| : Cloud Security Analyst ||Must local to St. Louis, MO (Hybrid) ||12 months ||Phone -Skype at Remote, Remote, USA |
| Email: [email protected] |
| From: mansi verma, TEK Inspirations LLC [email protected] Reply to: [email protected] Hello, Hope you are doing well. Please find below requirement and let me know your confirmation for this role. Job Description: Cloud Security Analyst Must local to St. Louis, MO or Weldon Springs, MO(Hybrid) Length: 12 months Notes from manager: Candidate must have strong experience in: AWS Incident Response and all of the AWS Security Tools Palo Altos Prisma Cloud Splunk (equivalent ok, but Splunk strongly preferred) Manager needs someone with at least 6 years in cloud security, with more total years of IT experience in addition to that. This person will work with the cloud services team to achieve monitoring and detection goals. This is a high visibility area for the company. There will be periodic on call rotation for this position. Currently on call is every 6 weeks with 1 week on. The on call rotation is in regards to everything for security, not just AWS. As always, communication, personality, and interpersonal skills are vital. Combine technical security engineering and executive-level business consulting expertise to deliver innovative commercial Cloud strategic planning and technical solutions. Perform extensive research and analysis of RGAs Cloud environments and delivery models, system security monitoring, tuning and alerting recommendations. Assess and document vendor vs application owner responsibilities for vulnerability scanning, remediation, and mitigation, including risk assessments and risk reporting. Maintain responsibility for analyzing and continuously monitoring Cybersecurity and privacy policies, programs, compliance artifacts, or standards for security compliance, systems authorization, and management in a commercial Cloud environment. Monitor, analyze and report on the establishment of tactics, techniques, and procedures (TTPs) for application owners. Responsibilities 1 Leverage Microsoft Azure, AWS and Google Cloud Platform resources to detect, triage, remediate, and recover compromised systems across the enterprise cloud environment. 2 Implement best practices in cloud logging for incident response and digital forensics. 3 Create playbooks and document standard operating procedures for incident response on cloud platforms. 4 Participate in exercises to validate security profile of cloud environments, and work to improve vulnerabilities. Participate in security activities including vulnerability testing and analysis, ethical hacking, purple team assessments, and other security testing. 5 Mentor associates within the department on cloud technology, cloud incident response, and cloud security best practices. Provide training and guidance to team members as required. 6 Make recommendations on toolset modifications and improvements, improvements on development processes and production application security support. 7 Participate as a key member for security incident response activities. 8 Perform other duties as assigned. Requirements Education Required: Bachelors degree or equivalent experience. Preferred: Master's degree and/or LOMA certification, MCSE Required Experience 4+ years of relevant work experience. Experience in application vulnerability assessments, Testing and execution 4+ years of experience in Information Security (Vulnerability Management, Incident Response, install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs). Experience with researching emerging technologies, including commercial, mobile, and Cloud service providers (AWS, Azure) Experience with Cloud Cybersecurity efforts and emerging technology aligned with NIST, SOC2 or other equivalent Frameworks. Outstanding communication, analytical skills and ability to function in a globally diverse work environment. Proficiency in performing risk, business impact, control and vulnerability assessments, and in defining treatment strategies. Experience in system technology security testing (vulnerability scanning and penetration testing). Experience in application technology security testing (white box, black box and code review). Technical Requirements Splunk, Sentinel or other equivalent SEIM technologies Azure, GCP, AWS Palo Alto NGFW, Prisma Preferred experience 5+ years experience in systems and network monitoring technologies and tools 4 or more years experience in designing solutions or applications with programming technologies and tools Experience working with SOAR platforms is a plus. 6 + years of experience with public and hybrid cloud environments. Insurance industry knowledge Preferred technology experience SANS GIAC Thanks, and Regards, Mansi Verma TEK Inspirations LLC | 13573 Tabasco Cat Trail, Frisco, TX 75035 . E: - [email protected] Keywords: information technology Missouri Texas |
| [email protected] View all |
| Tue Nov 07 07:57:00 UTC 2023 |