Information Security Analyst

Medpace is one of the leading Clinical Research Organizations companies in Healthcare. We are hiring a full-time talented Information Security Analyst who is technical, dedicated to learning new things, security-minded, strong initiative, and able to manage projects autonomously. The Information Security team defends the company’s digital infrastructure by designing, implementing, and improving the company’s cybersecurity architecture. This is a critical role responsible for protecting infrastructure, cloud, edge devices, and data against unauthorized use, modification, exfiltration, or damage. If you’re excited to be part of a fast-growing winning team, then Medpace is a great place to grow your career. Responsibilities Monitor and triage security alerts and incidents using tools such as SIEM and EDR; investigate events by reviewing logs, contain and remediate incidents, and document findings through ticket closure. Deploy and configure security tools (e.g., SIEM, endpoint protection, identity solutions) in collaboration with senior team members and vendors, contributing to the protection of Medpace’s digital assets. Maintain and improve SIEM detections, including updating and tuning alerts, assisting with platform upgrades, and learning to build and refine detections with query language. Support cross-functional security projects by assisting Information Security Engineers with a wide range of initiatives (e.g., governance, architecture, research, compliance support), gaining exposure to diverse security domains while contributing meaningful work. Conduct vulnerability scans (internal and external), analyze results, and coordinate remediation with system owners based on risk and priority. Audit user access and permissions by reviewing access reports, validating approvals with system owners, and documenting findings to support least‑privilege governance (without performing provisioning changes). Respond to security-related inquiries and requests, including following up on security tickets and user/vendor reports (e.g., phishing submissions or suspicious activity) and providing guidance to employees on cybersecurity matters. Perform periodic security audits to verify that policies and procedures are being followed, and assist with audit evidence collection and follow-ups. Participate in an on-call rotation on a limited basis (typically 2–3 weeks per year) to support urgent security incidents or escalations outside normal business hours. Qualifications Bachelor’s degree in Information Systems, Cybersecurity, or a related field. 2+ years of experience in IT or Information Security, with relevant internships or co‑op experience counting toward this requirement. Working knowledge of cybersecurity best practices (e.g., least privilege, secure configurations) and how they are applied across an enterprise environment. Hands-on experience with security technologies, some variety of SIEM, endpoint detection & response, identity/privileged access management, cloud platforms (Azure and/or AWS), and Microsoft Active Directory. Strong communication and documentation skills, with the ability to clearly document incidents, procedures, and findings, and to explain technical issues to non-technical stakeholders. Analytical problem-solving skills with the ability to manage multiple tasks and prioritize effectively in a fast-paced environment. Basic scripting or automation experience (e.g., PowerShell or Python), or a strong willingness to learn scripting to improve and automate security tooling. Curiosity and a learning mindset, with the ability to quickly pick up new technologies and stay current on evolving threats and security practices. Nice to have: Interest or exposure to broader security domains, such as AI, network segmentation, DevSecOps, Azure governance, red-teaming/pentesting, VMS, web security, or compliance audit support —expertise not required, but a willingness to learn and contribute is highly valued. Knowledge of Windows and/or Azure enterprise environments (Active Directory, Azure AD/Entra) from a security perspective. Medpace Overview Medpace is a full-service clinical contract research organization (CRO). We provide Phase I-IV clinical development services to the biotechnology, pharmaceutical and medical device industries. Our mission is to accelerate the global development of safe and effective medical therapeutics through its scientific and disciplined approach. We leverage local regulatory and therapeutic expertise across all major areas including oncology, cardiology, metabolic disease, endocrinology, central nervous system, anti-viral and anti-infective. Headquartered in Cincinnati, Ohio, employing more than 5,000 people across 40+ countries. Why Medpace? People. Purpose. Passion. Make a Difference Tomorrow. Join Us Today. The work we’ve done over the past 30+ years has positively impacted the lives of countless patients and families who face hundreds of diseases across all key therapeutic areas. The work we do today will improve the lives of people living with illness and disease in the future. Cincinnati Perks Cincinnati Campus Overview Flexible work environment Competitive PTO packages, starting at 20+ days Competitive compensation and benefits package Company-sponsored employee appreciation events Employee health and wellness initiatives Community involvement with local nonprofit organizations Discounts on local sports games, fitness gyms and attractions Modern, ecofriendly campus with an on-site fitness center Structured career paths with opportunities for professional growth Discounted tuition for UC online programs Awards Named a Top Workplace in 2024 by The Cincinnati Enquirer Recognized by Forbes as one of America's Most Successful Midsize Companies in 2021, 2022, 2023 and 2024 Continually recognized with CRO Leadership Awards from Life Science Leader magazine based on expertise, quality, capabilities, reliability, and compatibility What to Expect Next A Medpace team member will review your qualifications and, if interested, you will be contacted with details for next steps. Monitor and triage security alerts and incidents using tools such as SIEM and EDR; investigate events by reviewing logs, contain and remediate incidents, and document findings through ticket closure. Deploy and configure security tools (e.g., SIEM, endpoint protection, identity solutions) in collaboration with senior team members and vendors, contributing to the protection of Medpace's digital assets. Maintain and improve SIEM detections, including updating and tuning alerts, assisting with platform upgrades, and learning to build and refine detections with query language. Support cross-functional security projects by assisting Information Security Engineers with a wide range of initiatives (e.g., governance, architecture, research, compliance support), gaining exposure to diverse security domains while contributing meaningful work. Conduct vulnerability scans (internal and external), analyze results, and coordinate remediation with system owners based on risk and priority. Audit user access and permissions by reviewing access reports, validating approvals with system owners, and documenting findings to support least‑privilege governance (without performing provisioning changes). Respond to security-related inquiries and requests, including following up on security tickets and user/vendor reports (e.g., phishing submissions or suspicious activity) and providing guidance to employees on cybersecurity matters. Perform periodic security audits to verify that policies and procedures are being followed, and assist with audit evidence collection and follow-ups. Participate in an on-call rotation on a limited basis (typically 2-3 weeks per year) to support urgent security incidents or escalations outside normal business hours. Bachelor's degree in Information Systems, Cybersecurity, or a related field. 2+ years of experience in IT or Information Security, with relevant internships or co‑op experience counting toward this requirement. Working knowledge of cybersecurity best practices (e.g., least privilege, secure configurations) and how they are applied across an enterprise environment. Hands-on experience with security technologies, some variety of SIEM, endpoint detection & response, identity/privileged access management, cloud platforms (Azure and/or AWS), and Microsoft Active Directory. Strong communication and documentation skills, with the ability to clearly document incidents, procedures, and findings, and to explain technical issues to non-technical stakeholders. Analytical problem-solving skills with the ability to manage multiple tasks and prioritize effectively in a fast-paced environment. Basic scripting or automation experience (e.g., PowerShell or Python), or a strong willingness to learn scripting to improve and automate security tooling. Curiosity and a learning mindset, with the ability to quickly pick up new technologies and stay current on evolving threats and security practices. Nice to have: Interest or exposure to broader security domains, such as AI, network segmentation, DevSecOps, Azure governance, red-teaming/pentesting, VMS, web security, or compliance audit support -expertise not required, but a willingness to learn and contribute is highly valued. Knowledge of Windows and/or Azure enterprise environments (Active Directory, Azure AD/Entra) from a security perspective.