</strong>and we&rsquo;re still growing. We press into the future of fitness to ensure the creation of quality products and programming that meet the needs of an ever-evolving industry.</span></span></span></p>\r\n\r\n<p>&nbsp;</p>\r\n\r\n<p><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#444444;\">At Core we are committed to building an energetic, diverse, and inclusive workspace. We value our differences and see community strength in diversity and representation. We&rsquo;re always on the lookout for innovators, dreamers and doers who are passionate about fitness and wellbeing. We explore all opportunities to improve ourselves, our business partners, and our community. If you&rsquo;re looking for a fulfilling career in helping people, find the best version of themselves, you&rsquo;ve come to the right place.</span></span></span></p>\r\n\r\n<p>&nbsp;</p>\r\n\r\n<p><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#444444;\">We are looking for a&nbsp;<strong>Security Analyst</strong>&nbsp;to join our growing organization!</span></span></span></p>\r\n",
    "jobCategory": "Information Technology",
    "salaryRange": "$85,000.00 - $100,000.00 Salary/year",
    "socialMedia": {
      "xLink": {
        "text": "Core%2520Health%2520%2526%2520Fitness%252C%2520Llc%2520Job%2520Opportunity%2520Security%2520Analyst%2520%252860611%2529"
      },
      "emailLink": {
        "subject": "Core%20Health%20%26%20Fitness%2C%20Llc%20Job%20Opportunity%20Security%20Analyst%20%2860611%29",
        "summary": "At%C2Core%20Health%20%26%20Fitness%2C%20our%20purpose%20is%20to%20live%20and%20share%20our%20passion%20for%20fitness.%20We%20bring%20innovative%20health%20and%20fitness%20solutions%20to%20the%20global%20market%20with%20brands%20like%C2StairMaster%2C%C2Schwinn%2C%C2Nautilus%2C%C2Star%20Trac%2C%C2Throwdown%2C%C2Wexer%2C%C2Gym%20Rax%2C%C2Core%20Fit%20Collective%C2and%20we%E2%80%99re%20still%20growing.%20We%20press%20into%20the%20future%20of%20fitness%20to%20ensure%20the%20creation%20of%20quality%20products%20and%20programming%20that%20meet%20the%20needs%20of%20an%20ever-evolving%20industry.%0D%0A%0D%0A%C2%0D%0A%0D%0AAt%20Core%20we%20are%20committed%20to%20building%20an%20energetic%2C%20diverse%2C%20and%20inclusive%20workspace.%20We%20value%20our%20differences%20and%20see%20community%20strength%20in%20diversity%20and%20representation.%20We%E2%80%99re%20always%20on%20the%20lookout%20for%20innovators%2C%20dreamers%20and%20doers%20who%20are%20passionate%20about%20fitness%20and%20wellbeing.%20We%20explore%20all%20opportunities%20to%20improve%20ourselves%2C%20our%20business%20partners%2C%20and%20our%20community.%20If%20you%E2%80%99re%20looking%20for%20a%20fulfilling%20career%20in%20helping%20people%2C%20find%20the%20best%20version%20of%20themselves%2C%20you%E2%80%99ve%20come%20to%20the%20right%20place.%0D%0A%0D%0A%C2%0D%0A%0D%0AWe%20are..."
      },
      "facebookLink": {
        "redirectUri": "",
        "facebookAppId": "773759036043100"
      },
      "linkedInLink": {}
    },
    "isQuickApply": false,
    "positionType": "Full Time",
    "countryPaidIn": "",
    "googleJobJson": "{\"@context\":\"https://schema.org/\",\"@type\":\"JobPosting\",\"title\":\"Security Analyst (60611)\",\"identifier\":\"J0CP97306653\",\"url\":\"https://www.paycomonline.net/v4/ats/web.php/portal/BCA6DB2B908FD5BA9AD3B28E74BA5B1D/jobs/306653\",\"image\":\"https://www.paycomonline.net/v4/ats/web.php/application/style/logo?clientkey=BCA6DB2B908FD5BA9AD3B28E74BA5B1D\",\"baseSalary\":{\"@type\":\"MonetaryAmount\",\"currency\":\"USD\",\"value\":{\"@type\":\"QuantitativeValue\",\"minValue\":85000,\"maxValue\":100000,\"unitText\":\"\"}},\"datePosted\":\"2026-05-28\",\"description\":\"Job DetailsLevel: ExperiencedJob Location: Vancouver Office - Vancouver, WA 98683Position Type: Full TimeSalary Range: $85,000.00 - $100,000.00 Salary/yearJob Category: Information TechnologyAt&nbsp;Core Health &amp; Fitness, our purpose is to live and share our passion for fitness. We bring innovative health and fitness solutions to the global market with brands like&nbsp;StairMaster,&nbsp;Schwinn,&nbsp;Nautilus,&nbsp;Star Trac,&nbsp;Throwdown,&nbsp;Wexer,&nbsp;Gym Rax,&nbsp;Core Fit Collective&nbsp;and we&rsquo;re still growing. We press into the future of fitness to ensure the creation of quality products and programming that meet the needs of an ever-evolving industry.\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nAt Core we are committed to building an energetic, diverse, and inclusive workspace. We value our differences and see community strength in diversity and representation. We&rsquo;re always on the lookout for innovators, dreamers and doers who are passionate about fitness and wellbeing. We explore all opportunities to improve ourselves, our business partners, and our community. If you&rsquo;re looking for a fulfilling career in helping people, find the best version of themselves, you&rsquo;ve come to the right place.\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nWe are looking for a&nbsp;Security Analyst&nbsp;to join our growing organization!\\r\\nQualifications&nbsp;&nbsp;General Position Summary:&nbsp;\\r\\n\\r\\nThe Security Analyst is a hands-on role within IT responsible for daily operation and continual improvement of the company&rsquo;s security and privacy posture across on-prem and SaaS environments and global user base. This role focuses on monitoring and tuning a 13+ tool security stack, detecting and responding to threats, and supporting growing regulatory and customer compliance demands (GDPR, PII, and industry frameworks.)&nbsp;\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nRoles and Responsibilities\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nSecurity Monitoring, Tools &amp; Incident Response\\r\\n\\r\\n\\r\\n\\tMonitor and manage alerts across a multi-tool ecosystem (e.g., MDR/XDR, email security, IDS/IPS, firewall, MDM, vulnerability scanner, DLP, password/privileged access tools, cloud security, backup/DR, and threat-intel feeds).\\r\\n\\tNormalize, correlate, and tune alerts from 13+ tools to reduce noise and focus on high-value events, maintaining clear runbooks for triage and escalation.\\r\\n\\tLead initial investigation and containment of incidents (phishing, malware, account compromise, ransomware, data exfiltration), coordinating with Helpdesk, systems engineer, and network architect as needed.