IT Security Analyst

Founded in 1989 and headquartered in Chicago, Jet Support Services, Inc. (JSSI) is the largest independent provider of hourly cost maintenance programs for business aviation. JSSI delivers comprehensive coverage for engines, airframes, and auxiliary power units (APUs) across more than 300 different aircraft makes and models, helping owners and operators stabilize maintenance budgets, maximize aircraft availability, and protect asset value throughout the lifecycle of ownership.   JSSI has built a portfolio of complementary business lines designed to simplify the economic and technical complexity of business aviation; these include Maintenance teams, Traxxall maintenance tracking software, Parts & Engines, Conklin aircraft cost and performance data, and Aviation Capital asset-based financing solutions. Together, these offerings support owners, operators, and maintenance providers with integrated tools spanning ownership and maintenance planning, execution, and financial management.   With more than 6,500 aircraft supported through programs and software platforms, JSSI leverages its unique independence, unmatched scale, and data-driven insight to deliver customized solutions and support models aligned to the interests of each client — regardless of aircraft platform. JSSI is backed by leading institutional investors GTCR, Genstar Capital, and Blackstone. Learn more at jetsupport.com. 

Mission Statement

The IT Security Analyst supports the organization’s cybersecurity operations by monitoring security alerts, analyzing potential threats, and assisting with the identification, investigation, and remediation of security incidents.

This role requires strong analytical and investigative abilities, as the analyst plays a key role in the daily operations of the security program. In addition to working collaboratively with the security engineer and IT teams to maintain and enhance the organization’s security posture, the role also requires excellent communication and interpersonal skills to effectively coordinate efforts, share insights, and foster a culture of security awareness across the organization. 

• Monitor ticket queues, security alerts, dashboards, and threat intelligence feeds to identify, investigate, and remediate potential security issues.
• Follow all stages of the NIST incident response framework, including detection, eradication, and recovery.
• Perform initial analysis, triage, and remediation of security alerts from email, endpoint, identity, and cloud security tools such as security information and event management (SIEM), email security platforms, endpoint detection and response (EDR/XDR), and scripting/querying utilities for automation and investigation.
• Perform vulnerability management activities, including tracking findings, validating remediation, and maintaining accurate records.
• Support maintenance of security devices, systems, and tools according to best practices.
• Routinely assess network and cloud security posture against best practices.
• Investigate and respond to email phishing alert reports and quarantine release requests.
• Oversee the organization’s security awareness training program, including simulated phishing campaigns, to ensure compliance.
• Support cybersecurity initiatives and projects to continually improve the organization’s security posture and program maturity.
• Help maintain and update security metrics, dashboards, and recurring reports for leadership and audits.
• Document and improve operational procedures with an eye toward efficiency.
• Support information security audits and client due diligence questionnaires by collecting evidence and maintaining documentation.
• Collaborate with other IT professionals to advise on and ensure compliance with cybersecurity best practices.
• Participate in after-hours on-call rotation and respond to critical security alerts after hours.
• Perform other duties as assigned.

3-5 years' experience in Information Technology roles

2 years’ experience working as a SOC analyst or similar experience

Bachelor's degree in Computer Science, Information Security, or a related field

Cybersecurity certifications such as Security+, CySA+, SSCP, CCSP or CEH highly valued

Excellent written and verbal communication skills

Detail orientation and strong analytical problem-solving abilities

Ability to effectively prioritize tasks and project in a fast-paced environment

In-depth knowledge of networking protocols and experience configuring network security devices such as firewalls and IDS/IPS

Experience with Endpoint Detection and Response (EDR) and XDR services

Experience with Email Security platforms such as Microsoft Defender for Office, Proofpoint, and Mimecast

Experience with the Microsoft Defender Security suite strongly preferred

Scripting/query language experience such as Bash, PowerShell, KQL

Hands-on experience setting up and querying SIEM tools such as Sumo Logic

Knowledge of data privacy and compliance regulations as well as cybersecurity frameworks such as ISO 27001 and NIST