Information Security Analyst

**Are you the kind of person who can’t walk past a mystery without wanting to solve it?** When alerts flash or data looks suspicious, your instinct is to dig in and figure out what’s really going on.

As an **Information Security Analyst** on ESG’s **Global Information Security Team**, you’ll dive into real-time threats, hunt down vulnerabilities, and help protect the systems that keep our global operations running. You’ll play a key role in maintaining the **confidentiality, integrity, and availability** of our enterprise assets
- monitoring, analyzing, and responding to security events with precision and curiosity.

This role calls for a sharp technical mind, strong analytical instincts, and a deep understanding of the evolving cybersecurity landscape.

**About Us**:
**ESG** powers the business of energy around the world. Our software helps energy companies work smarter, from utilities and renewables to oil and gas producers, by turning complex processes into connected, automated solutions.

We build tools that simplify how companies manage data, revenue, land, and field operations so they can focus on innovation and results that matter. **ESG** proudly holds comprehensive **ISO certifications** for Quality and Information Security Management, along with independent **SOC attestations** across our global operations.

**Pandell**, an ESG company, plays a key role in this mission by creating innovative software solutions and with a people-first culture that supports the energy sector across **Canada and the United States**.

Backed by **Accel-KKR**, a global software investment firm with more than **$19 billion** in capital commitments, ESG combines global reach with local expertise to help energy companies move forward with confidence.

**Now, let’s talk about the people behind the tech.**

Picture a workplace where what you do truly matters, your voice is heard, and your teammates are some of the smartest, kindest, and funniest people you’ll ever meet. That’s **Pandell-ESG**.

We’re a fast-moving, high-performing software company filled with talented, purpose-driven individuals. Our culture is challenging, rewarding, and fun. **Diversity, equity, and inclusion** are part of who we are. We want you to show up as your authentic self, and we’ll back you with the trust, tools, and flexibility to do your best work.

**About Our IT Security Team**:
**ESG's Global Security Team** is a close-knit team spread across **Canada, the UK, and the US.** We stay connected across time zones and work hand-in-hand with our **Global IT teammates** to keep our systems secure and safe.

**Requirements**:
**What You’ll Do**:

- Keep a close eye on security alerts and be the first line of defence by analyzing, investigating, and responding to incidents before they escalate
- Support ongoing investigations and remediation efforts, turning complex data into clear reports and recommendations
- Manage and update security documentation so our policies stay accurate and accessible
- Help ensure we stay compliant with data privacy laws and industry regulations (NIST, PCI DSS, ISO, SOC, etc.)
- Stay curious Research new threats, tools, and technologies to strengthen our security posture
- Conduct vulnerability assessments and support penetration testing to spot and fix weak points
- Participate in internal and external audits to keep our standards sharp
- Collaborate with teams across the business to make security part of how we all work every day

**What You Bring**:
**EPIC Essentials-**You embody Pandell-ESG’s core values:

- **Excellence**: Deliver your best, every time.
- **Passion**: Show how much you care each day.
- **Integrity**: Do the right thing (even when no one’s looking).
- **Collaboration**: work together to succeed together.

And on top of that:

- 2 years of experience as a Security Analyst or in a related technical field
- Solid understanding of cybersecurity controls, incident management, and vulnerability management
- Experience with frameworks such as NIST, PCI DSS, ISO, or SOC
- Strong analytical thinking and attention to detail (you see patterns others might miss)
- Excellent communication skills and a collaborative mindset
- A curious, proactive approach; you like solving puzzles and continuously learning

**Extra Credit**:

- Certifications like CompTIA Security+, CISSP, or CEH
- A knack for translating complex security concepts into plain language for non-technical teammates
- Experience in incident response, threat hunting, or vulnerability management
- A curious mindset; you love exploring new technologies, tools, and trends to stay one step ahead

**Education**: Bachelor’s degree in Computer Science or a related field

**Travel**: Up to 5% (depending on location)

**Benefits**

**What’s In It for You?**:
At Pandell-ESG, we believe in **creating a workplace where you can do your best work** while enjoying **meaningful projects and a strong sense of belonging**. Here’s just a few things we offer:

- Work fro