\\r\\n\\tMaintain case records, evidence, and post-incident reports that feed into continual improvement of rules, playbooks, and configurations.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nVulnerability, Configuration Management &amp; Auditing\\r\\n\\r\\n\\r\\n\\tOperate vulnerability management tools to scan servers, endpoints, network devices, and key applications; track remediation with system owners and prioritize based on business impact.\\r\\n\\tWork with the technical architect/network engineer to implement and validate secure configurations, hardening baselines, network segmentation, and logging on firewalls, VPN, and other perimeter tools.\\r\\n\\tMonitor vendor security advisories, CVEs, and threat bulletins and recommend patching or compensating controls for high-risk exposures.\\r\\n\\tAudit work for IAM/access management, RBAC roles.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nTool Integration, Automation &amp; Optimization\\r\\n\\r\\n\\r\\n\\tAdminister day-to-day operations of the security toolset: manage access, policies, rules, connectors, and integrations with infrastructure and identity platforms.\\r\\n\\tCollaborate with IT to integrate security tools with ticketing, identity, and logging platforms, and help design lightweight automation/playbooks where supported (e.g., auto-quarantine, IP blocking, user notifications).\\r\\n\\tEvaluate overlapping capabilities across the 13+ tools and provide recommendations to simplify, consolidate, or better utilize existing investments.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nCompliance, Privacy &amp; Customer Demands\\r\\n\\r\\n\\r\\n\\tSupport implementation and ongoing operation of controls for GDPR, PII protection, and security frameworks (e.g., SOC 2-like controls, ISO/NIST-aligned practices as pursued by the business).\\r\\n\\tUse SIEM and related tools for log retention, evidence gathering, and reporting to support audits, customer due-diligence requests, and data-privacy impact assessments.\\r\\n\\tMaintain and update security documentation (asset lists, data flows, risk registers, control matrices, and tool inventories) to reflect the current environment.\\r\\n\\tParticipate in CAB process as appropriate.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nPolicies, Awareness &amp; Support for Small Teams\\r\\n\\r\\n\\r\\n\\tContribute to security and privacy policies, standards, and procedures that are practical for a lean infrastructure team while meeting regulatory expectations. Evaluate and update IT policies as needed.\\r\\n\\tPrepare targeted awareness content and simulations focusing on phishing, account security, data handling, and secure use of manufacturing/warehouse systems.\\r\\n\\tServe as a security point of contact for Helpdesk and application owners, providing guidance embedded into day-to-day processes and changes.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nRequired qualifications\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nEducation &amp; Experience\\r\\n\\r\\n\\r\\n\\tBachelor&rsquo;s degree in Information Security, Computer Science, Information Systems, or equivalent practical experience.\\r\\n\\t3+ years in an information security, SOC analyst, or infrastructure role with hands-on responsibility for multiple security tools in a small or mid-sized enterprise.\\r\\n\\tExperience supporting mixed environments with on-prem servers, SaaS, and distributed business applications.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nTechnical Skills\\r\\n\\r\\n\\r\\n\\tPractical experience with several of the following categories: SIEM/log management, EDR/XDR, email security, IDS/IPS, next-gen firewalls/VPN, web filtering/proxy, vulnerability scanning, DLP, MDM/endpoint management, identity security (SSO/MFA), and secure backup/DR.\\r\\n\\tStrong understanding of network and system fundamentals (Windows and virtualization, basic Linux, TCP/IP, DNS, routing, VPNs) and how attacks traverse these layers.\\r\\n\\tFamiliarity with data protection and privacy practices (GDPR and PII handling) and at least one security or compliance framework.\\r\\n\\tAbility to use scripting or automation (PowerShell, Python, or similar) for log analysis, enrichment, and small workflow automations is preferred.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nRequired Soft Skills\\r\\n\\r\\n\\r\\n\\tStrong analytical and problem-solving skills with the ability to interpret noisy alerts from many tools into clear, prioritized actions.\\r\\n\\tEffective communication with both technical and non-technical stakeholders, including concise incident and risk reporting.\\r\\n\\tComfortable working in a lean team, balancing operational workload with project and improvement work, and taking ownership of issues from detection through closure.\\r\\n\\tIndependent thinker. Can operate independently within the guidance and priorities set by IT leadership and prioritizes production issues over administrative tasks.\\r\\n\\tProactive, self-motivated, and organized with attention to detail.\\r\\n\\tOpen, honest, and transparent approach to dealing with any issue.&nbsp;\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nCertifications (preferred)\\r\\n\\r\\n\\r\\n\\tOne or more: Security+, CySA+, CISSP, SSCP, GSEC, or similar practitioner-level security certifications.\\r\\n\\tAdditional plus: privacy/compliance-focused credentials (e.g., ISO 27001 lead implementer/auditor, CIPP/E) or &nbsp;&nbsp;&nbsp;&nbsp;vendor certifications for SIEM/EDR or other core tools.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nWorking Conditions &amp; Expectations\\r\\n\\r\\n\\r\\n\\tStandard business hours in PST, with participation in an on-call rotation for high-severity security incidents and major maintenance.\\r\\n\\tHybrid work model (mostly remote) with on-site time at headquarters and key facilities for assessments, rollouts, and incident support.\\r\\n\\tOccasional after-hours work during patch windows, tool upgrades, and audit deadlines.