Senior Cyber Security Analyst at GDIT identifying and mitigating cyber threats while ensuring compliance with NIST and ISO standards. Involves oversight of security controls and enterprise risk assessments.
About the role
- Application Security Analyst at Ford monitoring and validating cloud security implementations. Collaborating across teams to manage vulnerabilities and enhance secure coding practices.
Responsibilities
- In this role, you will have the opportunity to support the oversight and security validation of our current technology platform and new Zero Trust environment within the Google Cloud Platform (GCP).
- As a key member of our second line-of-defense (2LoD) security team, you will act as a collaborative partner to our development and operations teams. Your focus will be on providing independent technical review and vulnerability management expertise to ensure security is effectively embedded into the fabric of our applications.
- You will play a vital role in identifying risks and ensuring our systems remain "secure by design" through proactive monitoring and reporting. If you are a detail-oriented professional who is passionate about cloud security and wants to make a tangible impact on a strategic, multi-year program, this is the role for you.
Requirements
- Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or a related field (or equivalent experience/internships).
- 1–3 years of experience in an information security role (experience in application security or cloud security is a plus).
- Foundational understanding of Google Cloud Platform (GCP) services and basic cloud security concepts.
- Strong knowledge of common application vulnerabilities (e.g., OWASP Top 10).
- Experience using vulnerability scanning or management tools (e.g., Cycode, Checkmarx, FOSSA)
- Strong organizational skills with the ability to track multiple technical tasks and follow up on remediation.
- Secure coding knowledge and techniques to provide developers with actionable guidance
- Proactive self-starter with a passion for continuous learning in the evolving cloud security landscape and a demonstrated ability to identify and address security gaps independently
- Good communication skills, with the ability to explain security risks to both technical and non-technical stakeholders.
- **Even better, you may have...**
- Relevant Cyber Security certifications (e.g., CompTIA Security+, Google Cloud Digital Leader, ISC2)
- Familiarity with Infrastructure as Code (IaC) security practices and tools (e.g., Terraform, Mondoo, Open Policy Agent).
- Knowledge of common security frameworks and compliance standards (e.g., NIST, ISO 27001, SOC 2, GDPR).
- Experience with security monitoring, logging, and alerting solutions in a cloud environment (e.g., GCP Security Command Center, Cloud Logging, Cloud Monitoring).
- Experience with containerization (Docker) or CI/CD tools.
Benefits
- Immediate medical, dental, vision and prescription drug coverage
- Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more
- Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more
- Vehicle discount program for employees and family members and management leases
- Tuition assistance
- Established and active employee resource groups
- Paid time off for individual and team community service
- A generous schedule of paid holidays, including the week between Christmas and New Year’s Day
- Paid time off and the option to purchase additional vacation time.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Junior Information Security Analyst focusing on identity and access management at Evertec. Supporting operational activities and collaborating with IT and security teams in a hybrid setting.
Senior Cybersecurity Engineer at 3CON responsible for detection and response engineering in Brazilian pharmaceutical retail. Collaborating with teams and improving security controls continuously.
Lead Security Analyst managing operational guidance and analytical oversight for security across crisis regions. Collaborating for timely decision - making and information delivery to clients in the field.
Analista de Segurança da Informação na Minsait investigando e respondendo a incidentes de segurança. Envolvimento em gestão de vulnerabilidades e boas práticas de segurança.
Senior Security Analyst providing advanced cybersecurity services in Stockholm and Malmö. Monitoring environments and handling incidents while collaborating with clients to ensure cybersecurity resilience.
Staff Cybersecurity Analyst focusing on cloud security for Southern Glazer’s. Leading security assessments, managing incidents, and collaborating with teams to enhance security posture.
Analyst supporting Nuclear Cyber Security program at Duke Energy. Addressing cyber security threats and managing compliance across multiple nuclear operations.
Security Analyst investigating employee fraud and misconduct for PNC across multiple US locations. Responsibilities include analyzing bank activities to minimize risk and detect suspicious activities.
Information Security Analyst managing access controls and ensuring compliance with information security policies. Supporting user demands in corporate environments while working in a hybrid model.