IMPACT Technology Group Hiring IT Security Analyst in St Paul, MN

We are a Twin Cities-based Technology and IT Consulting firm focused on delivering high impact solutions for complex IT initiatives for over 30 years. Our full-service organization offers support, from service desk and managed services to security, as well as management and IT consulting.

At Impact Group “We Make IT Work!” We stand by our core values: Integrity with Initiative, Modest, Fun, Accountability, Caring, and Team Warriors.

Position Summary

The Security Analyst develops and supports programs designed to protect the organization’s information systems and networks. This role counters security breaches and helps minimize the likelihood of incidents and disasters.

To foster effective teamwork, maintain strong relationships with clients and vendors, and support seamless collaboration, we require candidates for this position to be local / frequently on site (Twin Cities MN). The selected candidate must be available to attend in-office meetings, participate in collaborative projects, mentor associate level staff, and visit clients and vendors as needed.

This position requires participation in an on-call rotation for after-hours and weekend calls, tickets, or projects.

Core Responsibilities

• Conduct user training and awareness programs for both internal staff and client personnel
• Assist in onboarding new clients by assessing their security posture and preparing tailored response playbooks
• Develop and maintain internal and client-facing documentation for security configurations and incident response
• Manage identity and access management (IAM) across multiple platforms
• Support internal and client audits by collecting and organizing necessary documentation
• Oversee and coordinate patch management and vulnerability remediation efforts
• Collaborate with the CISO to implement security policies and programs across both internal and client infrastructures
• Monitor, triage, and investigate alerts from various security tools (SIEM, IDS/IPS, firewalls) as well as escalations from a third-party security operations center (SOC)
• Support both internal and client-specific disaster recovery and business continuity planning
• Analyze and respond to security incidents; perform root cause analysis and update incident response plans
• Conduct internal and external vulnerability assessments and penetration tests
• Configure and maintain up-to-date security systems, including endpoint detection and response (EDR) solutions
• Generate reports and insights on security posture for both internal systems and customer environments
• Response rate of 85% or higher within one hour for Priority 2 (P2) tickets

Skills/Attributes

• Proficiency in security frameworks such as CIS CSC, NIST Cybersecurity Framework, PCI and ISO 27001.
• Knowledge of regulatory requirements (GDPR, HIPAA, PCI-DSS, SOX)
• Experience with scripting (e.g., Python, PowerShell) and programming (e.g., C, C++, Java)
• Familiarity with identity and access management systems
• Proficient in security tools (firewalls, antivirus, intrusion detection/prevention, SIEM)
• Strong understanding of vulnerability and compliance scanning
• Excellent communication and collaboration skills across IT and business teams
• Demonstrates company values and leadership through professional conduct

Qualifications/Experience/Education

• Bachelor’s degree in computer science, cybersecurity, or a related field
• Minimum of 2 years of experience in security administration and incident management
• Preferred certifications: CISSP, CEH, CompTIA Security+, CISM, CISA
• Proficiency in English (additional languages are a plus)
• Valid driver’s license with acceptable driving record

Physical Demands/Environmental Factors

• Extended periods of computer use
• Frequent communication via phone and electronic messaging
• Potential ergonomic, chemical, electrical, and physical hazards in IT workspaces
• May be subject to psychosocial stress due to deadlines or extended work hours

We provide reasonable accommodation for employees with disabilities to enable them to perform the essential functions of the job. If you require accommodation, please let us know.

The duties, responsibilities, and activities assigned to this role may change at any time, with or without notice.

Impact Group is an Equal Opportunity Employer and prohibits discrimination based on a protected class, including race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law.