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nPosition Status\\r\\n\\r\\nLevel: &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Staff\\r\\n\\r\\nFLSA: &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Exempt\\r\\n\\r\\nSupervises:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; NA\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nSalary Range - $85,000.00 - $100,000.00 Annually\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nThis job description reflects management&rsquo;s assignment of essential functions. It is only a summary of the typical functions of the job, not an exhaustive or comprehensive list of all possible job responsibilities, tasks, and duties. The responsibilities, tasks, and duties of the employee might differ from those outlined in the above job description, and other duties may be part of the role, as assigned. It does not restrict the tasks that may be assigned nor is it considered a contract of employment overriding at-will employment.\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nIn compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nCore Health&amp; Fitness is an equal opportunity employer that does not discriminate on the basis of race, color, national origin, sex, disability, age, religion, sexual orientation, gender identity, gender expression, creed, disabled veteran status, marital status, or Vietnam-era veteran status. If you are a person with a disability and you need assistance in applying for a position with Core Health &amp; Fitness, please contact our Human Resources department at [email protected] and direct assistance will be provided.&nbsp;\\r\\n\",\"responsibilities\":\"At&nbsp;Core Health &amp; Fitness, our purpose is to live and share our passion for fitness. We bring innovative health and fitness solutions to the global market with brands like&nbsp;StairMaster,&nbsp;Schwinn,&nbsp;Nautilus,&nbsp;Star Trac,&nbsp;Throwdown,&nbsp;Wexer,&nbsp;Gym Rax,&nbsp;Core Fit Collective&nbsp;and we&rsquo;re still growing. We press into the future of fitness to ensure the creation of quality products and programming that meet the needs of an ever-evolving industry.\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nAt Core we are committed to building an energetic, diverse, and inclusive workspace. We value our differences and see community strength in diversity and representation. We&rsquo;re always on the lookout for innovators, dreamers and doers who are passionate about fitness and wellbeing. We explore all opportunities to improve ourselves, our business partners, and our community. If you&rsquo;re looking for a fulfilling career in helping people, find the best version of themselves, you&rsquo;ve come to the right place.\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nWe are looking for a&nbsp;Security Analyst&nbsp;to join our growing organization!\\r\\n\",\"employmentType\":\"FULL_TIME\",\"hiringOrganization\":{\"@type\":\"Organization\",\"name\":\"Core Health & Fitness, LLC\",\"logo\":\"https://www.paycomonline.net/v4/ats/web.php/application/style/logo?clientkey=BCA6DB2B908FD5BA9AD3B28E74BA5B1D\"},\"jobLocation\":{\"@type\":\"Place\",\"address\":{\"streetAddress\":\"17800 SE Mill Plain Blvd 190 Mailbox 9\",\"addressLocality\":\"Vancouver\",\"addressRegion\":\"WA\",\"postalCode\":98683,\"addressCountry\":\"USA\"}},\"qualifications\":\"&nbsp;&nbsp;General Position Summary:&nbsp;\\r\\n\\r\\nThe Security Analyst is a hands-on role within IT responsible for daily operation and continual improvement of the company&rsquo;s security and privacy posture across on-prem and SaaS environments and global user base. This role focuses on monitoring and tuning a 13+ tool security stack, detecting and responding to threats, and supporting growing regulatory and customer compliance demands (GDPR, PII, and industry frameworks.)&nbsp;\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nRoles and Responsibilities\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nSecurity Monitoring, Tools &amp; Incident Response\\r\\n\\r\\n\\r\\n\\tMonitor and manage alerts across a multi-tool ecosystem (e.g., MDR/XDR, email security, IDS/IPS, firewall, MDM, vulnerability scanner, DLP, password/privileged access tools, cloud security, backup/DR, and threat-intel feeds).\\r\\n\\tNormalize, correlate, and tune alerts from 13+ tools to reduce noise and focus on high-value events, maintaining clear runbooks for triage and escalation.\\r\\n\\tLead initial investigation and containment of incidents (phishing, malware, account compromise, ransomware, data exfiltration), coordinating with Helpdesk, systems engineer, and network architect as needed.\\r\\n\\tMaintain case records, evidence, and post-incident reports that feed into continual improvement of rules, playbooks, and configurations.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nVulnerability, Configuration Management &amp; Auditing\\r\\n\\r\\n\\r\\n\\tOperate vulnerability management tools to scan servers, endpoints, network devices, and key applications; track remediation with system owners and prioritize based on business impact.\\r\\n\\tWork with the technical architect/network engineer to implement and validate secure configurations, hardening baselines, network segmentation, and logging on firewalls, VPN, and other perimeter tools.\\r\\n\\tMonitor vendor security advisories, CVEs, and threat bulletins and recommend patching or compensating controls for high-risk exposures.\\r\\n\\tAudit work for IAM/access management, RBAC roles.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nTool Integration, Automation &amp; Optimization\\r\\n\\r\\n\\r\\n\\tAdminister day-to-day operations of the security toolset: manage access, policies, rules, connectors, and integrations with infrastructure and identity platforms.\\r\\n\\tCollaborate with IT to integrate security tools with ticketing, identity, and logging platforms, and help design lightweight automation/playbooks where supported (e.g., auto-quarantine, IP blocking, user notifications).\\r\\n\\tEvaluate overlapping capabilities across the 13+ tools and provide recommendations to simplify, consolidate, or better utilize existing investments.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nCompliance, Privacy &amp; Customer Demands\\r\\n\\r\\n\\r\\n\\tSupport implementation and ongoing operation of controls for GDPR, PII protection, and security frameworks (e.g., SOC 2-like controls, ISO/NIST-aligned practices as pursued by the business).\\r\\n\\tUse SIEM and related tools for log retention, evidence gathering, and reporting to support audits, customer due-diligence requests, and data-privacy impact assessments.\\r\\n\\tMaintain and update security documentation (asset lists, data flows, risk registers, control matrices, and tool inventories) to reflect the current environment.\\r\\n\\tParticipate in CAB process as appropriate.