We're looking for a skilled and proactive Security Analyst to help strengthen the security posture of our cloud-native platforms. This role is ideal for someone with hands-on experience in cloud security, threat detection, and compliance, who is ready to take more ownership over systems, tools, and processes.
You'll collaborate with DevOps, Engineering, and IT to support threat monitoring, incident response, risk assessments, and audit readiness, with a strong focus on AWS, Kubernetes, and .NET environments.
Key Responsibilities:
Cloud & Application Security
- Monitor and maintain security controls in AWS and Kubernetes environments.
- Support implementation and tuning of Cloud Security Posture Management (CSPM) solutions.
- Collaborate with developers to integrate secure coding practices and perform code vulnerability analysis (.NET focus).
Threat Detection & Incident Response
- Manage and respond to security events using WIZ
- Analyze alerts and logs to detect and investigate anomalies.
- Assist in defining playbooks and response procedures for security incidents.
Risk & Compliance
- Perform regular vulnerability scans and risk assessments across cloud infrastructure and
endpoints.
- Support internal audits and external compliance efforts (e.g., SOC2 Type 2).
- Help document and enforce security controls aligned with company policy and industry standards.
Data & Endpoint Security
- Support MDM deployment and policy enforcement for corporate devices.
- Help define and maintain Data Loss Prevention (DLP) policies across SaaS and cloud platforms.
Security Awareness
- Maintain security awareness training content and track employee participation.
- Promote secure behaviors through regular communication and training campaigns.
Qualifications:
- 3–5 years of experience in cybersecurity, preferably in a cloud-native environment.
- Strong understanding of AWS security principles, Kubernetes, and securing web apps (.NET preferred).
- Hands-on experience with SIEM, vulnerability scanners, and CSPM tools.
- Familiarity with SOC2, NIST, or other security frameworks.
- Experience supporting secure SDLC practices and code review processes.
- Relevant certifications (e.g., AWS Security Specialty, GSEC, Security+) are a plus.