Security Analyst

Work Location Type: Hybrid  

About Grainger:

W.W. Grainger, Inc., is a leading broad line distributor with operations primarily in North America, Japan and the United Kingdom. At Grainger, We Keep the World Working® by serving more than 4.5 million customers worldwide with products and solutions delivered through innovative technology and deep customer relationships. Known for its commitment to service and award-winning culture, the Company had 2024 revenue of $17.2 billion across its two business models. In the High-Touch Solutions segment, Grainger offers approximately 2 million maintenances, repair and operating (MRO) products and services, including technical support and inventory management. In the Endless Assortment segment, Zoro.com offers customers access to more than 14 million products, and MonotaRO.com offers more than 24 million products. For more information, visit www.grainger.com.  

Compensation:

The anticipated base pay compensation range for this position is $85,300.00  to $142,200.00.

Rewards and Benefits:

With benefits starting on day one, our programs provide choice and flexibility to meet team members' individual needs, including:

• Medical, dental, vision, and life insurance plans with coverage starting on day one of employment and 6 free sessions each year with a licensed therapist to support your emotional wellbeing.
• 18 paid time off (PTO) days annually for full-time employees (accrual prorated based on employment start date) and 6 company holidays per year.
• 6% company contribution to a 401(k) Retirement Savings Plan each pay period, no employee contribution required.
• Employee discounts, tuition reimbursement, student loan refinancing and free access to financial counseling, education, and tools.
• Maternity support programs, nursing benefits, and up to 14 weeks paid leave for birth parents and up to 4 weeks paid leave for non-birth parents.

For additional information and details regarding Grainger’s benefits, please click on the link below:

https://experience100.ehr.com/grainger/Home/Tools-Resources/Key-Resources/New-Hire

The pay range provided above is not a guarantee of compensation.  The range reflects the potential base pay for this role at the time of this posting based on the job grade for this position. Individual base pay compensation will depend, in part, on factors such as geographic work location and relevant experience and skills.   

The anticipated compensation range described above is subject to change and the compensation ultimately paid may be higher or lower than the range described above. 

Grainger reserves the right to amend, modify, or terminate its compensation and benefit programs in its sole discretion at any time, consistent with applicable law.  

Position Details:

Grainger’s Cybersecurity Operations Center (CSOC) is a dynamic, collaborative group that focuses on teamwork and learning while protecting Grainger. Our primary mission is to monitor and respond to cybersecurity events generated from our global enterprise security tools.

You Will:

• Participate as a member of the global incident response team in protecting the confidentiality, integrity, and availability of Grainger information assets while enabling business functionality
• Accurately record all interactions in our incident management tracking tool 
• Provide real-time monitoring and timely response to alerts and anomalies generated by security tools 
• Evaluate and escalate events and incidents based on established procedures and playbooks
• Identify and develop new security detection use cases, playbooks, and alerts for use within our SIEM and our case management solution
• Work with our XDR partner and security tool vendors
• Update the CSOC process documentation to share best practices among the team
• Assist in security project implementations for testing, monitoring, log ingestion and reporting purposes
• Provide direction on the usage and integration of cloud-based security solutions/tools/services
• Contribute to the evaluation of new or updated security solutions
• Prioritize and execute tasks in a complex, often remote, environment
• Perform special assignments as required   

  
You Have:

• 1 or more years of experience in a security operations center or incident response role
• 3 or more years of IT or IT security work experience with a broad exposure to infrastructure/network and multi-platform environments
• Hands on working knowledge of at least two operating systems including but not limited to Windows 10/11/Server, Linux, and macOS
• 1 or more years of experience and hands-on working knowledge with case management
• Security certifications (Security+, GSEC, etc.) are a plus
• SOAR experience (Splunk SOAR, Cortex XSOAR, etc.) is a plus
• Programming knowledge (PowerShell, Python) is a plus
• Familiarity with audit support and response, and regulatory compliance (SOX and PCI-DSS)
• Solid understanding of standard business processes including Change Management, Problem Management, Work Prioritization, Quality Assurance, Continuous Improvement, etc. 
• AWS experience is a plus

We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender, gender identity or expression, or veteran status. We are proud to be an equal opportunity workplace.

We are committed to fostering an inclusive, accessible environment that includes both providing reasonable accommodations to individuals with disabilities during the application and hiring process as well as throughout the course of one’s employment.  With this in mind, should you need a reasonable accommodation during the application and selection process, please advise us so that we can provide appropriate assistance.