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nPolicies, Awareness &amp; Support for Small Teams\\r\\n\\r\\n\\r\\n\\tContribute to security and privacy policies, standards, and procedures that are practical for a lean infrastructure team while meeting regulatory expectations. Evaluate and update IT policies as needed.\\r\\n\\tPrepare targeted awareness content and simulations focusing on phishing, account security, data handling, and secure use of manufacturing/warehouse systems.\\r\\n\\tServe as a security point of contact for Helpdesk and application owners, providing guidance embedded into day-to-day processes and changes.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nRequired qualifications\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nEducation &amp; Experience\\r\\n\\r\\n\\r\\n\\tBachelor&rsquo;s degree in Information Security, Computer Science, Information Systems, or equivalent practical experience.\\r\\n\\t3+ years in an information security, SOC analyst, or infrastructure role with hands-on responsibility for multiple security tools in a small or mid-sized enterprise.\\r\\n\\tExperience supporting mixed environments with on-prem servers, SaaS, and distributed business applications.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nTechnical Skills\\r\\n\\r\\n\\r\\n\\tPractical experience with several of the following categories: SIEM/log management, EDR/XDR, email security, IDS/IPS, next-gen firewalls/VPN, web filtering/proxy, vulnerability scanning, DLP, MDM/endpoint management, identity security (SSO/MFA), and secure backup/DR.\\r\\n\\tStrong understanding of network and system fundamentals (Windows and virtualization, basic Linux, TCP/IP, DNS, routing, VPNs) and how attacks traverse these layers.\\r\\n\\tFamiliarity with data protection and privacy practices (GDPR and PII handling) and at least one security or compliance framework.\\r\\n\\tAbility to use scripting or automation (PowerShell, Python, or similar) for log analysis, enrichment, and small workflow automations is preferred.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nRequired Soft Skills\\r\\n\\r\\n\\r\\n\\tStrong analytical and problem-solving skills with the ability to interpret noisy alerts from many tools into clear, prioritized actions.\\r\\n\\tEffective communication with both technical and non-technical stakeholders, including concise incident and risk reporting.\\r\\n\\tComfortable working in a lean team, balancing operational workload with project and improvement work, and taking ownership of issues from detection through closure.\\r\\n\\tIndependent thinker. Can operate independently within the guidance and priorities set by IT leadership and prioritizes production issues over administrative tasks.\\r\\n\\tProactive, self-motivated, and organized with attention to detail.\\r\\n\\tOpen, honest, and transparent approach to dealing with any issue.&nbsp;\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nCertifications (preferred)\\r\\n\\r\\n\\r\\n\\tOne or more: Security+, CySA+, CISSP, SSCP, GSEC, or similar practitioner-level security certifications.\\r\\n\\tAdditional plus: privacy/compliance-focused credentials (e.g., ISO 27001 lead implementer/auditor, CIPP/E) or &nbsp;&nbsp;&nbsp;&nbsp;vendor certifications for SIEM/EDR or other core tools.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nWorking Conditions &amp; Expectations\\r\\n\\r\\n\\r\\n\\tStandard business hours in PST, with participation in an on-call rotation for high-severity security incidents and major maintenance.\\r\\n\\tHybrid work model (mostly remote) with on-site time at headquarters and key facilities for assessments, rollouts, and incident support.\\r\\n\\tOccasional after-hours work during patch windows, tool upgrades, and audit deadlines.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nPosition Status\\r\\n\\r\\nLevel: &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Staff\\r\\n\\r\\nFLSA: &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Exempt\\r\\n\\r\\nSupervises:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; NA\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nSalary Range - $85,000.00 - $100,000.00 Annually\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nThis job description reflects management&rsquo;s assignment of essential functions. It is only a summary of the typical functions of the job, not an exhaustive or comprehensive list of all possible job responsibilities, tasks, and duties. The responsibilities, tasks, and duties of the employee might differ from those outlined in the above job description, and other duties may be part of the role, as assigned. It does not restrict the tasks that may be assigned nor is it considered a contract of employment overriding at-will employment.\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nIn compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nCore Health&amp; Fitness is an equal opportunity employer that does not discriminate on the basis of race, color, national origin, sex, disability, age, religion, sexual orientation, gender identity, gender expression, creed, disabled veteran status, marital status, or Vietnam-era veteran status. If you are a person with a disability and you need assistance in applying for a position with Core Health &amp; Fitness, please contact our Human Resources department at [email protected] and direct assistance will be provided.&nbsp;\\r\\n\",\"experienceRequirements\":\"&nbsp;&nbsp;General Position Summary:&nbsp;\\r\\n\\r\\nThe Security Analyst is a hands-on role within IT responsible for daily operation and continual improvement of the company&rsquo;s security and privacy posture across on-prem and SaaS environments and global user base. This role focuses on monitoring and tuning a 13+ tool security stack, detecting and responding to threats, and supporting growing regulatory and customer compliance demands (GDPR, PII, and industry frameworks.)&nbsp;\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nRoles and Responsibilities\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nSecurity Monitoring, Tools &amp; Incident Response\\r\\n\\r\\n\\r\\n\\tMonitor and manage alerts across a multi-tool ecosystem (e.g., MDR/XDR, email security, IDS/IPS, firewall, MDM, vulnerability scanner, DLP, password/privileged access tools, cloud security, backup/DR, and threat-intel feeds).