Information Security Analyst

Security Analyst (IT)

Norfolk, VA

About Titan America

Titan America LLC (NYSE: TTAM), a TITAN Group Company, is one of the premier producers of cement and building materials in the eastern United States and the North American subsidiary of the TITAN Group. With a history spanning over 100 years, Titan America has consistently delivered innovation, operational excellence, and sustainable solutions. Our comprehensive portfolio—including cement, aggregates, fly ash, ready-mix concrete, and specialty admixtures—serves diverse customer needs across commercial, industrial, and infrastructure markets.

We have an excellent opportunity within our Security Analyst (IT) in Norfolk, VA.

Role Overview

The Cybersecurity Operations Analyst (IT) at Titan America is responsible for continuous monitoring, detection, investigation, and response to cybersecurity threats across enterprise IT, cloud/SaaS platforms, and—where applicable—industrial and operational technology (OT) environments. This role is a core contributor to Titan America’s cyber defense, incident response, and resilience strategy.

Key Responsibilities

Security Monitoring & Detection

• Monitor and analyze alerts from Endpoint Detection & Response (EDR)/Extended Detection and Response (XDR), email security, identity platforms, Security Incident and Event Management (SIEM), and cloud security tools
• Identify anomalous or malicious activity impacting corporate, plant, and remote environments
• Validate alert fidelity and reduce false positives through tuning and rule improvement

Incident Response (IR) & Investigation

• Act as a primary team member for Cyber Incident Response tasks, handling detection, triage, containment, eradication, and recovery
• Manage and coordinate response efforts among IT, information security, legal teams, communications, and business units
• Maintain thorough records of incidents, ensuring they are tracked, documented, and closed with root cause analysis and lessons learned
• Organize or participate in tabletop exercises, simulations, and post-incident reviews to enhance preparedness
• Assess, investigate, and address cybersecurity threats such as phishing, account compromise, malware, and lateral movement
• Implement containment and remediation strategies, including endpoint isolation, suspending accounts, and collaborating with IT/OT teams
• Direct or assist in incident response activities that follow Titan America and Titan Group IR protocols and procedures
• Safeguard evidence and contribute to post-incident reviews and root-cause evaluations

Threat Analysis & Defense

• Analyze indicators of compromise (IOCs) and attacker techniques
• Map adversary behavior to MITRE ATT&CK
• Identify trends and emerging threats relevant to manufacturing, critical infrastructure, and supply chain risk

Security Tool & Platform Operations

• Administer and manage enterprise security tools, including:
• Endpoint Detection & Response (EDR) (Microsoft Defender, SentinelOne, etc.)
• Vulnerability and risk platforms, and Security Operations Center as a Service (SOCaaS) workflows
• Tune and investigate alerts to ensure tools address business risks efficiently
• Collaborate with IT and vendors to troubleshoot and enhance security systems.
• Oversee daily operations of SIEM/XDR/EDR, email/collaboration security (M365), and identity controls.
• Confirm that security measures are effective and policy-compliant.

Reporting, Documentation & Governance Support

• Produce clear incident documentation and executive-ready summaries:
• What happened, business/process impact, containment actions, root cause, recovery steps, and prevention recommendations.
• Provide audit-ready evidence for industrial security controls and incident response actions as needed.
• Oversee daily operations of SIEM/XDR/EDR, email/collaboration security (M365), and identity controls.
• Support audit, legal, and compliance requests related to security incidents
• Contribute to SEC cyber disclosure readiness, Sarbanes-Oxley (SOX), and enterprise risk reporting where applicable
• Maintain incident records and lessons learned documentation

Cross‑Functional Collaboration

• Partner with IT Infrastructure, OT, Cloud, Legal, HR, Compliance, and external vendors
• Coordinate with Titan Group Security on escalated incidents and threat intelligence sharing
• Support tabletop exercises and incident response readiness activities

Required Skills & Experience

Technical

• Security operations, Security Operations Center as a Service (SOCaaS), or incident response experience
• Hands‑on exposure to EDR/XDR, email security, identity security, SIEM, etc.
• Log analysis, endpoint investigation, and basic network security concepts
• Familiarity with cloud/SaaS security environments

Professional

• Strong analytical and problem‑solving skills
• Clear written and verbal communication for technical and executive audiences
• Ability to operate effectively during high‑pressure incident scenarios

Preferred / Differentiators

• Security certifications (Certified Information Systems Security Professional (CISSP), GIAC Certified Incident Handler (GCIH), GIAC Intrusion Analyst (GCIA), Certified Cloud Security Professional (CCSP), etc.
• Manufacturing, industrial, or OT‑adjacent security exposure
• Experience supporting publicly traded or regulated organizations

MUST BE ABLE TO WORK IN THE US WITHOUT SPONSORSHIP

Join us in shaping the future of building materials with innovation, excellence, and sustainability at our core. Explore more about Titan America's transformative impact by visiting www.titanamerica.com.