Chandler, Arizona, USA
79 days ago
Senior Information Security Analyst

Who We Are:


At Avnet, relationships matter. We are a global, FORTUNE ® 500 technology distributor and solutions company that delivers design, supply chain and logistics expertise to customers at every stage of a product’s lifecycle. Our employees have a front row seat to the latest innovations shaping the world we live in and the future we share. We’re driven to help our customers around the world succeed and we do so by earning the trust of some of the biggest names in technology.

Working at Avnet means being a part of a global team. We work collaboratively and with integrity, doing business the right way. For more than a century, we have partnered together to help our customers, suppliers and teammates realize the transformative possibilities of technology. Experience what’s next at Avnet!

Job Summary:

We are seeking a highly skilled Senior Information Security Analyst to join our Security Operations team based in Chandler, AZ. In this critical role, you will be responsible for designing, implementing, and protecting our global information systems. As a leader in cybersecurity, you will ensure that all systems are safeguarded against unauthorized access, data breaches, and accidental destruction.

You will collaborate closely with senior leadership and user communities to develop and execute information security strategies that align with the evolving cyber threat landscape. In addition, you will take ownership of monitoring, threat detection, incident response, and risk mitigation across the organization while mentoring junior analysts and driving innovation in security operations.

How You Will Make an Impact at Avnet, Inc.:

The Security Operations team plays a crucial role in safeguarding our global organization by monitoring, detecting, analyzing, and responding to cyber threats. We are looking for a dedicated professional who is ready to step into this vital position and contribute to the ongoing protection and security of our systems and data on a global scale.

Additionally,

Leading initiatives to detect, respond to, and mitigate complex cyber threats.Developing advanced security solutions and strategies to protect our digital assets and infrastructure.Identifying and addressing security vulnerabilities and risks across the organization’s networks, cloud environments, and third-party services.Advising senior leadership on security risks and regulatory compliance (GDPR, ISO27001, PCI DSS, etc.).Driving the continuous improvement of our security framework to build a strong and resilient security team

Principal Responsibilities:

Log Management and Advanced Security Analytics: Oversee the collection and analysis of logs from critical systems (e.g., Firewalls, Routers, DNS Servers, Web Application Firewalls, Zero Trust Network Access, etc.), ensuring comprehensive monitoring and actionable insights.Threat Intelligence and Risk Management: Lead threat intelligence operations, performing in-depth threat modelling and vulnerability assessments. Use insights to develop robust security controls and advise on strategic mitigations.Adversary Tactics and Defense Strategies: Apply extensive knowledge of adversary tactics, techniques, and procedures (TTPs) via frameworks such as MITRE ATT&CK to strengthen defenses against sophisticated cyber threats.Policy Development and Governance: Lead the creation and enforcement of security policies and standard operating procedures (SOPs) to ensure compliance with global standards (GDPR, CMMC, ISO27001). Continuously review and update policies to reflect emerging cybersecurity threats and business needs.Cloud and Infrastructure Security: Secure our cloud environments (e.g., Microsoft Azure), applying advanced security principles to safeguard hybrid and multi-cloud infrastructures. Lead cloud security initiatives, ensuring data protection, secure access, and adherence to regulatory requirements.Incident Response and Recovery: Oversee major incident response efforts, from initial detection through containment, eradication, and post-incident review. Perform forensic investigations to identify root causes and develop remediation plans to prevent future incidents.Cross-Departmental Collaboration: Act as the lead information security advisor to IT, legal, and compliance departments. Ensure security practices are embedded into daily operations and organizational processes.Mentorship and Team Leadership: Mentor junior analysts, guiding security best practices, career development, and technical skills. Promote a culture of continuous learning and development within the security operations team.Security Awareness Program: Lead organization-wide security awareness initiatives to educate staff on current threats, security policies, and best practices to mitigate human-factor vulnerabilities.Security Innovation and Research: Stay current with emerging cybersecurity technologies and trends. Advocate for adopting innovative security solutions, tools, and methodologies to improve security posture and efficiency.

