Cooper's Hawk Winery and Restaurants · 9 hours ago
Senior Information Security Analyst
Downers Grove, IL
Full-time
Onsite
Senior Level
$130K/yr - $160K/yr
7+ years expCooper's Hawk Winery and Restaurants is seeking a Senior Information Security Analyst to join their Information Technology organization. This role supports the Governance, Risk, and Compliance program and leads security operations, including investigating security alerts and developing security policies.
Food and BeverageRetailWine And SpiritsWinery
Responsibilities
Monitor, triage, investigate, and respond to security alerts, events, and vulnerabilities across corporate IT, cloud platforms, restaurant systems, POS environments, and payment systems, ensuring timely containment, remediation, and documentation
Support in maintaining, and optimizing security tooling including EDR, SIEM, IAM, SOC portals, and threat intelligence platforms; tune detection rules and response playbooks to improve signal quality and reduce false positives
Act as the primary operational security contact for MDR/SOC partners, coordinating alert validation, incident response activities, and remediation follow-up
Lead vulnerability management efforts across systems, partnering with Infrastructure, Restaurant Technology, and Application teams to prioritize and remediate findings within defined SLAs, with a focus on PCI-related risks
Review and analyze reports from internal security tools and external partners to identify trends, systemic risks, and required corrective actions
Support security operations for point-of-sale (POS) systems, payment processing environments, and cardholder data, ensuring alignment with PCI-DSS Level 1 requirements
Develop and maintain security dashboards, metrics, and reports covering incidents, vulnerabilities, SLA performance, and risk trends for IT leadership
Support compliance and assurance activities related to PCI-DSS, SOX/ITGC, and NIST CSF by aligning operational security processes, controls, and documentation
Develop, document, and maintain security procedures, standards, and technical controls for on-premises, cloud, and restaurant technology environments
Maintain security risk artifacts including the risk register, risk acceptances and exceptions, third-party vendor risk profiles, onboarding records, and security asset inventories
Partner with IT and business stakeholders to embed security best practices into projects, system changes, and restaurant operations
Participate in incident response activities including escalation, coordination, root cause analysis, tabletop exercises, and after-hours on-call support as required
Qualification
Required
7–10 years of progressive experience in Information Security, spanning cybersecurity operations, security assurance and risk management
Demonstrated experience operating vulnerability management programs, including scanning, risk assessment, remediation tracking, and reporting using tools such as Tenable or equivalent platforms
Proven experience working directly with SOC and MDR providers, including alert triage, incident escalation, response coordination, and validation of detection and remediation actions
Working knowledge of penetration testing methodologies, findings interpretation, and remediation processes
Experience supporting PCI-DSS (preferably Level 1) and SOX/ITGC compliance requirements in regulated environments
Solid understanding of security frameworks and control models, including NIST CSF, CIS Controls, and Zero Trust principles
Strong understanding of endpoint, application, database, and cloud security best practices across on-premises and cloud platforms
Bachelor's degree in Computer Science, Information Technology, or a related field, or equivalent professional experience
Ability to adapt quickly in a dynamic environment, evaluate new technologies, and apply them effectively as the security and technology roadmap evolves
Strong organizational and prioritization skills, with the ability to manage multiple initiatives, deadlines, and competing requests
Excellent analytical and problem-solving skills, with a practical, customer-focused approach to security challenges
Ability to communicate clearly and effectively with technical and non-technical stakeholders across IT, business, and restaurant operations
Preferred
Preferably hands-on experience with Microsoft security technologies, including Defender for Endpoint, Defender for Office, Cloud App Security, and Entra ID (Azure Active Directory), in enterprise and hybrid environments
Exposure to DevSecOps practices and secure SDLC processes is a plus
Industry certifications preferred, including Security+, CISSP, CISA, CRISC or equivalent
Experience in hospitality or retail environments
Benefits
Incredible Discounts:
Monthly Dining Allowance
50% Dining and Carryout
40% Retail Wine
20% Retail and Private Events
Monthly Complimentary Wine Tasting for Two
Medical, Prescription, Dental, Vision Insurance plus Telemedicine and Wellness Program
Company Matching 401(k) Retirement Savings Plan
Flexible Savings Accounts- Health and Dependent Care
Health Savings Account
Long-Term Disability; Voluntary Short-Term Disability
Basic Life and AD&D Insurance (with option to purchase additional coverage)
Paid Parental Leave
Highly Competitive Pay plus Team Member Incentives & Rewards
Paid Time Off
Milestones Recognition Program
Complimentary Gym Membership in RSC Building
Company
Cooper's Hawk Winery and Restaurants
Cooper’s Hawk Winery & Restaurants was created with the inspiration of bringing the Napa Valley experience to all of America, by combining an elegant tasting room with a polished casual restaurant and scratch kitchen.
5001-10000 employees
Funding
Current Stage
Late StageTotal Funding
unknown2019-07-24Private Equity
Leadership Team
Timothy McEnery
Founder and CEO
Recent News
Seattle TechFlash
2025-11-26
Company data provided by crunchbase