Job Description
The electrical grid is the largest and most complicated machine ever built. Yes Energy's industry-leading electric power trading analytics software provides real-time visibility into the massive amount of data generated by the North American electrical grid daily. Our unique and innovative view of the data informs real-time trading decisions and mid-to-long-term investment decisions that keep utility prices low, support the energy transition, and keep the grid running. It's both challenging work and work with a purpose.
Be a part of our successful, growing business during international transformation.
Position Summary
As a Security Analyst II, you will be helping keep the grid safe and our customers secure. You will be part of our growing Security & Compliance team, building security automations, creating baselines for on-premises and cloud environments, assisting teams with vulnerability scans and management, supporting our compliance team with evidence gathering and audits, and more. This is an opportunity to be part of a small team with increasing importance and responsibility. You will help Yes Energy stay secure into the future.
Position Details
Salary range: 80,000 - 95,000
Location: Yes Energy Core Offices or Remote
Full-time
Reporting to: Senior Manager, IT and Compliance
Travel requirement: up to 15% to Yes Energy's core offices
Primary Responsibilities
Review and triage findings from vulnerability scans, penetration tests, and configuration assessments to identify potential security risks.
Work with DevOps, engineers, and system owners to remediate vulnerabilities across multi-cloud and on-prem assets.
Support secure configuration baselines for AWS, Azure, and Oracle Cloud resources.
Monitor cloud environments for misconfigurations and suspicious activity.
Assist with IAM policy reviews and privilege audits.
Write scripts (Python, PowerShell, or Bash) to automate detection, reporting, or remediation of security issues.
Integrate security tools and data into dashboards or workflow systems (e.g., Jira, SIEM, or ticketing).
Provide technical evidence and control implementation support for SOC 2, ISO 27001, or customer security assessments.
Partner with the compliance team to map technical controls to framework requirements.
Assist with incident triage, response, and root cause analysis.
Support endpoint protection, log monitoring, and threat intelligence initiatives.
Minimum Qualifications
Bachelor's degree in a related field or equivalent related experience
Minimum of two years of experience with security exposure in information security, systems administration, or DevOps.
Proficient in at least one scripting language (Python, PowerShell, or Bash).
Strong understanding of operating systems, networking, and cloud fundamentals.
Knowledge of security frameworks such as NIST
Familiarity with vulnerability management tools (e.g., Tenable, Qualys, Rapid7, AWS Inspector, or Microsoft Defender).
Working knowledge of AWS, Azure, and/or Oracle Cloud security controls and services.
Comfortable working cross-functionally with engineering, IT, and compliance teams.
Knowledge, Skills, and Abilities
Ability to travel up to 15% to assist in team building and planning exercises.
Strong, professional communication skills, both verbal and written, including the skill in articulating and translating technical language to non-technical customers.
Ability to plan for contingencies and anticipate problems.
Ability to ask critical questions to assess needs and requirements
Preferred Qualifications
Experience with SIEM or SOAR platforms (e.g., Splunk, Microsoft Sentinel).
Familiarity with infrastructure such as code (Terraform, CloudFormation).
Exposure to compliance frameworks such as SOC 2, ISO 27001, or NIST 800-53.
Security certifications (Security+, GSEC, AWS Security Specialty, or similar).
Endpoint Security/Patching/Inventory experience
💡 Quick Summary
Seeking a career-building opportunity? The Security Analyst position is now open for candidates interested in the Back Office Jobs sector. This role in Auckland offers a professional environment and growth potential.
Requirement Snapshot: Candidates should possess basic communication skills, a proactive attitude, and the ability to work in a team. Experience in Back Office Jobs is a plus.
