IT & Security Analyst
About Tavily:
Join Tavily as we pioneer the infrastructure layer for agentic web interaction at scale. Our cutting-edge API powers Retrieval-Augmented Generation (RAG) and real-time reasoning in advanced AI systems. We empower developers to build intelligent, informed AI agents by seamlessly connecting Large Language Models (LLMs) to high-quality, trustworthy web content.
Collaborate with some of the most innovative minds in AI, from agile startups redefining the landscape to large enterprises deploying AI at scale. From sales assistants and research copilots to internal knowledge tools, we are the critical link bridging LLMs with real-world intelligence.
About the Role:
Are you a proactive IT & Security professional passionate about safeguarding cutting-edge AI infrastructure? We are seeking an IT & Security Analyst to join our growing team. This dynamic role places you at the vital intersection of IT operations, robust information security, and stringent governance, offering unparalleled variety and complex problem-solving opportunities.
You'll be instrumental in managing our endpoint and SaaS environments, driving our security operations forward, and strengthening our compliance and risk management programs.
Key Responsibilities: IT Operations Drive endpoint management, device enrollment, and compliance policies through expert administration of Microsoft Intune. Information Security Contribute to our vulnerability management program, actively tracking, prioritizing, and coordinating timely remediation efforts. Governance, Risk, & Compliance (GRC) Support crucial compliance initiatives, aligning our practices with industry-leading frameworks like SOC 2, ISO 27001, and NIST. Required Qualifications: A minimum of 2+ years of hands-on experience in IT operations, information security, or a combined IT/security role.
Implement and enforce least-privilege principles for secure user access provisioning and deprovisioning.
Oversee the comprehensive SaaS application inventory, ensuring diligent license management and regular access reviews.
Facilitate seamless onboarding and offboarding processes, including meticulous identity lifecycle management.
Monitor evolving threat intelligence feeds, translating critical findings into actionable security recommendations.
Play a key role in incident response activities and administer essential security tooling.
Contribute to our robust third-party risk management program, including conducting thorough vendor assessments.
Respond to security questionnaires from customers and partners with precision and expertise.
Maintain and update critical security policies, supporting the comprehensive collection of evidence for audits.
Demonstrated hands-on expertise with Microsoft Intune and comprehensive endpoint management.
Proven experience managing user access and permissions within a corporate IT landscape.
Solid familiarity with SaaS platforms and best practices in IT asset management.
Exposure to modern vulnerability management tools and established processes.
A strong understanding of threat intelligence concepts and their practical application.
Familiarity with at least one key compliance framework (e.g., SOC 2, ISO 27001, NIST, CIS Controls).
Experience in completing security questionnaires and/or participating in third-party risk assessments.
Excellent written and verbal communication skills, essential for collaboration and documentation.