IT Security Analyst - Hoffman Estates, IL

Crystal Clean (CC) is one of the nation's leading privately held companies in the environmental waste services industry. We are seeking highly motivated individuals with a strong work ethic to join our rapidly growing company. Crystal Clean offers competitive compensation, excellent benefits, and opportunities for advancement. We are willing to provide complete training for this opportunity!

The Security Analyst is responsible for day-to-day security monitoring, incident response, and vulnerability management across the enterprise environment. This role acts as the first line of defense for Crystal Clean's digital assets, ensuring threats are detected early, escalated appropriately, and remediated in collaboration with IT and business teams. The analyst leverages SIEM tools, endpoint protection, and cloud-native security platforms to monitor activity, investigate anomalies, and enforce security policies.

Threat Detection & Monitoring

• Monitors SIEM for alerts and correlates with logs from firewalls, backups, and endpoints.
• Performs triage and investigates incidents, escalating to senior staff or SOC provider, as needed.
• Maintains detection content (rules, dashboards, alerts).
• Supports investigations, evidence gathering, and root-cause analysis.

Incident Response

• Performs as primary responder for phishing, malware, endpoint compromises, and access anomalies.
• Documents incidents, maintains playbooks, and conducts basic forensic analysis.
• Coordinates containment and recovery efforts with IT Operations and Infrastructure teams.

Vulnerability Management

• Runs and reviews vulnerability scans
• Tracks remediation status across servers, endpoints, and applications.
• Partners with IT Operations on patch cadence reporting.

Identity & Access Oversight

• Supports IAM team with provisioning audits and access reviews.
• Investigates abnormal login behavior or privilege escalations.

Governance & Compliance Support

• Provides data for internal/external audits.
• Contributes to maintaining security policies.
• Tracks metrics such as patch SLA compliance, MFA adoption, and phishing test performance.

User Awareness & Education

Supports phishing simulations and training campaigns.

• Acts as a point of contact for user-reported security issues (phishing emails, suspicious activity).

Education and Essential Qualifications

• Bachelor's degree and at least 3 years of experience in IT Security OR a High School Diploma/GED and at least 5 years of experience in IT Security
• Experience working with SIEM tools, endpoint protection and cloud-native security platforms.
• Experience working in a dynamic environment.

Crystal Clean LLC is an Equal Opportunity Employer. Crystal Clean expressly values diversity, equity, and inclusion, and encourages the applications of individuals from diverse backgrounds, so that Crystal Clean reflects the communities and customers that we serve.

The anticipated salary range for this position is $100,000 - $115,000, and includes benefits such as the following:

• Health, Dental and Vision insurance
• Wellness Program
• Flexible Spending Accounts
• Life Insurance
• Long-Term Disability
• Employee Assistance Program
• Tuition Reimbursement