Cloud Security Analyst 442560
United States - Remote
Experfy Inc
Harvard-incubated Experfy platform enables the pipelining and hiring of external talent at unprecedented speed. Also, career pathing, upskilling, and mentorship of your internal talent.Engineers must have the following:
• 3-5 years of Cyber Security experience
• Familiarity with Web Application Security standards (OWASP, MITRE)
• Experience with application security technologies including SCA/SAST/DAST and the ability to identify false positives and assist with remediation planning
• Previous experience integrating security tools in CI/CD development pipelines
• Excellent verbal and written communications
Preferred candidates should have:
• 5+ years Cybersecurity experience
• Professional certification (CISSP, CCSP, GWAPT, GWEB, AWS SA / Certified Security, etc.)
• 1-3 years working directly with Cloud Infrastructure as code (CFT, TF) in AWS
• Familiarity with ServiceNow VM and GRC modules
• Development of automation and scripting 8-10 years experience.
Position’s Contributions to Work Group:
- AKA: Cloud Security Analyst. The Cloud Operations Security Team supports the Digital development community by providing Administration and SME responsibilities for the DevSecOps tools. Assisting the development teams in identifying and remediating vulnerabilities discovered during the development lifecycle.
- Setting guidelines, auditing, and compliance of supported tools
Requirements
Technical Skills
- Significant knowledge of security best practices for Secure Software Development Lifecycle, vulnerability management, risk remediation
- Basic knowledge of AWS systems, including EC2, IAM, CloudWatch, CloudTrail, Config, Lambda, Security Groups, VPCs, WAF, Guard Duty, Inspector, etc.
- Experience with cloud-based vulnerability management tools (Prisma, Fortify, GitHub Advanced Security)
- Experience extracting pertinent security data from SAST and DAST Tools
- 3-5 years of Cyber Security experience
- Familiarity with Web Application Security standards (OWASP, MITRE)
- Experience with application security technologies including SCA/SAST/DAST and the ability to identify false positives and assist with remediation planning
- Previous experience integrating security tools in CI/CD development pipelines
- Excellent verbal and written communications
Desired Skills
- 5+ years Cybersecurity experience
- Professional certification (CISSP, CCSP, GWAPT, GWEB, AWS SA / Certified Security, etc.)
- 1-3 years working directly with Cloud Infrastructure as code (CFT, TF) in AWS
- Familiarity with ServiceNow VM and GRC modules
- Development of automation and scripting 8-10 years experience.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Automation AWS CCSP CI/CD CISSP Cloud Compliance DAST DevSecOps EC2 GitHub GWAPT IAM Lambda OWASP SAST Scripting Vulnerabilities
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open CEH-related jobs