Security Analyst II

Join the Market Leader in Electric Power Data and Analytics Solutions

The electrical grid is the largest and most complicated machine ever built. Yes Energy's industry-leading electric power trading analytics software provides real-time visibility into the massive amount of data generated by the North American electrical grid daily. Our unique and innovative view of the data informs real-time trading decisions and mid-to-long-term investment decisions that keep utility prices low, support the energy transition, and keep the grid running. It's both challenging work and work with a purpose.

Be a part of our successful, growing business during international transformation.

Position Summary

As a Security Analyst II, you will be helping keep the grid safe and our customers secure. You will be part of our growing Security & Compliance team, building security automations, creating baselines for on-premises and cloud environments, assisting teams with vulnerability scans and management, supporting our compliance team with evidence gathering and audits, and more. This is an opportunity to be part of a small team with increasing importance and responsibility. You will help Yes Energy stay secure into the future.

Position Details

• Salary range: 80,000 - 95,000
• Location: Yes Energy Core Offices or Remote
• Full-time
• Reporting to: Senior Manager, IT and Compliance
• Travel requirement: up to 15% to Yes Energy's core offices

Primary Responsibilities

• Review and triage findings from vulnerability scans, penetration tests, and configuration assessments to identify potential security risks.
• Work with DevOps, engineers, and system owners to remediate vulnerabilities across multi-cloud and on-prem assets.
• Support secure configuration baselines for AWS, Azure, and Oracle Cloud resources.
• Monitor cloud environments for misconfigurations and suspicious activity.
• Assist with IAM policy reviews and privilege audits.
• Write scripts (Python, PowerShell, or Bash) to automate detection, reporting, or remediation of security issues.
• Integrate security tools and data into dashboards or workflow systems (e.g., Jira, SIEM, or ticketing).
• Provide technical evidence and control implementation support for SOC 2, ISO 27001, or customer security assessments.
• Partner with the compliance team to map technical controls to framework requirements.
• Assist with incident triage, response, and root cause analysis.
• Support endpoint protection, log monitoring, and threat intelligence initiatives.

Minimum Qualifications

• Bachelor's degree in a related field or equivalent related experience
• Minimum of two years of experience with security exposure in information security, systems administration, or DevOps.
• Proficient in at least one scripting language (Python, PowerShell, or Bash).
• Strong understanding of operating systems, networking, and cloud fundamentals.
• Knowledge of security frameworks such as NIST
• Familiarity with vulnerability management tools (e.g., Tenable, Qualys, Rapid7, AWS Inspector, or Microsoft Defender).
• Working knowledge of AWS, Azure, and/or Oracle Cloud security controls and services.
• Comfortable working cross-functionally with engineering, IT, and compliance teams.

Knowledge, Skills, and Abilities

• Ability to travel up to 15% to assist in team building and planning exercises.
• Strong, professional communication skills, both verbal and written, including the skill in articulating and translating technical language to non-technical customers.
• Ability to plan for contingencies and anticipate problems.
• Ability to ask critical questions to assess needs and requirements

Preferred Qualifications

• Experience with SIEM or SOAR platforms (e.g., Splunk, Microsoft Sentinel).
• Familiarity with infrastructure such as code (Terraform, CloudFormation).
• Exposure to compliance frameworks such as SOC 2, ISO 27001, or NIST 800-53.
• Security certifications (Security+, GSEC, AWS Security Specialty, or similar).
• Endpoint Security/Patching/Inventory experience

At Yes Energy, we value connecting directly with candidates. We kindly ask that third-party recruiters and agencies not submit resumes, as we are not open to external recruiting partnerships.

ABOUT YES ENERGY

Overview

Yes Energy delivers real-time market data and electric power trading decision solutions. Over 1,000 market participants use Yes Energy solutions daily. The business is a leader in all aspects of information content collection and management, developing and delivering data and market analytics solutions. Since its inception in 2008, Yes Energy has become a trusted and respected supplier of innovative and reliable solutions focused on the needs of power market analysts, traders, and trade managers. Yes Energy has a team of over 350 amazing professionals in Boulder, CO (HQ); Boston, MA; Chicago, IL; Glendora, CA; Richmond, VA; London, United Kingdom; Auckland, New Zealand, Tokyo, Japan; and Bucharest, Romania.

Culture

Yes Energy has been named one of the Best Places to Work in Colorado, and we have the culture to prove it. At Yes Energy, we care about saying "Yes" to customers. We like to listen, learn, and develop our solutions in line with their needs. We think about customers as business partners, and when we help them be more successful … we are more successful, too.

Around the office, our culture is driven by some pretty fundamental values that we're proud of:

• We love innovation and solving tough challenges;
• We are "high standards people" who combine passion and pride with hard work and rewards of all kinds-- in an ethic that is consistent across the company;
• We're team-focused with a flat hierarchy-- we work in small teams on well-defined projects that directly impact the success of the business;
• We play to the strengths and experience of each person while each of us also works along a continuum of roles adjacent to our focus area. This presents the challenge of maintaining a broad set of skills as well as an opportunity to learn and contribute in many ways;
• We are constantly growing. Professional development happens every day and every year.

Compensation and Benefits

We offer highly competitive salaries and real bonuses that are achievable and that you can impact. Our benefits package is also very competitive, including medical insurance, a 401 (k) Plan with matching, flexible vacation, and flexible work schedules. Yes Energy encourages and funds investment in both formal and informal professional development.

At Yes Energy, we are dedicated to building a diverse, inclusive, and authentic workplace. If you're excited about this role but your experience doesn't perfectly align with every qualification in the job description, we encourage you to apply anyway. You may be just the right candidate for this or other roles.

In accordance with Colorado law, the range provided is Yes Energy's reasonable estimate of the base compensation for this role. The actual amount may be higher or lower based on non-discriminatory factors such as location, experience, knowledge, skills, and abilities.

Yes Energy provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, or genetics. In addition to federal law requirements, Yes Energy complies with applicable state and local laws governing nondiscrimination in employment in every location where the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.

#LI-Hybrid