Cloud Security Analyst/Engineer

Department: Information Technology

Reports To: Cloud Security Manager

Location: [REMOTE] (Flexible/Hybrid options available)

Summary

We are searching for a skilled Cloud Security Analyst/Engineer to bolster the security of our cloud environments. In this role, you’ll play a vital part in protecting our cloud-based systems, networks, and data. You’ll design, implement, monitor, and continuously improve security measures to uphold the organization’s data integrity, confidentiality, and availability within the cloud.

Key Responsibilities

• Security Assessment and Remediation: Conduct security assessments, identify vulnerabilities, and prioritize remediation efforts within cloud environments (AWS, Azure, GCP, etc.).
• Incident Response and Investigation: Participate in incident response activities, including detecting, analyzing, and mitigating security incidents in the cloud.
• Security Tools and Controls: Design, implement, and manage security tools like firewalls, intrusion detection and prevention systems (IDPS), Security Information and Event Management systems (SIEM), and vulnerability scanners.
• Access Management: Develop and enforce robust identity and access management (IAM) policies and procedures, ensuring appropriate access controls and user provisioning across cloud services.
• Compliance and Policy: Maintain compliance with relevant security standards and regulations (e.g., SOC 2, NIST, PCI DSS, HIPAA, GDPR). Develop and update security policies and standards as needed.
• Collaboration and Education: Collaborate with development, operations, and other cross-functional teams to integrate security best practices into cloud workflows. Provide security awareness training and education to relevant personnel.

Required Qualifications

• Bachelor’s Degree in Computer Science, Cybersecurity, Information Systems, or a related field.
• Minimum [2+] years of experience in a security analyst, security engineer, or other cybersecurity-related role with a focus on cloud environments.
• In-depth knowledge of cloud architecture principles and security best practices.
• One or more industry-recognized cloud security certifications (e.g., AWS Certified Security – Specialty, CCSP, CCSK)
• Proficiency in scripting or programming languages (e.g., Python, PowerShell) for automation.

Preferred Qualifications

• Experience with threat modeling and penetration testing techniques.
• Familiarity with cloud-native security solutions and services.
• Understanding of DevOps principles and integration of security into CI/CD pipelines.
• Master’s degree in Cybersecurity or relevant field.

Essential Skills

• Analytical Thinking: Strong analytical and problem-solving skills to evaluate security risks and design effective countermeasures.
• Communication: Ability to communicate complex security concepts to technical and non-technical audiences.
• Self-driven: Demonstrated capacity to stay up-to-date on the latest cloud security threats, tools, and trends.
• Team Player: Ability to collaborate effectively within cross-functional teams.