Enterprise Security Analyst I
About this role
Looking for more than just a job? You’ve found it.
At Pekin Insurance, you’re not a number—you’re part of something bigger. For over 100 years, we’ve built a community where people are valued, supported, and empowered to grow. Here, you’ll find a workplace where collaboration is real, ideas are welcome, and the work you do truly matters. We’re proud to help people through life’s toughest moments—and it’s our people who make that possible.
From day one, you’ll be encouraged to bring your whole self to work, take on meaningful challenges, and grow in ways that matter to you.
This is your opportunity to belong, thrive, and make a difference—right here at Pekin Insurance.
Position Overview
The Enterprise Security Analyst I protects the integrity, confidentiality, and availability of information and informs management regarding the effectiveness of network and data security controls. This position is responsible for assisting with monitoring multiple security technologies and assisting with the Governance, Risk, and Compliance (GRC) activities to help ensure that the foundation of the enterprise information security program is carried out according to the overall security strategy.
Essential Job Functions
- Assists with Governance, Risk, and Compliance (GRC) activities as assigned by supervisor
- Assists with information security risk assessments within the vendor risk assessment program
- Assists with information security risk assessments for internal projects and overall security controls, including evaluation of information technology solutions
- Assists with providing security requirements to both internal partners and projects, as well as external third-party providers
- Performs vulnerability scans under supervision and assists with the vulnerability management process
- Monitors and assists with signature tuning for intrusion detection system (IDS) and intrusion prevention system (IPS) infrastructure
- Monitors security event tools and escalates issues for remediation
- Compiles security reports for various business partners
- Conducts and assists with the development of security awareness training material
- Keeps current with security industry standards and appropriate governmental regulations
- Performs other duties as assigned
Education & Experience
- Bachelor’s degree in Computer Science, Information Systems, or related field required
- Typically requires 1-3 years of experience in related field
Certifications & Licenses
- Certifications related to cyber security preferred, such as Security+, GIAC Web Application Penetration Tester (GWAPT), or GIAC Penetration Tester (GPen)
Knowledge, Skills, & Abilities
Basic ability to:
- Communicate effectively in both oral and written form
- Exercise sound judgment in making critical decisions
- Work as a team member and follow directions
- Analyze, organize, and prioritize work while meeting multiple deadlines
- Work comfortably in a fast-paced work environment
- Solve practical problems and deal with a variety of concrete variables in situations where only limited standardization exists
Basic knowledge of:
- Compliance standards and security frameworks (COBIT, NIST, HIPAA, ISO27001/2, OWASP, PCI)
- Networking communication protocols used within information security technology solutions
- Network and host level security technologies and products such as IDS and vulnerability scanners
- Security regulations and security requirements that impact the insurance industry (GLBA, HIPAA, PCI)
Applicants must be authorized to work in the U.S. without sponsorship now or in the future.
Salary Range:
$ 54,000.00 - $70,000.00 per year
- This range is based on the expected level of experience and skills for this position. Final compensation will depend on individual qualifications.
Benefits:
- Health, Dental and Vision Insurance
- Generous 401(k) with company match
- Paid Time Off (PTO) with Paid Holidays
- Flexible/Hybrid Work Schedule
- Paid Volunteer Program
For more information about the benefits we offer, please visit our Careers Page.