About the Role:
We are seeking a highly skilled IAM and Security Systems Analyst to support the design, implementation, and operation of critical security controls across our infrastructure, cloud, and application environments. While the title reflects an analyst level, the role requires a hands-on engineering mindset with deep technical experience in identity management, security tooling, and threat detection.

This individual will play a key role in securing our systems, applications, and data by evaluating, implementing, and managing tools and processes across the security stack, from access governance to application security, SIEM operations, and incident response.

Key Responsibilities

Identity & Access Management (IAM)

• Manage and support identity platforms including Active Directory, Azure AD, and Okta.
• Implement RBAC, least privilege principles, and automated provisioning/deprovisioning.
• Conduct periodic access reviews and support access certification processes.
• Integrate IAM controls into application and cloud environments.

Security Engineering & Tooling

• Administer and optimize Mimecast, OKTA, Microsoft Defender, Intune, and other endpoint/cloud security tools.
• Manage SIEM tools including rule tuning, log ingestion, and correlation.
• Implement and automate application code reviews using security scanning tools (e.g., SAST, DAST).
• Perform application security testing and contribute to threat modeling and risk evaluations.
• Lead cloud control monitoring, data protection measures, and compliance reporting.

Threat Detection & Incident Response

• Conduct analysis of security alerts and lead incident response efforts.
• Leverage threat intelligence to update detection mechanisms and enhance response playbooks.
• Perform root cause analysis and evidence handling following incidents.
• Support red team/blue team exercises and penetration testing activities.

Architecture, Process & SDLC Integration

• Review and evaluate system and application security architectures.
• Support integration of security controls across the SDLC and DevSecOps pipelines.
• Design and continuously improve security processes and documentation.
• Participate in security metrics and reporting efforts to track control effectiveness.
• Support SOC design discussions and contribute to its operational maturity.

Collaboration & Compliance

• Partner with IT Operations teams, Infrastructure, HR, and Compliance to support security initiatives.
• Assist with internal and external audits, control documentation, and evidence collection.
• Maintain awareness of frameworks such as SOC 2, NIST, and ISO 27001.
• Help run awareness training, phishing simulations, and risk assessments.

This is a hybrid role that will require regular in-person work in office for work tasks and/or activities for coaching and support of our students. You must live within a commutable distance to either Boston, MA, New York City, NY, or Washington DC.

Salary Range: $90,000-$110,000/annually

Required Qualifications

• 3–5 years of experience in a security engineering or analyst role
• Strong experience with IAM platforms (Active Directory, Azure AD, Okta)
• Proficient in SIEM platforms, incident response, and Microsoft security tools
• Experience with automated security testing tools (SAST, DAST)
• Familiarity with cloud security (Microsoft 365, Azure) and application security principles
• Hands-on experience in scripting/automation (PowerShell, Python, or Terraform a plus)
• Strong understanding of network protocols, system hardening, and endpoint defense
• Excellent problem-solving and communication skills

Preferred Qualifications

• Familiarity with red teaming, penetration testing, and threat modeling
• Exposure to compliance frameworks such as SOC 2, HIPAA, or ISO 27001
• Participation in SOC design or operations
• Experience with security metrics/reporting and risk assessments

Why Join Us:

You’ll be part of a mission-driven team focused on protecting a modern IT and cloud-first organization. This is an opportunity to shape and grow a scalable security program, drive impact across critical systems, and mature key security domains.

#LI-Hybrid

COMPENSATION & BENEFITS:

• Year Up United has established salary ranges for each of our sites, which allows us to pay employees competitively, equitably and consistently in different geographic markets. For roles in which the location is listed as flexible, the range displayed reflects the minimum and maximum target for new hire salaries for the position across all US locations. Salary offers take into account a candidate’s skills, experience, and location. Your recruiter can share more about the specific salary range for your location during the hiring process.

• Benefits: Comprehensive healthcare options and dental coverage; 401(k) match for eligible participants.

• Vacation: Earn three weeks paid vacation in first year of employment; four weeks after initial year.

• Professional Development: Funds available to support staff in achieving career objectives ($2,500 per year)

** This is an exempt role (paid on a salaried basis). **

ORGANIZATION DESCRIPTION:

Year Up United is a national 501(c)3 workforce development organization committed to ensuring equitable access to economic opportunity, education, and justice for all young adults—no matter their background, income, or zip code. Employers face a growing need for talent while millions of talented young adults lack access to meaningful careers. These inequities only further perpetuate the opportunity gap that exists in our country—a gap that Year Up United is determined and positioned to close through three interconnected strategies: providing targeted skills training and connections to livable-wage employment for students and alumni; empowering others to serve and support young adults, and changing systems that perpetuate the opportunity gap. Year Up United’s intensive training program utilizes a high expectations, high support model where students learn in-demand technical and professional skills and apply them during a corporate internship. Year Up United has directly served more than 40,000 young adults since its founding in 2000. Year Up United's nationwide presence includes Arizona, Austin, Bay Area, Charlotte, Chicago, Dallas/Fort Worth, Greater Atlanta, Greater Boston, Greater Philadelphia, Jacksonville, Los Angeles, the National Capital Region, New York City/Jersey City, Pittsburgh, Puget Sound, Rhode Island, South Florida, Tampa Bay, and Wilmington.

Voted one of the Best Nonprofits to Work For in the country by The NonProfit Times, Year Up United is a rewarding and impactful place to work. Our staff is passionate, supportive, mission-driven, and committed to positive change and continuous learning. We set high standards for both ourselves and our students and live by a set of core values that reflect an unshakable belief in the talent and potential of our young people. The work we do is life-changing, and we know that our team is the greatest asset in achieving our mission.

COMMITMENT TO DIVERSITY:

Year Up United embraces diversity and equal opportunity in a serious way. All aspects of employment, including the decision to hire, promote, discharge, or discipline, are based on meritocracy. We do not permit discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristics protected by federal, state, or local laws. Learn more about our commitment to diversity: http://www.yearup.org/about-us/careers/commitment-to-diversity/

Year Up United is also committed to working with and providing reasonable accommodations to individuals with disabilities. Your recruiter can provide details regarding the expected work environment and any physical requirements. Please let our hiring team know if you need an accommodation at any point during the interview process. Information received relating to accommodation will be addressed confidentially.

TO APPLY:

Please submit a thoughtful cover letter and resume through our website.

Note that applications without a cover letter will not be considered. We respectfully request no phone calls.