SitusAMC is where the best and most passionate people come to transform our client’s businesses and their own careers. Whether you’re a real estate veteran, a passionate technologist, or looking to get your start, join us as we work together to realize opportunities for everyone, we proudly serve. At SitusAMC, we are looking to match your unique experience with one of our amazing careers, so that we can help you realize your potential and career growth within the Real Estate Industry. If you are someone who can be yourself, advocate for others, stay nimble, dream big, own every outcome, and think global but act local – come join our team! This role plays a critical role in safeguarding the organization’s information systems, data, and technology infrastructure. This position is responsible for monitoring, analyzing, and responding to security threats and incidents, ensuring compliance with security policies, and supporting the development of a robust security posture. The Associate, Information Security and Risk serves as a subject matter expert, providing technical guidance, leadership, and mentorship to junior analysts, while collaborating with IT, business units, and external partners to strengthen the organization’s overall security resilience. This individual will leverage advanced knowledge of security tools, threat intelligence, incident response, and risk management frameworks to proactively identify vulnerabilities, mitigate risks, and maintain regulatory and policy compliance. The role requires a blend of hands-on technical expertise, critical thinking, and strong communication skills to effectively manage security operations and support the design and execution of enterprise security strategies. Essential Job Functions: + Lead incident response operations, taking ownership of high-severity events through containment, eradication, recovery, and post-incident reporting. + Serve as the primary escalation point for junior analysts, providing expert guidance and resolution for complex security issues. + Monitor, analyze, and respond to security alerts, logs, and events across enterprise systems and cloud environments. + Develop, refine, and maintain security playbooks, incident response runbooks, and operational procedures to enhance SOC efficiency. + Drive continuous improvement of SIEM, SOAR, IDS/IPS, and endpoint monitoring solutions, ensuring detection coverage for evolving threats. + Integrate threat intelligence feeds and lead threat hunting initiatives to proactively identify and neutralize risks. + Mentor and train junior team members, fostering professional development and strengthening overall team capabilities. + Lead tabletop exercises, red/blue team simulations, and other readiness activities to validate and improve the organization’s defensive posture. + Partner with compliance and risk teams to ensure adherence to security policies, standards, and regulatory frameworks (NIST, ISO, SOC 2, GDPR, etc.). + Communicate effectively with stakeholders at all levels by preparing executive summaries, risk assessments, and post-incident reports. + Lead efforts to prepare for security audits and assessments, including gathering evidence and addressing findings. + Identify and implement process improvements, automation opportunities, and advanced analytics to strengthen security operations. + Stay current with emerging threats, technologies, and industry best practices, recommending strategies to evolve the organization’s security defenses. + Other activities as may be assigned by your manager Qualifications/ Requirements: + Bachelor’s degree in information security, Computer Science, or related field or equivalent combination of education and experience + Experienced professional with 5+ years of industry and/or relevant experience, typically at a Senior Analyst or Analyst level role or external equivalent. + 5+ years of professional experience in information security with progressive responsibility. + Strong knowledge of SIEM, DLP, e-mail security, endpoint security, and cloud security technologies. + Expertise in incident response, threat hunting, and security operations. + Familiarity with risk management frameworks and compliance standards (NIST, CIS, etc.). + Relevant certifications such as CISSP, Sec+, CySA+, GCIA, ECIH or equivalent strongly preferred. + Excellent problem-solving, analytical, and communication skills. Note: This job description is not intended to be all inclusive or exclusive. At any time, employees may perform other related duties as required to meet the ongoing needs of the organization and participate in additional trainings. SitusAMC does not accept unsolicited resumes from staffing agencies, search firms or any third parties. Any unsolicited resume submitted to SitusAMC in any manner will be considered SitusAMC property, and SitusAMC will not pay a fee for any placement resulting from the receipt of an unsolicited resume. The annual full time base salary range for this role is $110,000.00 - $140,000.00 Specific compensation is determined through interviews and a review of relevant education, experience, training, skills, geographic location and alignment with market data. Additionally, certain positions may be eligible to receive a discretionary bonus as determined by bonus program guidelines, position eligibility and SitusAMC Senior Management approval. SitusAMC offers PTO and paid holidays, the terms of which are set forth in the program policies. All full time employees also are eligible to participate in various benefit plans, including medical, dental, vision, life, disability insurance and 401K; in each case in accordance with the terms of the applicable plans. Pay Transparency Nondiscrimination Provision (https://go.situsamc.com/rs/962-QMP-613/images/pay-transp\_%20English\_formattedESQA508c.pdf?version=0) SitusAMC is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, disability, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws. Know Your Rights, Workplace Discrimination is Illegal (https://www.eeoc.gov/sites/default/files/2023-06/22-088\_EEOC\_KnowYourRights6.12ScreenRdr.pdf)