Cyber Security Analyst
Pune, IN
Avaya
Build great experiences for your brand with Avaya's suite of cloud-based solutions designed to suit the specific needs of your team.About Avaya
Avaya is a global leader in digital communications products, solutions, and services for businesses of all sizes delivering most of its technology through software and services. We enable organizations around the globe to succeed by creating intelligent communications experiences for our clients, their employees, and their customers. Every minute of every day, we power positive and productive interactions that drive customer loyalty, team collaboration and business success.
Were focused on Innovation without Disruption, removing barriers, and placing our customers best interests at the forefront of everything we do. The world is evolving in technologically exciting ways, and we strive to lead revolutions in how businesses leverage the cloud, artificial intelligence, automation, and mobility.
We arent just focused on customer experience, we also prioritise the employee experience, and we work hard to engage and empower our people throughout their career with us. Were seeking the best diverse talent to shape and transform how the world connects. Find out more at Careers at Avaya
Job Information
Job Code: 00192760
Job Family: Information Technology
Job Function: Information Security
Short Description
ABOUT THE OPPORTUNITY
What could you experience and get involved with?
The Avaya Risk and Compliance (ARC) Team is responsible for analyzing and providing recommendations for the resolution of cybersecurity risk at Avaya. Our mission is to enable Avaya to understand, manage, and reduce cybersecurity risk.
The ARC Team resides in the Avaya CISO Organization within the Avaya Global IT organization.
The ARC Team conducts regular risk assessments for regulated and non-regulated customer and Avaya corporate environments and provides internal Avaya engineering and operations teams with detailed risk analysis and mitigation recommendations. Additionally, the Team monitors the remediation activities for issues identified during risk assessments.
On a day-to-day basis, you will:
- Partner with Avaya Product, Operations, Compliance, IT, and Engineering Teams to gather information and data on Avaya customer environments, discuss your analysis and recommendations for cybersecurity risk mitigation, and monitor remediation activities for Avaya customer environments.
- Respond to questions and requests for additional information from various Avaya Teams involved with compliance and management of Avaya customer environments.
- Attend internal ARC Team meetings, as well as meetings with various Avaya Teams to collaborate on cybersecurity risk analysis and mitigation and process improvement.
- Conduct research on emerging cybersecurity threats/risks and appropriate risk mitigation for cloud computing environments.
- Hard & Technical Skills (desired):
- Cloud Computing Fundamentals:
- Understanding of cloud service models (IaaS, PaaS, SaaS).
- Familiarity with cloud deployment models (public, private, hybrid, and multi-cloud).
- Knowledge of leading cloud service providers (AWS, Azure, Google Cloud).
- Security & Compliance:
- Understanding of cloud security principles and best practices.
- Knowledge of encryption, access control, and identity management in cloud environments.
- Familiarity with compliance standards and regulations (e.g., GDPR, HIPAA, PCI-DSS, SOC 2, NIST 800-53).
- Networking & Infrastructure:
- Knowledge of virtual networks, VPNs, and firewalls in a cloud context.
- Understanding of cloud storage solutions and data lifecycle management.
- Familiarity with containerization (Docker, Kubernetes) and orchestration tools.
- Risk Management Frameworks:
- Experience with risk assessment methodologies (e.g., ISO 31000, NIST SP 800-30).
- Ability to perform threat modeling and vulnerability assessments (e.g., Mitre ATT&CK).
- Cloud Computing Fundamentals:
- Qualifications & Certifications (desired):
- Certified Information Systems Security Professional (CISSP)
- Certified Cloud Security Professional (CCSP)
- AWS Certified Security – Specialty
- Microsoft Certified: Azure Security Engineer Associate
- Google Cloud Professional Cloud Security Engineer
Experience
3 - 6 Years of ExperienceEducation
Bachelor degree or equivalent experiencePreferred Certifications
Footer
Avaya is an Equal Opportunity employer and a U.S. Federal Contractor. Our commitment to equality is a core value of Avaya. All qualified applicants and employees receive equal treatment without consideration for race, religion, sex, age, sexual orientation, gender identity, national origin, disability, status as a protected veteran or any other protected characteristic. In general, positions at Avaya require the ability to communicate and use office technology effectively. Physical requirements may vary by assigned work location. This job brief/description is subject to change. Nothing in this job description restricts Avaya right to alter the duties and responsibilities of this position at any time for any reason. You may also review the Avaya Global Privacy Policy (accessible at https://www.avaya.com/en/privacy/policy/) and applicable Privacy Statement relevant to this job posting (accessible at https://www.avaya.com/en/documents/info-applicants.pdf).* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Artificial Intelligence Automation AWS Azure CCSP CISO CISSP Cloud Compliance Docker Encryption Firewalls GCP GDPR HIPAA IaaS Kubernetes MITRE ATT&CK NIST NIST 800-53 PaaS Privacy Risk analysis Risk assessment Risk management SaaS SOC SOC 2 VPN
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Security Operations Engineer jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Consultant jobs
- Open Senior Information Security Analyst jobs
- Open IT Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information System Security Officer jobs
- Open Information Security Architect jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open Network security-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open PowerShell-related jobs