Information Security Analyst

Job Description:

Job Req ID: 106693

Job Type: Full-time

Work Category: Hybrid Telecommute

Application Close Date: 12/23/2025

Sponsorship: Not Available

Compensation: $40 - $60

We are GALLO

We're a family-owned company with a 90+ year legacy, that's consistently recognized as a Glassdoor "Best Places to Work." We have 130+ brands in our total alcohol beverage portfolio including wine, malt, spirits, and ready-to-drink beverages. We're home to the #1 wine and spirits brands in the U.S. - Barefoot Wine & High Noon and are the official sponsors of the NFL, NHL, UFC, and PGA of America.

A Taste Of What You'll Do

We're seeking an experienced Information Security Analyst to shape and operate SAP security across on‑premises and cloud platforms (S/4HANA, Fiori, GRC, EWM, Ariba, BTP, BRF+, IAS, IBP, Solution Manager). In this hands‑on role you'll design and develop roles, enforce segregation of duties, manage access controls, and sustain ITGCs and compliance. You will lead access provisioning, testing, audit readiness, incident response, and continuous improvement efforts while documenting processes and training users. You'll collaborate closely with Enterprise Architecture, IAM, and Cybersecurity to align SAP security with enterprise identity and access strategies.

You'll drive projects from requirements through implementation and production support, coordinating testing with business and technical stakeholders and supporting transitions from project delivery to stable operations. Day‑to‑day responsibilities include role design and debugging, risk mitigation, audit management and remediation, creating clear runbooks and training materials, and investigating security incidents with a focus on timely, effective resolution. You'll monitor emerging SAP security trends and recommend practical enhancements that balance risk, usability, and business needs.

We value intrapreneurship-thinking boldly, taking measured risks, learning quickly, and championing innovation-and ownership-setting high expectations, fostering frank and constructive discussions, and holding yourself and others accountable. We're looking for someone who communicates clearly, mentors colleagues, and helps build resilient, repeatable processes.

We're committed to building an inclusive workplace and welcome applicants from all backgrounds, experiences, and abilities. If you need an accommodation to apply or interview, please let us know and we'll work with you. Bring your SAP security expertise, curiosity, and collaborative spirit to a team focused on protecting critical systems and enabling secure business outcomes.

What You'll Need

• Bachelor's degree in Computer Science, Business Administration, MIS, Mathematics, or Engineering, plus 3 years of experience with information security, System Administration or equivalent with increasing levels of responsibility; OR High School Diploma or State-issued equivalency certificate plus 7 years of experience in Information Security, System Administration or equivalent with increasing levels of responsibility.
• Demonstrated technical expertise in IT systems.
• Strong analytical ability, communication skills and the ability to work effectively with clients/customers, IT management and staff, vendors, consultants, and auditors.
• Required to travel to company offices, sites, and/or meeting locations for onboarding, training, meetings, and events for development, department needs, and business delivery up to 5% of the time, with or without reasonable accommodation. This may be in addition to travel requirements, if applicable, as listed in this job description.
• Required to be 18 years or older. This may be in addition to other age requirements, if applicable, as listed in this job description.

How You'll Stand Out

• Bachelor's degree in Computer Science, Business Administration, MIS, Mathematics, or Engineering, plus 5 years of experience with data security reflecting increasing levels of responsibility.
• Extensive professional experience in management and deployment of security tools.
• Extensive knowledge of networking, databases, systems and/or Web operations.
• In-depth knowledge of data security and protection techniques.
• In-depth knowledge of application security and application security best practices. Professional experience in the following: Vulnerability and configuration assessment tools, IDS/IPS tools, logging and monitoring tools (SIM), DLP, audit & assessment (GRC tools), data encryption and network or application firewalls, enterprise monitoring (SIEM). Familiarity with mobile, SaaS & Cloud technologies.
• Professional certifications (CISSP, ISACA, GSEC, others)
• Knowledge of industry frameworks and best practices (ISO, NIST, CSC, others).
• Knowledge of regulatory requirements and compliance (PCI, SOX, HIPAA, GLBA).
• Experience managing customer expectations.
• Experience identifying short and long-term issues and providing solutions.
• Knowledge of other business areas. Demonstrates strong team building skills, adapts to unexpected changes, and acts as a strong role model.
• Demonstrates strong negotiation and conflict resolution skill.
• Broad knowledge of principles, practices, and procedures in this field of specialization.
• Experience completing assignments that are broad in nature, usually requiring originality and ingenuity, with appreciable latitude for unreviewed action or decision.

To View the complete Job Description please click here.

Our Benefits & Perks

We are committed to providing competitive compensation, perks, and a culture that supports your well-being. Benefits depend on your work category and may include medical and dental coverage, 401k plans, profit sharing, pet insurance, company holidays, access to an employee wine shop, and more! Additional information will be provided before your first interview.

Create a Job Alert

Receive an email alert when similar new jobs are posted. It's free, fast and easy.

Create Alert