\\r\\n\\tNormalize, correlate, and tune alerts from 13+ tools to reduce noise and focus on high-value events, maintaining clear runbooks for triage and escalation.\\r\\n\\tLead initial investigation and containment of incidents (phishing, malware, account compromise, ransomware, data exfiltration), coordinating with Helpdesk, systems engineer, and network architect as needed.\\r\\n\\tMaintain case records, evidence, and post-incident reports that feed into continual improvement of rules, playbooks, and configurations.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nVulnerability, Configuration Management &amp; Auditing\\r\\n\\r\\n\\r\\n\\tOperate vulnerability management tools to scan servers, endpoints, network devices, and key applications; track remediation with system owners and prioritize based on business impact.\\r\\n\\tWork with the technical architect/network engineer to implement and validate secure configurations, hardening baselines, network segmentation, and logging on firewalls, VPN, and other perimeter tools.\\r\\n\\tMonitor vendor security advisories, CVEs, and threat bulletins and recommend patching or compensating controls for high-risk exposures.\\r\\n\\tAudit work for IAM/access management, RBAC roles.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nTool Integration, Automation &amp; Optimization\\r\\n\\r\\n\\r\\n\\tAdminister day-to-day operations of the security toolset: manage access, policies, rules, connectors, and integrations with infrastructure and identity platforms.\\r\\n\\tCollaborate with IT to integrate security tools with ticketing, identity, and logging platforms, and help design lightweight automation/playbooks where supported (e.g., auto-quarantine, IP blocking, user notifications).\\r\\n\\tEvaluate overlapping capabilities across the 13+ tools and provide recommendations to simplify, consolidate, or better utilize existing investments.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nCompliance, Privacy &amp; Customer Demands\\r\\n\\r\\n\\r\\n\\tSupport implementation and ongoing operation of controls for GDPR, PII protection, and security frameworks (e.g., SOC 2-like controls, ISO/NIST-aligned practices as pursued by the business).\\r\\n\\tUse SIEM and related tools for log retention, evidence gathering, and reporting to support audits, customer due-diligence requests, and data-privacy impact assessments.\\r\\n\\tMaintain and update security documentation (asset lists, data flows, risk registers, control matrices, and tool inventories) to reflect the current environment.\\r\\n\\tParticipate in CAB process as appropriate.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nPolicies, Awareness &amp; Support for Small Teams\\r\\n\\r\\n\\r\\n\\tContribute to security and privacy policies, standards, and procedures that are practical for a lean infrastructure team while meeting regulatory expectations. Evaluate and update IT policies as needed.\\r\\n\\tPrepare targeted awareness content and simulations focusing on phishing, account security, data handling, and secure use of manufacturing/warehouse systems.\\r\\n\\tServe as a security point of contact for Helpdesk and application owners, providing guidance embedded into day-to-day processes and changes.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nRequired qualifications\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nEducation &amp; Experience\\r\\n\\r\\n\\r\\n\\tBachelor&rsquo;s degree in Information Security, Computer Science, Information Systems, or equivalent practical experience.\\r\\n\\t3+ years in an information security, SOC analyst, or infrastructure role with hands-on responsibility for multiple security tools in a small or mid-sized enterprise.\\r\\n\\tExperience supporting mixed environments with on-prem servers, SaaS, and distributed business applications.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nTechnical Skills\\r\\n\\r\\n\\r\\n\\tPractical experience with several of the following categories: SIEM/log management, EDR/XDR, email security, IDS/IPS, next-gen firewalls/VPN, web filtering/proxy, vulnerability scanning, DLP, MDM/endpoint management, identity security (SSO/MFA), and secure backup/DR.\\r\\n\\tStrong understanding of network and system fundamentals (Windows and virtualization, basic Linux, TCP/IP, DNS, routing, VPNs) and how attacks traverse these layers.\\r\\n\\tFamiliarity with data protection and privacy practices (GDPR and PII handling) and at least one security or compliance framework.\\r\\n\\tAbility to use scripting or automation (PowerShell, Python, or similar) for log analysis, enrichment, and small workflow automations is preferred.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nRequired Soft Skills\\r\\n\\r\\n\\r\\n\\tStrong analytical and problem-solving skills with the ability to interpret noisy alerts from many tools into clear, prioritized actions.\\r\\n\\tEffective communication with both technical and non-technical stakeholders, including concise incident and risk reporting.\\r\\n\\tComfortable working in a lean team, balancing operational workload with project and improvement work, and taking ownership of issues from detection through closure.\\r\\n\\tIndependent thinker. Can operate independently within the guidance and priorities set by IT leadership and prioritizes production issues over administrative tasks.\\r\\n\\tProactive, self-motivated, and organized with attention to detail.\\r\\n\\tOpen, honest, and transparent approach to dealing with any issue.&nbsp;\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nCertifications (preferred)\\r\\n\\r\\n\\r\\n\\tOne or more: Security+, CySA+, CISSP, SSCP, GSEC, or similar practitioner-level security certifications.\\r\\n\\tAdditional plus: privacy/compliance-focused credentials (e.g., ISO 27001 lead implementer/auditor, CIPP/E) or &nbsp;&nbsp;&nbsp;&nbsp;vendor certifications for SIEM/EDR or other core tools.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nWorking Conditions &amp; Expectations\\r\\n\\r\\n\\r\\n\\tStandard business hours in PST, with participation in an on-call rotation for high-severity security incidents and major maintenance.\\r\\n\\tHybrid work model (mostly remote) with on-site time at headquarters and key facilities for assessments, rollouts, and incident support.\\r\\n\\tOccasional after-hours work during patch windows, tool upgrades, and audit deadlines.