Cloud Security Analyst

JOB RESPONSIBILITIES:

• Recommending security configuration standards for cloud services to include, but not limited to,

  AWS, AZURE, Google.

• Conducts security risk assessments, evaluates security services and technologies, and reviews

  and documents information security policies and procedures as well as provides monitoring and

  oversight for alerts in the Cloud environment.

• Integrate Cloud logs with Vivint SIEM as needed for logging and monitoring of Vivints Cloud

  environments using Splunk

• Work with IT to review and assess cloud network, server and service architecture

• Produce metrics and reports on the cloud security posture of Vivint cloud systems

• Create actionable alerts in Splunk based on received Cloud log events

• Monitor and respond to security events and incidents

• Coordinate with SOC team on all security events and incidents

• Design and perform POCs and to facilitate service selection

• Plan, implement and direct Cloud related SOC Infrastructure and security projects

• Act as L2/L3 Cloud support for Security Analysts

• Train SOC analysts on Cloud security and Cloud processes

• Knowledge of PCI, PII requirements

• Validate that system designs meet compliance requirements

• Create and work on Jira tickets as needed to perform work and projects

• Perform SOC Daily tasks, to include monitoring and responding to alerts, remediating of

  malicious emails

• Develop and write SOPs

• Acts as an Incident Response team member when the incident response team is active. Incident

  response tasks may be identification, log and event collection and analysis, forensic

  investigation support, communication support, and evidence handling.

• Assist in performing IT audits, security reviews, risk assessments Change Management reviews

  for SOX, PCI, HIPAA, IT control mapping, process documentation, control testing, deficiency remediation, gap analysis/assessments, and IT audit preparation.

  *This is not a complete list of the functions and responsibilities and may be adjusted as required.

• Automate security controls, data and processes to provide better metrics and operational support

Job Skill Requirements:
A successful candidate will have a broad range of experience in hardware and software technologies that can work in a fast-paced environment:

• 2+ years experience in IT Security

• 2+ years experience working in one or more of the following Cloud systems

• AWS, AZURE, or Google

• Deep understanding of IT infrastructure, information security, and compliance controls.

• Hands-on experience endpoint security operations required.

• Hands-on experience with network vulnerability and web application scanning tools

• Excellent written and verbal communication skills: Must be able to write document, articulate

  and present complex security concepts and solutions to parties with a variety of skills.

• Exceptional analytical and problem solving skills; someone who ‘sees’ the box differently.

• Experience developing and managing remediation plans/corrective actions.

• Must have experience with SIEM technologies.

  MINIMUM QUALIFICATIONS:

• One or more of the following:

  • CCSP

  • AWS Security, AWS Cloud Practitioner,

  • Exam AZ-500 MS Azure Security Technologies

  • Exam AI-900 MS Azure AI Fundamentals

  • Comparable or greater Cloud experience or certifications

• Minimum of 2 years related work experience in IT Security.