Junior Security Analyst
MaintainX is the world's leading Asset and Work Intelligence platform for industrial and frontline environments. We are a modern IoT-enabled cloud-based tool for reliability, safety, and operations on physical equipment and facilities. MaintainX powers operational excellence for 10,000+ businesses including Duracell, Univar Solutions Inc., Titan America, McDonald's, Brenntag, Cintas, Xylem, and Shell.
We've raised $104 million in venture capital following a recent Series C funding round led by Bain Capital Ventures, Bessemer Ventures, August Capital, Amity Ventures, Ridge Ventures as well as CEO’s from GE, Twilio, Coupa, Toast and PagerDuty.
This role is hybrid out of our Raleigh office.
What you’ll do:
- Help track and follow up on remediation tasks related to vulnerabilities, findings, and continuous monitoring activities.
- Support security control assessments (SCAs) by preparing evidence, logs, and technical documentation.
- Assist the security team with targeted penetration testing assessments on internal products
- Monitor compliance with FedRAMP continuous monitoring (ConMon) requirements such as vulnerability scanning, log review, and incident response readiness.
- Collaborate with cross-functional teams (DevOps, IT, Product, etc.) to gather and verify security control implementation evidence.
- Participate in internal and external audits, providing documentation and technical support as needed.
- Assist in maintaining FedRAMP-required documentation, including the System Security Plan (SSP), POA&M, security control matrices, and audit artifacts.
- Stay up to date with evolving FedRAMP requirements, NIST SP 800-53 controls, and federal compliance best practices.
- Contribute to awareness and training initiatives to promote FedRAMP compliance across the organization.
About you:
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience).
- 0–2 years of experience in IT security, risk management, or compliance roles.
- Experience with penetration testing is a nice to have
- Familiarity with FedRAMP, NIST 800-53, or other cybersecurity frameworks.
- Basic understanding of cloud computing (e.g., AWS, Azure, or GCP).
- Strong attention to detail and excellent organizational skills.
- Effective communication skills, both written and verbal.
- Ability to work independently and as part of a team.
Bonus if you have:
- Experience supporting or working in a FedRAMP or other regulatory compliance environment.
- Exposure to tools such as Jira, Confluence, vulnerability scanners (e.g., Tenable, Qualys), or SIEM platforms (e.g., Splunk, Sumo Logic).
- CompTIA Security+, GSEC, or other entry-level security certifications.
- Knowledge of incident response processes and security operations best practices.
What’s in it for you:
- Competitive salary and meaningful equity opportunities.
- Healthcare, dental, and vision coverage.
- 401(k) / RRSP enrolment program.
- Take what you need PTO.
- A Work Culture where:
- You’ll work alongside folks across the globe that reflect the MaintainX values, Smart Humble Optimist.
- We believe in meritocracy, where ideas and effort are publicly celebrated.
About us:
Our mission is to make the life of blue-collar workers easier worldwide by creating software that meets their needs and realities. Our product is truly life-changing for 80% of the workforce that doesn’t work behind a desk and needs enterprise-grade software at their fingertips.
MaintainX is committed to creating a diverse environment. All qualified applicants will receive consideration for employment without regard to race, colour, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.
Apply for this job
*
indicates a required field