\\r\\n\\r\\n\\r\\n&nbsp;\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nPosition Status\\r\\n\\r\\nLevel: &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Staff\\r\\n\\r\\nFLSA: &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Exempt\\r\\n\\r\\nSupervises:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; NA\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nSalary Range - $85,000.00 - $100,000.00 Annually\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nThis job description reflects management&rsquo;s assignment of essential functions. It is only a summary of the typical functions of the job, not an exhaustive or comprehensive list of all possible job responsibilities, tasks, and duties. The responsibilities, tasks, and duties of the employee might differ from those outlined in the above job description, and other duties may be part of the role, as assigned. It does not restrict the tasks that may be assigned nor is it considered a contract of employment overriding at-will employment.\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nIn compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.\\r\\n\\r\\n&nbsp;\\r\\n\\r\\nCore Health&amp; Fitness is an equal opportunity employer that does not discriminate on the basis of race, color, national origin, sex, disability, age, religion, sexual orientation, gender identity, gender expression, creed, disabled veteran status, marital status, or Vietnam-era veteran status. If you are a person with a disability and you need assistance in applying for a position with Core Health &amp; Fitness, please contact our Human Resources department at [email protected] and direct assistance will be provided.&nbsp;\\r\\n\",\"industry\":\"Information Technology\",\"validThrough\":\"-0001-11-30\"}",
    "applyAvailable": true,
    "educationLevel": "",
    "qualifications": "<p style=\"margin-right:34px;margin-left:30px;\"><span>&nbsp;</span><span style=\"font-size:12px;\">&nbsp;</span><span style=\"font-size:11pt;\"><b>General Position Summary:&nbsp;</b></span></p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;text-align:justify;\"><span style=\"font-size:12px;\">The Security Analyst is a hands-on role within IT responsible for daily operation and continual improvement of the company&rsquo;s security and privacy posture across on-prem and SaaS environments and global user base. This role focuses on monitoring and tuning a 13+ tool security stack, detecting and responding to threats, and supporting growing regulatory and customer compliance demands (GDPR, PII, and industry frameworks.)&nbsp;</span></p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;text-align:justify;\">&nbsp;</p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;text-align:justify;\"><span style=\"font-size:12px;\"><b><u>Roles and Responsibilities</u></b></span></p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;text-align:justify;\">&nbsp;</p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;text-align:justify;\"><span style=\"font-size:12px;\"><b>Security Monitoring, Tools &amp; Incident Response</b></span></p>\r\n\r\n<ul style=\"margin-left:40px;\">\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Monitor and manage alerts across a multi-tool ecosystem (e.g., MDR/XDR, email security, IDS/IPS, firewall, MDM, vulnerability scanner, DLP, password/privileged access tools, cloud security, backup/DR, and threat-intel feeds).</span></span></span></li>\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Normalize, correlate, and tune alerts from 13+ tools to reduce noise and focus on high-value events, maintaining clear runbooks for triage and escalation.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Lead initial investigation and containment of incidents (phishing, malware, account compromise, ransomware, data exfiltration), coordinating with Helpdesk, systems engineer, and network architect as needed.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Maintain case records, evidence, and post-incident reports that feed into continual improvement of rules, playbooks, and configurations.</span></span></span></li>\r\n</ul>\r\n\r\n<p style=\"margin-right:34px;margin-left:8px;\">&nbsp;</p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;text-align:justify;\"><span style=\"font-size:12px;\"><b>Vulnerability, Configuration Management &amp; Auditing</b></span></p>\r\n\r\n<ul style=\"margin-left:40px;\">\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Operate vulnerability management tools to scan servers, endpoints, network devices, and key applications; track remediation with system owners and prioritize based on business impact.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Work with the technical architect/network engineer to implement and validate secure configurations, hardening baselines, network segmentation, and logging on firewalls, VPN, and other perimeter tools.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Monitor vendor security advisories, CVEs, and threat bulletins and recommend patching or compensating controls for high-risk exposures.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Audit work for IAM/access management, RBAC roles.</span></span></span></li>\r\n</ul>\r\n\r\n<p style=\"margin-right:34px;margin-left:8px;\">&nbsp;</p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;text-align:justify;\"><span style=\"font-size:12px;\"><b>Tool Integration, Automation &amp; Optimization</b></span></p>\r\n\r\n<ul style=\"margin-left:40px;\">\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Administer day-to-day operations of the security toolset: manage access, policies, rules, connectors, and integrations with infrastructure and identity platforms.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Collaborate with IT to integrate security tools with ticketing, identity, and logging platforms, and help design lightweight automation/playbooks where supported (e.g., auto-quarantine, IP blocking, user notifications).</span></span></span></li>\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Evaluate overlapping capabilities across the 13+ tools and provide recommendations to simplify, consolidate, or better utilize existing investments.</span></span></span></li>\r\n</ul>\r\n\r\n<p style=\"margin-right:34px;margin-left:8px;\">&nbsp;</p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;text-align:justify;\"><span style=\"font-size:12px;\"><b>Compliance, Privacy &amp; Customer Demands</b></span></p>\r\n\r\n<ul style=\"margin-left:40px;\">\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Support implementation and ongoing operation of controls for GDPR, PII protection, and security frameworks (e.g., SOC 2-like controls, ISO/NIST-aligned practices as pursued by the business).