Cybersecurity Analyst

Job Description

Job Description

As one of the world’s largest food-grade logistics companies, McLane Global relies on the efficiency of its fulfillment centers. We consider all our warehouses to be systematic and operate with a customer-centric mentality. To deliver on our promise to customers, we rely on exceptionally talented, bright, and committed people. We cultivate and embrace a diverse employee population. We recognize that people with diverse backgrounds, experiences and perspectives fuel our growth and enrich our global culture. The Cybersecurity Analyst at McLane Global is responsible for securing and monitoring all IT systems, integrations, and cloud environments supporting enterprise operations. This role ensures the confidentiality, integrity, and availability of data by implementing security controls, enforcing access policies, conducting monitoring activities, and maintaining compliance with federal cybersecurity frameworks.

Key Responsibilities :

• Administer Microsoft Entra ID (Azure AD) tenancy, including user lifecycle management, RBAC, MFA, Conditional Access, and privileged identity governance.
• Implement least-privilege principles and enforce identity protection policies aligned with federal cybersecurity requirements.
• Perform periodic entitlement reviews, access recertifications, and audit-ready documentation in accordance with NIST / FedRAMP standards.
• Monitor Microsoft 365, Azure, and hybrid workloads using Sentinel, Defender for Cloud, and Defender for Identity to detect vulnerabilities, threats, and anomalous activity.
• Maintain centralized log ingestion, retention, and reporting across D365, TMS, and cloud services to support IR, compliance, and audit readiness.
• Investigate security incidents, coordinate escalation, perform root-cause analysis, and drive remediation activities to closure.
• Implement and maintain information security controls aligned with FISMA, FedRAMP Moderate, NIST SP 800-53 / 171, and CMMC requirements.
• Support development and maintenance of System Security Plans (SSPs), POA&Ms, risk registers, and continuous monitoring artifacts.
• Ensure third-party SaaS and hosted service providers meet applicable ATO, FedRAMP, and vendor risk management requirements.
• Secure integrations between Microsoft Dynamics 365 Finance & Operations, Transportation Management Systems, Azure services, and Power Platform.
• Execute vulnerability scanning, penetration testing coordination, patch compliance, and system hardening following STIG, CIS, or Microsoft security baselines.
• Enforce cryptographic standards including TLS 1.2+, hashing, and key management to protect data in transit and at rest.
• Maintain and mature the Incident Response Plan (IRP) and participate in incident handling aligned with NIST CSF and 800-61 guidance.
• Support continuity and disaster recovery planning, including RTO / RPO validation, backup integrity checks, and high-availability testing in Microsoft cloud and hybrid environments.
• Lead or participate in annual tabletop exercises, continuity drills, and mock security incidents.
• Produce compliance, SIEM, and vulnerability management reports for leadership, auditors, and government stakeholders.
• Document change management, incident tickets, and remediation actions in accordance with audit and ATO requirements.
• Present security posture updates and risk recommendations

Requirements

Benefits

Disclaimer

Employees must be able to perform the essential functions of the position satisfactorily and if requested, reasonable accommodation will be provided to enable employees with disabilities to perform the essential functions of their job, absent undue hardship.

Furthermore, job descriptions typically change over time as requirements and employee skill levels change. The Employer retains the right to change or assign other duties to this position.