Security Analyst

MaintainX is the world's leading Asset and Work Intelligence platform for industrial and frontline environments. We are a modern IoT-enabled cloud-based tool for reliability, safety, and operations on physical equipment and facilities. MaintainX powers operational excellence for 12,000+ businesses including Duracell, Univar Solutions Inc., Titan America, McDonald's, Brenntag, Cintas, Xylem, and Shell.

We recently completed a $150 million Series D round, bringing our total funding to $254 million and valuing the company at $2.5 billion.

We're looking for a Security Analyst to support our security program across both regulated (FedRAMP) and non-regulated environments. This role focuses on security operations, vulnerability management, and compliance support. You will work with tools like Datadog, Wiz, and AWS to protect our infrastructure and data across multiple environments.

This role is hybrid out of our Raleigh or Montreal office.

What you’ll do:

• Monitor and triage security alerts using tools like Datadog, SIEM platforms, and other security monitoring solutions.
• Manage vulnerability assessment programs, tracking remediation efforts across cloud and on-premise infrastructure.
• Conduct security control assessments and prepare technical documentation and evidence for audits.
• Support penetration testing initiatives and security assessments on internal products and infrastructure.
• Investigate security incidents, document findings, and support incident response activities.
• Collaborate with DevOps, IT, Product, and other teams to implement and verify security controls.
• Develop tooling for the security team
• Participate in internal and external audits across multiple compliance frameworks (FedRAMP, SOC 2, ISO 27001, etc.).
• Contribute to security policy development, documentation, and awareness training initiatives.
• Stay current with emerging threats, security best practices, and compliance requirements.

About you:

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field (or equivalent experience).
• 2–4 years of experience in information security, security operations, or related roles.
• Hands-on experience with cloud security (mainly AWS) and cloud-native security tools.
• Familiarity with security frameworks such as NIST 800-53, SOC 2, ISO 27001, or FedRAMP.
• Experience with vulnerability management tools and processes.
• Understanding of security monitoring, log analysis, and incident response.
• Strong analytical and problem-solving skills with attention to detail.
• Excellent written and verbal communication skills.
• Ability to work independently and collaboratively in a fast-paced environment.

Bonus if you have:

• Experience with security tools such as Wiz, Datadog, Jira, vulnerability scanners, password managers, EDRs and SIEM platforms.
• Previous experience supporting compliance programs (FedRAMP, SOC 2, ISO 27001, etc.).
• Security certifications such as Security+, GSEC, OSCP, CISSP, or equivalent.
• Experience with penetration testing methodologies and tools.
• Knowledge of DevSecOps practices and security automation.
• Scripting or programming experience (typescript, dot net) for security automation.

What’s in it for you:

• Competitive salary and meaningful equity opportunities.
• Healthcare, dental, and vision coverage.
• 401(k) / RRSP enrolment program.
• Take what you need PTO.
• A Work Culture where:
• You’ll work alongside folks across the globe that reflect the MaintainX values, Smart Humble Optimist.
• We believe in meritocracy, where ideas and effort are publicly celebrated.

About us:

Our mission is to make the life of blue-collar workers easier worldwide by creating software that meets their needs and realities. Our product is truly life-changing for 80% of the workforce that doesn’t work behind a desk and needs enterprise-grade software at their fingertips.

MaintainX is committed to creating a diverse environment. All qualified applicants will receive consideration for employment without regard to race, colour, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.