</span></span></span></li>\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Use SIEM and related tools for log retention, evidence gathering, and reporting to support audits, customer due-diligence requests, and data-privacy impact assessments.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Maintain and update security documentation (asset lists, data flows, risk registers, control matrices, and tool inventories) to reflect the current environment.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Participate in CAB process as appropriate.</span></span></span></li>\r\n</ul>\r\n\r\n<p style=\"margin-right:34px;margin-left:8px;\">&nbsp;</p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;text-align:justify;\"><span style=\"font-size:12px;\"><b>Policies, Awareness &amp; Support for Small Teams</b></span></p>\r\n\r\n<ul style=\"margin-left:40px;\">\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Contribute to security and privacy policies, standards, and procedures that are practical for a lean infrastructure team while meeting regulatory expectations. Evaluate and update IT policies as needed.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Prepare targeted awareness content and simulations focusing on phishing, account security, data handling, and secure use of manufacturing/warehouse systems.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Serve as a security point of contact for Helpdesk and application owners, providing guidance embedded into day-to-day processes and changes.</span></span></span></li>\r\n</ul>\r\n\r\n<p style=\"margin-right:34px;margin-left:8px;\">&nbsp;</p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;text-align:justify;\"><span style=\"font-size:12px;\"><b><u>Required qualifications</u></b></span></p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;text-align:justify;\">&nbsp;</p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;text-align:justify;\"><span style=\"font-size:12px;\"><b>Education &amp; Experience</b></span></p>\r\n\r\n<ul style=\"margin-left:40px;\">\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Bachelor&rsquo;s degree in Information Security, Computer Science, Information Systems, or equivalent practical experience.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">3+ years in an information security, SOC analyst, or infrastructure role with hands-on responsibility for multiple security tools in a small or mid-sized enterprise.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Experience supporting mixed environments with on-prem servers, SaaS, and distributed business applications.</span></span></span></li>\r\n</ul>\r\n\r\n<p style=\"margin-right:34px;margin-left:8px;\">&nbsp;</p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;text-align:justify;\"><span style=\"font-size:12px;\"><b>Technical Skills</b></span></p>\r\n\r\n<ul style=\"margin-left:40px;\">\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Practical experience with several of the following categories: SIEM/log management, EDR/XDR, email security, IDS/IPS, next-gen firewalls/VPN, web filtering/proxy, vulnerability scanning, DLP, MDM/endpoint management, identity security (SSO/MFA), and secure backup/DR.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Strong understanding of network and system fundamentals (Windows and virtualization, basic Linux, TCP/IP, DNS, routing, VPNs) and how attacks traverse these layers.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Familiarity with data protection and privacy practices (GDPR and PII handling) and at least one security or compliance framework.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;margin-left:8px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Ability to use scripting or automation (PowerShell, Python, or similar) for log analysis, enrichment, and small workflow automations is preferred.</span></span></span></li>\r\n</ul>\r\n\r\n<p style=\"margin-right:34px;margin-left:8px;\">&nbsp;</p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;text-align:justify;\"><span style=\"font-size:12px;\"><b>Required Soft Skills</b></span></p>\r\n\r\n<ul style=\"margin-left:40px;\">\r\n\t<li style=\"margin-right:34px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Strong analytical and problem-solving skills with the ability to interpret noisy alerts from many tools into clear, prioritized actions.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Effective communication with both technical and non-technical stakeholders, including concise incident and risk reporting.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Comfortable working in a lean team, balancing operational workload with project and improvement work, and taking ownership of issues from detection through closure.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Independent thinker. Can operate independently within the guidance and priorities set by IT leadership and prioritizes production issues over administrative tasks.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Proactive, self-motivated, and organized with attention to detail.</span></span></span></li>\r\n\t<li style=\"margin-right:34px;\"><span style=\"font-size:12px;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Open, honest, and transparent approach to dealing with any issue.&nbsp;</span></span></span></li>\r\n</ul>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;\">&nbsp;</p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;text-align:justify;\"><span style=\"font-size:12px;\"><span style=\"font-family:Arial, Helvetica, sans-serif;\"><b>Certifications (preferred)</b></span></span></p>\r\n\r\n<ul>\r\n\t<li style=\"margin-right:34px;margin-left:30px;\"><span style=\"font-size:12px;\"><span style=\"font-family:Arial, Helvetica, sans-serif;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">One or more: Security+, CySA+, CISSP, SSCP, GSEC, or similar practitioner-level security certifications.</span></span></span></span></li>\r\n\t<li style=\"margin-right:34px;margin-left:30px;\"><span style=\"font-size:12px;\"><span style=\"font-family:Arial, Helvetica, sans-serif;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Additional plus: privacy/compliance-focused credentials (e.g., ISO 27001 lead implementer/auditor, CIPP/E) or &nbsp;&nbsp;&nbsp;&nbsp;vendor certifications for SIEM/EDR or other core tools.