Comoto Holdings is America’s largest and fastest-growing omnichannel platform in the powersports aftermarket-products industry; dedicated to advancing the experience of powersports enthusiasts across the globe. Comoto’s brands, RevZilla, Cycle Gear, J&P Cycles, REVER, and Common Tread,  deliver premium products, dedicated expertise, engaging media, and passionate customer support of the powersports community, through best-in-class e-commerce and retail experiences.

****This is a hybrid remote position that will require 2-3 days per week in the office.****

Ready to join a crucial team focused on maintaining a high-performing security posture across all Comoto Family of Brands? As an IT Security Analyst, you will report directly to the Security Engineer, serving as a critical resource for daily security operations, system integrity, and compliance requirements.

This role requires a proactive and curious mindset. You will be on the front lines, helping us protect our systems, data, and, most importantly, our customers' trust.

Our Next Security Analyst Will:

You'll be translating security requirements into everyday defense and awareness:

• Threat Hunter: Monitor, triage, and analyze security alerts and user-reported issues (like phishing) to quickly neutralize potential threats.
• Vulnerability Pro: Assist with regular, detailed vulnerability assessments to proactively identify and address security weak spots before they become problems.
• Defense System Support: Help maintain, configure, and optimize our Endpoint Detection and Response (EDR) solution and other core security technologies.
• Compliance Champion: Gather essential data and documentation to support critical compliance requirements, including PCI (Payment Card Industry) standards.
• Empower the Team: Play a hands-on role in supporting our employee security training and awareness programs, helping everyone stay safe and smart.
• Security Insight: Stay current on evolving security threats, countermeasures, and industry best practices—then apply that knowledge to our environment.
• Team Collaboration: Partner closely with the Security Engineer and IT teams to ensure security is thoughtfully integrated into all new projects and processes.

Our IT Security Analyst Has:

We're looking for someone with foundational security knowledge and a passion for learning:

• A B.S. in Cybersecurity, or a related field. OR 3+ years of professional experience in Information Technology, with at least 2 years specifically focused on Security operations.
• A working knowledge of core security frameworks and compliance standards (e.g., NIST, ISO 27001, PCI).
• Familiarity with key security concepts and tools: firewalls, intrusion detection/prevention systems (IDS/IPS), SIEM, and endpoint protection.
• A track record of producing clear, concise documentation and reporting.
• An analytical, detail-oriented mindset and great problem-solving skills—you love figuring out the "why."
• Excellent communication and teamwork skills, with the ability to manage your workload effectively and prioritize tasks under pressure.

Bonus Points:

If you have experience with any of the following, it’s a big plus:

• Cloud platforms, especially Google Cloud Platform (GCP).
• Foundational certifications like CompTIA Security+.
• Basic understanding of scripting languages (like Python or PowerShell).
• Experience with specific security tools such as SentinelOne, ELK Stack, KnowBe4, or Terraform.
• Knowledge of network, operating system, or database security controls.

All your information will be kept confidential according to EEO guidelines.

Important Application Notice: To ensure a fair and efficient review process, please answer all application screening questions thoroughly. Applications with unanswered questions or those marked "N/A" will be automatically declined.