Senior Threat Intelligence Analyst working with Bupa's cybersecurity team. Focused on threat management and defensive strategies to enhance cyber security posture.
SS
Onsite Staff Cybersecurity Analyst – Cloud Security
Posted 12 hours ago
About the role
- Staff Cybersecurity Analyst responsible for safeguarding cloud assets and leading security assessments for Southern Glazer’s. Collaborating with teams to develop cloud security policies and addressing cybersecurity incidents.
Responsibilities
- Lead service, system, and infrastructure assessments of major cloud environments to identify deviations from acceptable configurations, or policies.
- Work with internal and external teams to develop cloud-specific security policies, procedures, standards, guardrails and design security controls for IaaS, PaaS, and SaaS.
- Work with developers to respond to escalated problems from System Administrators or other Engineers.
- Maintain comprehensive documentation, understand and practice operating procedures, playbooks and other cloud security-related activities.
- Monitor, track, and mentor on cloud projects, programs, tools, systems, applications and networks for security issues.
- Regularly review Cloud Security Posture Management (CSPM) and Endpoint Protection findings to identify and address infrastructure configuration issues and security vulnerabilities proactively.
- Collaborate with cross-functional teams to integrate security into the CI/CD pipelines and ensure continuous security throughout the software development lifecycle.
- Implement, manage, and maintain a Web Application Firewall (WAF) to protect web applications and APIs from a variety of online threats.
- Lead security assessments, evaluations and audits to determine compliance with published standards.
- Collaborate with external teams to promptly address and resolve cybersecurity incidents, ensuring effective communication and coordinated response efforts.
- Hypothesize & validate new threats and indicators of compromise.
- Identify cyber threats by monitoring security systems, triaging alerts, and reviewing logs.
- Research, analyze, and document the applicability and feasibility of Cyber technology to enhance SGWS security.
- Ensure all operations are in accordance with operating procedures and report any issues to management.
- Provide guidance on security options and decisions for concerns and violations.
- Develop and support report generation for diverse stakeholders in Excel or other tools.
- Participate in Information Security projects and support team efforts for day-to-day operations.
- Provide technical support for routine security services.
- Perform capacity and future growth planning of the enterprise security infrastructure to ensure a highly available security environment.
Requirements
- Bachelor's degree in related field (e.g., Cybersecurity, Computer Science, Computer Engineering, Information Technology, System Analysis, Business, etc.) or equivalent combination of education and work experience.
- 8+ years of experience in IT/network security/cybersecurity with cloud focus.
- Extensive experience in information risk concepts and principles, as a means of relating business needs to security controls.
- Proficiency in advanced cloud security tools, technologies (e.g. CSPM, WAF) and best practices.
- Expertise in network security protocols and practices.
- Strong understanding of cloud security controls, conceptual models, and frameworks to monitor security posture and enhance security features.
- Solid knowledge of current and emerging technologies.
- Proficiency with security frameworks (e.g., NIST, ISO, etc.).
- Experience in DevOps and Agile technology environments.
- Proven experience in working with multiple, diverse technologies and processing environments.
- Native-level proficiency/fluent in English.
Benefits
- comprehensive medical and prescription drug coverage
- dental and vision plans
- tax-saving Flexible Spending Accounts
- disability coverage
- life insurance plans
- 401(k) plan
- tuition assistance
- wellness program
- parental leave
- vacation accrual
- paid sick leave
- more
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Information Security Analyst at Field Nation leading SOC 2 and ISO 27001 compliance programs. Collaborating with teams to embed security and leverage AI in GRC workflows.
Analista de Ciberseguridad en CRG Solutions responsable de monitorear amenazas y gestionar vulnerabilidades en la organización. Identificación de riesgos y mejora continua de la postura de seguridad.
Compliance & Information Security Analyst at beqom managing GRC and TPRM functions. Overseeing client governance, risk, and compliance requests, and vendor due diligence at a SaaS company.
Security Compliance Analyst responsible for ensuring compliance with security regulations and collaborating on security measures across teams.
Senior Technical Expert in Cyber Defense Center at ZEISS analyzing global cyber threats. Collaborating with SOC, CIRT, and ensuring proactive defense strategies.
Information Security Analyst focusing on vulnerability research and data analysis at Flexera. Involves analyzing, verifying vulnerabilities, and maintaining high - quality content standards.
Oversee the testing lifecycle and provide cyber security solutions at Xcel Energy. Engage in various testing techniques and collaborate with teams to enhance quality practices.
Security Analyst II role at Deepwatch focusing on incident handling and cybersecurity analysis. Working with a team to improve security posture and customer experience in a hybrid environment.
Information Security Analyst II at West Bend handling security projects and collaboration with IT teams. Supporting security incidents and enhancing organizational information security policies.