Junior Information Security Analyst
At Mechanical Orchard, we specialize in safely rewriting the most critical and complex business applications—the software that runs the world as we know it today—so they’re ready to adapt quickly and easily to market challenges and opportunities. Our approach emerged from observing the decades-long failure patterns in modernization efforts and is designed to eliminate the risks and disruptions that characterize most projects.
Our background in software development and the impact on the industry is well known: we've literally helped write the book on XP and other impactful Agile practices. We’re applying the same thoughtfulness and rigor in applying AI pragmatically where it helps. We believe in the durable principles behind Agile, and embrace the power of cross-functional teams, collective ownership, test driven development, short feedback loops, and continuous improvement.
We’re bringing joy to beleaguered IT teams everywhere. Together, we’re seeing how applying craft, expertise, and technologies we’re building can fundamentally transform the way companies operate, innovate, and win. Our values are: Do the right thing. Do what works. Be kind.
We’re seeking a Junior Information Security Analyst to support our security operations, compliance, and risk management programs. You’ll help ensure the confidentiality, integrity, and availability of Mechanical Orchard’s systems and data while contributing to our security certifications (SOC 2, ISO 27001, FedRAMP, and FISMA). This role is ideal for someone early in their InfoSec career who’s eager to learn and grow within a collaborative, engineering-driven organization.
Responsibilities
Security Monitoring & Incident Response: Monitor security alerts, logs, and reports to identify potential threats. Support triage and investigation of security events. Assist in vulnerability management, including patch verification and reporting.
Compliance & Risk Management: Help maintain evidence and documentation for SOC 2, ISO 27001, and FedRAMP audits. Support risk assessments and control testing. Track remediation of security findings and control gaps.
Access & Configuration Management: Assist with user access reviews and onboarding/offboarding controls. Support cloud and endpoint security configuration checks.Triage and respond to IT / information security requests.
Continuous Improvement: Collaborate with IT, engineering, and operations teams to automate and strengthen security processes. Stay informed about emerging security threats and best practices.
Required Qualifications
1–2 years of experience in IT, security operations, or compliance (internships or equivalent hands-on experience accepted).
Basic understanding of security concepts such as authentication, encryption, and least privilege.
Familiarity with cloud environments (Google Cloud, AWS, or Azure).
Strong attention to detail and documentation skills.
Curiosity and a drive to continuously learn.
Preferred Qualifications
Exposure to SOC 2, ISO 27001, or FedRAMP frameworks.
Experience with SIEM tools, vulnerability scanners, or compliance platforms.
CompTIA Security+, SSCP, or equivalent entry-level certification.
Experience with scripting or automation (Python, Bash, etc.) is a plus.
Mechanical Orchard, Inc. is an Equal Opportunity Employer and Prohibits Discrimination and Harassment of Any Kind. Mechanical Orchard, Inc. is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Mechanical Orchard, Inc. are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV Status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Mechanical Orchard, Inc. will not tolerate discrimination or harassment based on any of these characteristics. Mechanical Orchard, Inc. encourages applicants of all ages. Mechanical Orchard, Inc. will provide reasonable accommodation to employees who have protected disabilities consistent with local law.
We look forward to reviewing your application. Thanks!
Junior Information Security Analyst
At Mechanical Orchard, we specialize in safely rewriting the most critical and complex business applications—the software that runs the world as we know it today—so they’re ready to adapt quickly and easily to market challenges and opportunities. Our approach emerged from observing the decades-long failure patterns in modernization efforts and is designed to eliminate the risks and disruptions that characterize most projects.
Our background in software development and the impact on the industry is well known: we've literally helped write the book on XP and other impactful Agile practices. We’re applying the same thoughtfulness and rigor in applying AI pragmatically where it helps. We believe in the durable principles behind Agile, and embrace the power of cross-functional teams, collective ownership, test driven development, short feedback loops, and continuous improvement.
We’re bringing joy to beleaguered IT teams everywhere. Together, we’re seeing how applying craft, expertise, and technologies we’re building can fundamentally transform the way companies operate, innovate, and win. Our values are: Do the right thing. Do what works. Be kind.
We’re seeking a Junior Information Security Analyst to support our security operations, compliance, and risk management programs. You’ll help ensure the confidentiality, integrity, and availability of Mechanical Orchard’s systems and data while contributing to our security certifications (SOC 2, ISO 27001, FedRAMP, and FISMA). This role is ideal for someone early in their InfoSec career who’s eager to learn and grow within a collaborative, engineering-driven organization.
Responsibilities
Security Monitoring & Incident Response: Monitor security alerts, logs, and reports to identify potential threats. Support triage and investigation of security events. Assist in vulnerability management, including patch verification and reporting.
Compliance & Risk Management: Help maintain evidence and documentation for SOC 2, ISO 27001, and FedRAMP audits. Support risk assessments and control testing. Track remediation of security findings and control gaps.
Access & Configuration Management: Assist with user access reviews and onboarding/offboarding controls. Support cloud and endpoint security configuration checks.Triage and respond to IT / information security requests.
Continuous Improvement: Collaborate with IT, engineering, and operations teams to automate and strengthen security processes. Stay informed about emerging security threats and best practices.
Required Qualifications
1–2 years of experience in IT, security operations, or compliance (internships or equivalent hands-on experience accepted).
Basic understanding of security concepts such as authentication, encryption, and least privilege.
Familiarity with cloud environments (Google Cloud, AWS, or Azure).
Strong attention to detail and documentation skills.
Curiosity and a drive to continuously learn.
Preferred Qualifications
Exposure to SOC 2, ISO 27001, or FedRAMP frameworks.
Experience with SIEM tools, vulnerability scanners, or compliance platforms.
CompTIA Security+, SSCP, or equivalent entry-level certification.
Experience with scripting or automation (Python, Bash, etc.) is a plus.
Mechanical Orchard, Inc. is an Equal Opportunity Employer and Prohibits Discrimination and Harassment of Any Kind. Mechanical Orchard, Inc. is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Mechanical Orchard, Inc. are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV Status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Mechanical Orchard, Inc. will not tolerate discrimination or harassment based on any of these characteristics. Mechanical Orchard, Inc. encourages applicants of all ages. Mechanical Orchard, Inc. will provide reasonable accommodation to employees who have protected disabilities consistent with local law.
We look forward to reviewing your application. Thanks!