Essential Requirements:

Extensive knowledge and application of principles, theories and concepts. Deep understanding of all SOC related job functions, industry best practices, techniques and standards.Develops solutions to complex problems where analysis of situations and/or data requires in-depth evaluation of variables. Determine the best approach to achieve results and provide suggestions to improve policies and procedures.Experience in incident handling, intelligence gathering, and kill chain methodologyWork is performed independently and requires the exercise of judgment and discretion.Exercises considerable latitude in determining objectives and approaches to assignments. Work may be reviewed at a high-level.May represent the organization as a primary contact on assignments and/or projects. Interacts with senior professionals and management and frequently coordinates work between departments or organizations.Overseeing and maintaining partnerships with managed service providers (MSP). Bonus: Onboarding MSP services

Minimum Qualifications:

Perform gap analysis and remediation steps for compliancy gaps within the environmentAbility to effectively communicate business risk (written and verbal) as it relates to information security across different cultures in a global setting with many stakeholdersDemonstrated ability to remain current with the evolving threat landscape (especially those targeting the supply chain sector(s)).Organization and project management skillsAbility to work odd hours (rotational on-call) and work effectively under pressure and with tight deadlines.Flexibility and ability to work both in a team as well as individuallyGrowth mindset and positive attitudeExperience in working with sensitive information (GDPR, CUI, CMMC, PCI DSS, etc.)Leverage critical thinking skills to facilitate informed and secure decisions.

Technical Competencies

Strong networking and security skillsIncident ResponseMITRE ATT&CK FrameworkThreat huntingDigital forensicsCloud SecurityMicrosoft Azure: Sentinel, Defender, Entra ID, etc.IT Security (e.g., Security Engineering, Attack Surface Management, etc.)Risk managementVulnerability Management platforms

Additional Skills (not required, but nice to have)

Security related certifications like CISSP/CCSP and Incident Response certification(s)Experience with chain-of-custody for cybersecurity related incidents and processesOperational Technology (OT) Cybersecurity related experienceOnboarding and maintaining Managed Services Provider across multiple platform typesPrior infrastructure technical background

Work Experience:

Typically, 5+ years with bachelor's or equivalent.

Education and Certification(s):

Bachelor's degree or equivalent experience from which comparable knowledge and job skills can be obtained.

#LI-HYBRID

What We Offer:

Our employees work hard to live our values and help us grow. Our total rewards strategy supports Avnet’s ability to attract, engage, develop, and reward our employees, while promoting a diverse and inclusive environment. We offer competitive compensation and benefit programs — from time away and flexible working arrangements to programs supporting employee well-being and opportunities to give back to your community.

Generous Paid Time Off

401K and Pension Plan

Paid Holidays

Family Support (Paid Leave, Surrogacy, Adoption)

Medical, Dental, Vision, and Life Insurance

Long-term and Short-term Disability Insurance

Health Savings Account / Flexible Spending Account

Education Assistance

Employee Development Resources

Employee Wellness, Leadership Development and Mentorship Programs

Benefits listed above may vary depending on the nature of your employment with Avnet.

This position will have access to ITAR product and therefore be authorized to access product.  This position requires the employee to be a U.S. Citizen or National, or a lawful permanent resident as defined by 8 U.S.C. 1101(a)(20), or a protected individual as defined by 8 U.S.C. 1324b(a)(3).

The above statements are intended to describe the general nature and level of work being performed. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills.

Avnet is an Equal Opportunity Employer committed to providing equal opportunities to all employees and applicants for employment without regard to race, color, religion, ancestry, national origin, sex (including pregnancy), age, marital status, sexual orientation, gender identity or expression, disability, veteran status, genetic information or any other characteristic protected by law. This policy of non-discrimination also applies to religious dress and grooming practices. Avnet will accommodate employee religious dress standards and grooming practices that do not result in undue hardship for the Company.  If you are interested in applying for employment with Avnet and need special assistance or an accommodation to apply for a posted position contact our Human Resources Service Center at (888) 994-7669.

Confirm your E-mail: Send Email