Security & Compliance Analyst

Title of Position: Security & Compliance Analyst

Locations: Fairless Hills, PA (No Remote / Work From Home)

Industry Leading Benefits: Medical, Prescription, Dental, Vision, 401K, Pension, Short- and Long-Term Disability, Life Insurance, Tuition Reimbursement.

Silvi Materials has been expanding our “A” Team of employees since 1947! Our team has grown to 15+ companies, employing over 950 people across 30+ locations in Southeastern Pennsylvania, New Jersey, and North Carolina.  Silvi is large enough to provide the stability you need, but small enough that you can feel your individual contribution to our success.  We value the fresh ideas and perspectives of each new member of our team.

What does Silvi Materials offer you, you may ask?

• Phenomenal Benefits: Medical, Vision, Dental, Prescription, Vacation, Paid Holidays, and so much more!
• Your future in mind: With 401(k) (at select locations) and/or pension options. We want all employees to build a great retirement!
• Growth at Silvi Materials: We offer each employee the opportunity to move into any facet of our complex business. And our tuition reimbursement program is the perfect springboard to help you get there!

So, what does a Security and Compliance Analyst do?

We are seeking a Security & Compliance Analyst to support and strengthen our organization’s cybersecurity posture across a hybrid environment of on-premise systems and cloud platforms (including Microsoft Dynamics 365, SaaS applications, and operational technologies). This role is fully on-site and will be responsible for monitoring security controls, ensuring compliance with internal policies and external regulations, supporting audits, and working closely with IT, operations, and vendors to reduce risk across all systems.

Position Essential Functions Responsibilities

Security Operations

• Monitor security alerts, logs, and events across systems (firewalls, endpoints, servers, ERP, and SaaS platforms)
• Investigate and respond to potential security incidents and vulnerabilities
• Support endpoint protection, network security, and identity/access management initiatives
• Assist in vulnerability scanning, patch management, and remediation tracking

Compliance & Governance

• Maintain and enforce IT security policies, standards, and procedures
• Assist with internal and external audits, including evidence collection and documentation
• Track and report on compliance metrics and risk posture

Risk Management

• Identify, assess, and document security risks across systems and processes
• Work with stakeholders to implement mitigation strategies
• Conduct third-party/vendor risk assessments

Systems & Integration Security

• Ensure secure data flow between systems (ERP, dispatch systems, APIs, middleware, etc.)
• Review API integrations and authentication mechanisms
• Collaborate on secure architecture for hybrid environments

User & Access Management

• Manage and audit user access across systems (Active Directory, Azure AD, ERP systems)
• Conduct periodic access reviews and enforce least-privilege principles

Awareness & Training

• Support security awareness training programs for employees
• Promote best practices around phishing, data handling, and system access

Qualifications

• Bachelor's or Associate’s degree in Information Technology or a related field

• 2–5+ years of experience in cybersecurity, IT compliance, or risk management
• Strong understanding of network security, identity & access management, and endpoint security
• Experience with security frameworks (NIST, CIS, ISO, SOC 2)
• Familiarity with cloud platforms (Microsoft 365, Azure preferred)
• Experience reviewing logs, alerts, and performing incident response
• Experience in the concrete/construction industry is also a plus.
• Strong communication and interpersonal skills
• Excellent organizational skills and attention to detail
• Ability to manage multiple priorities in a fast-paced environment

Preferred

• Experience in hybrid environments (on-prem + cloud + SaaS)
• Exposure to ERP systems (e.g., Microsoft Dynamics 365)
• Knowledge of API security and integrations
• Familiarity with SIEM, MDM, and EDR tools
• Certifications such as Security+, CISSP, CISM, or CISA

Key Skills

• Strong analytical and problem-solving ability
• Attention to detail and documentation discipline
• Ability to communicate technical risks to non-technical stakeholders
• Organized and able to manage multiple priorities

No smoking is permitted on or within company property, including inside trucks, buildings, or anywhere on the premises.

 Physical Requirements

 In a typical work setting, people in this job:

• Lift 20 pounds regularly on occasion.
• Use one or two hands to grasp, move, or assemble objects
• Stand for long periods of time.
• Kneel, stoop, crouch, bend, stretch, twist or crawl.
• Hear sounds and recognize the difference between them.
• See details of objects that are less than a few feet away.
• See differences between colors, shades, and brightness.

Silvi Materials does not discriminate in employment on the basis of race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, retaliation, parental status, military service, or other non-merit factors.