</span></span></span></span></li>\r\n</ul>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;\">&nbsp;</p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;text-align:justify;\"><span style=\"font-size:12px;\"><span style=\"font-family:Arial, Helvetica, sans-serif;\"><b>Working Conditions &amp; Expectations</b></span></span></p>\r\n\r\n<ul style=\"margin-left:40px;\">\r\n\t<li style=\"margin-right:34px;\"><span style=\"font-size:12px;\"><span style=\"font-family:Arial, Helvetica, sans-serif;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Standard business hours in PST, with participation in an on-call rotation for high-severity security incidents and major maintenance.</span></span></span></span></li>\r\n\t<li style=\"margin-right:34px;\"><span style=\"font-size:12px;\"><span style=\"font-family:Arial, Helvetica, sans-serif;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Hybrid work model (mostly remote) with on-site time at headquarters and key facilities for assessments, rollouts, and incident support.</span></span></span></span></li>\r\n\t<li style=\"margin-right:34px;\"><span style=\"font-size:12px;\"><span style=\"font-family:Arial, Helvetica, sans-serif;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Occasional after-hours work during patch windows, tool upgrades, and audit deadlines.</span></span></span></span></li>\r\n</ul>\r\n\r\n<p style=\"margin-right:34px;margin-left:48px;\">&nbsp;</p>\r\n\r\n<p style=\"margin-right:34px;margin-left:48px;\">&nbsp;</p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;\"><span style=\"font-size:12px;\"><span style=\"font-family:Arial, Helvetica, sans-serif;\"><span style=\"background:#FFFFFF;\"><b><span style=\"color:#000000;\">Position Status</span></b></span></span></span></p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;\"><span style=\"font-size:12px;\"><span style=\"font-family:Arial, Helvetica, sans-serif;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Level: &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Staff</span></span></span></span></p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;\"><span style=\"font-size:12px;\"><span style=\"font-family:Arial, Helvetica, sans-serif;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">FLSA: &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Exempt</span></span></span></span></p>\r\n\r\n<p style=\"margin-right:34px;margin-left:30px;\"><span style=\"font-size:12px;\"><span style=\"font-family:Arial, Helvetica, sans-serif;\"><span style=\"background:#FFFFFF;\"><span style=\"color:#000000;\">Supervises:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; NA</span></span></span></span></p>\r\n\r\n<p>&nbsp;</p>\r\n\r\n<p>Salary Range - $85,000.00 - $100,000.00 Annually</p>\r\n\r\n<p>&nbsp;</p>\r\n\r\n<p style=\"margin-bottom:11px;\"><span style=\"font-size:12px;\"><span style=\"font-family:Arial, Helvetica, sans-serif;\"><span style=\"line-height:107%;\"><span style=\"line-height:107%;\">This job description reflects management&rsquo;s assignment of essential functions. It is only a summary of the typical functions of the job, not an exhaustive or comprehensive list of all possible job responsibilities, tasks, and duties. The responsibilities, tasks, and duties of the employee might differ from those outlined in the above job description, and other duties may be part of the role, as assigned. It does not restrict the tasks that may be assigned nor is it considered a contract of employment overriding at-will employment.</span></span></span></span></p>\r\n\r\n<p style=\"margin-bottom:11px;\">&nbsp;</p>\r\n\r\n<p style=\"margin-bottom:11px;\"><span style=\"font-size:12px;\"><span style=\"font-family:Arial, Helvetica, sans-serif;\"><span style=\"line-height:107%;\"><span style=\"line-height:107%;\">In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.</span></span></span></span></p>\r\n\r\n<p style=\"margin-bottom:11px;\">&nbsp;</p>\r\n\r\n<p style=\"margin-bottom:11px;\"><span style=\"font-size:12px;\"><span style=\"font-family:Arial, Helvetica, sans-serif;\"><span style=\"line-height:107%;\"><span style=\"line-height:107%;\">Core Health&amp; Fitness is an equal opportunity employer that does not discriminate on the basis of race, color, national origin, sex, disability, age, religion, sexual orientation, gender identity, gender expression, creed, disabled veteran status, marital status, or Vietnam-era veteran status. If you are a person with a disability and you need assistance in applying for a position with Core Health &amp; Fitness, please contact our Human Resources department at [email protected] and direct assistance will be provided.</span></span></span></span><span>&nbsp;</span></p>\r\n",
    "descriptionTitle": "Description",
    "travelPercentage": "",
    "jobYoutubeVideoId": "",
    "legalRevisionDate": {
      "date": "2023-06-14T14:30:07.000Z",
      "timezone": "America/Chicago",
      "timezone_type": 3
    },
    "secondaryLocations": [],
    "primaryPhoneCountry": "US",
    "primaryPhoneEnabled": true,
    "qualificationsTitle": "Qualifications",
    "primaryPhoneRequired": true,
    "primaryPhoneNumberDoesNotExist": false
  },
  "preview": {
    "jobId": 306653,
    "isHotJob": false,
    "jobTitle": "Security Analyst (60611)",
    "postedOn": "",
    "locations": "Vancouver Office - Vancouver, WA 98683",
    "remoteType": "Hybrid",
    "description": "At Core Health & Fitness, our purpose is to live and share our passion for fitness. We bring innovative health and fitness solutions to the global mar...",
    "positionType": "Full Time"
  },
  "detail_meta": {
    "url": "https://portal-applicant-tracking.us-cent.paycomonline.net/api/ats/job-postings/306653",
    "http_status": 200,
    "content_type": "application/json",
    "response_bytes": 64839
  },
  "detail_errors": []
}

Get this page with API

Rendered from the bluedoor Job Postings API. Reproduce it:

GET https://api.bluedoor.sh/job-postings/v1/jobs/7e87828a7d627f03449d677adbe0074d67812ba5?include=descriptionJSON

GET https://api.bluedoor.sh/job-postings/v1/orgs/16875909-a259-47d5-8122-dd28dda52b35JSON

GET https://api.bluedoor.sh/job-postings/v1/sources/8888a5ee-eda0-4fe7-b231-5b424dea182bJSON

GET https://api.bluedoor.sh/job-postings/v1/jobs/7e87828a7d627f03449d677adbe0074d67812ba5/eventsJSON

Docs · Get an API key