Security & Compliance Operations Analyst

Anritsu is a provider of innovative communications test and measurement solutions. Anritsu engages customers as true partners to help develop wireless, optical, microwave/RF, and digital solutions for R&D, manufacturing, installation, and maintenance applications, as well as multidimensional service assurance solutions for network monitoring and optimization. Anritsu also provides precision microwave/RF components, optical devices, and high-speed electrical devices for communication products and systems. The company develops advanced solutions for emerging and legacy wireline and wireless technologies used in commercial, private, military/aerospace, government, and other markets. To learn more visit www.anritsu.com and follow Anritsu on Facebook, LinkedIn, Twitter, and YouTube.

Anritsu is committed to providing a comprehensive and competitive benefits package to all employees. We offer standard benefits such as major medical, vision and dental coverage, life insurance, Employee Assistance Plan, Flexible Spending Accounts, a generous 401(k) Matching Plan, Tuition Reimbursement, and profit sharing. Our benefit package is designed to positively impact all aspects of your life; to help you and your family succeed; and to maintain our status as a "perfect job." Come find out what Anritsu has to offer you!

We are seeking a Security & Compliance Operations Analyst to join our Information Technology team in Morgan Hill, CA. This mid-level, onsite role reports directly to the IT Director and is responsible for the hands-on execution of Anritsu's information security and compliance operations. The analyst will own the full lifecycle of security activities-from technical implementation to control documentation-supporting internal systems, cloud platforms, and external certification efforts.

Key Responsibilities:

• Execute daily security operations across internal, external, and cloud environments using Microsoft 365 Defender, Sentinel, and Entra ID
• Configure and maintain policies for endpoint protection, identity and access control, logging, and alerting
• Lead technical response efforts for security incidents, including investigation, evidence collection, and remediation
• Manage compliance support activities for frameworks including CMMC Level 2, SOC 2, ITAR, and ISO 27001: conduct gap analyses, document controls, and support audits
• Develop and maintain a cybersecurity roadmap that aligns day-to-day operations with long-term compliance goals
• Produce dashboards and metrics related to threat detection, incident response, patching, and access reviews
• Support vulnerability management by reviewing scan reports, coordinating remediation, and validating resolution
• Collaborate with system administrators to implement and enforce secure configuration baselines
• Respond to internal stakeholder inquiries and compliance-related requests with clear, well-documented information
• This position will be reporting to the IT Director based in Morgan Hill, CA

Requirements:

Required:

• Bachelor's degree in Information Security, Information Technology, or a related field - or equivalent practical experience
• 3-5 years of hands-on experience in security operations across internal infrastructure, Microsoft 365/Azure, and endpoint environments
• Direct experience configuring and managing Microsoft 365 Defender, Microsoft Sentinel, and Microsoft Entra ID (formerly Azure AD)
• Proven ability to independently execute core security tasks, including log analysis, access reviews, policy enforcement, and alert triage
• Demonstrated experience supporting formal certification efforts for compliance standards such as CMMC (Level 2 preferred), SOC 2, ITAR, or ISO 27001 - including gap assessments, control implementation, audit preparation, and evidence gathering
• Experience maintaining secure configurations and identity controls in hybrid and regulated IT environments
• Solid experience with IT General Controls (ITGC) - including audit preparation, risk assessments, control implementation, and documentation
• Prior exposure to SAP governance tools such as Pathlock or SAP GRC is a plus

Preferred Certifications:

• CompTIA Security+
• Microsoft SC-200 or SC-900
• CISA or Associate CISSP
• Certified CMMC Professional (or equivalent readiness experience)

In order to be successful in this role, the following competencies and behavior skills are required:

• Excellent written and verbal communication skills.
• Ownership mindset with a strong sense of accountability for results and follow-through
• Detail-oriented, especially when documenting controls, handling sensitive data, or managing audit evidence
• Clear and confident communicator, able to translate technical security issues for business stakeholders and vice versa
• Adaptable and resourceful, comfortable working across multiple systems, tools, and compliance requirements without rigid handoffs
• Self-motivated, with the initiative to identify gaps and propose solutions without waiting for direction
• Collaborative and low-ego, able to work cross-functionally with systems admins, compliance leads, and leadership in a constructive and transparent way
• Professional discretion when handling confidential or regulated information, including ITAR and CUI-related content

The annual base salary range for this position is $115,000 - $150,000. Please note that the salary information is a general guideline only. Anritsu Company considers factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience, education/ training, key skills as well as market and business considerations when extending an offer.

Why work at Anritsu? Please visit us on Comparably to see what our employees love about working here!