Security Analyst

Title: Security Analyst

Reports To: Threat & Vulnerability Manager

Department: Information Technology

Location/Schedule: Tampa, FL/Hybrid, 2 days in-office

Classification: Full-Time/Exempt

Who We Are:

Old Republic is a leading specialty insurer that operates diverse property & casualty and title insurance companies. Founded in 1923 and a member of the Fortune 500, we are a leader in underwriting and risk management services for business partners across the United States and Canada. Our specialized operating companies are experts in their fields, enabling us to provide tailored solutions that set us apart.

Position Overview:

The Old Republic Security Analyst plays a key role in protecting the organization’s information assets and ensuring the effective operation of security processes and technologies. This position is responsible for monitoring, analyzing, and improving the organization’s security posture by handling security alerts and reports end-to-end, coordinating remediation with stakeholders, and contributing to the continuous improvement of core security programs.

Essential Job Functions:

• Monitor, investigate, and manage security alerts, events, and reports end‑to‑end, escalating and coordinating remediation as needed.
• Support the development, implementation, and continuous improvement of security policies, standards, and procedures aligned with industry frameworks.
• Perform and/or support risk assessments, control evaluations, compliance reviews, and reporting of identified risks to stakeholders.
• Operate, maintain, and document security tools and applications, ensuring configurations are effective.
• Collaborate with cross‑functional teams to ensure timely remediation and promote consistent execution of security requirements.
• Contribute to security awareness efforts and provide best‑practice guidance.
• Maintain proficiency in assigned security tools and emerging threats relevant to the organization’s risk landscape.

Qualifications:

• 2–4 years of relevant cybersecurity/IT security experience, or college degree in a related field.
• Strong analytical and problem‑solving skills with the ability to evaluate complex security risks and recommend effective remediation strategies.
• Effective written and verbal communication skills, including the ability to prepare clear reports and documentation.
• Familiarity with security operations disciplines such as monitoring, incident response, logging, and vulnerability or threat analysis.
• Working knowledge of regulatory or control frameworks applicable to security programs.
• Ability to work independently and collaboratively, managing multiple priorities.
• Experience using vulnerability scanning tools such as Tenable, Qualys, or Rapid7.
• Understanding of CVSS scoring, attack vectors, and prioritizing remediation based on risk.
• Ability to analyze vulnerability data, identify systemic risks, and drive remediation.
• Experience preparing vulnerability dashboards, trend reports, and remediation summaries.
• Familiarity with threat intelligence concepts and integrating emerging threat information.
• Understanding of configuration baseline tools and secure configuration practices.

ORI is an Equal Opportunity Employer. ORI provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.