Cloud Security Senior Analyst (Cloud CyberSecurity Analyst)

Note: this role is a virtual/work from home/remote opportunity

As a Cloud CyberSecurity Analyst you will work closely with the other members of the CyberSecurity team as well as wider Cloud Support teams in both project orientated work and cloud security operations activities. The person in this role will be engaged in a number of operational and some project-based activities, providing security architecture support and guidance, advising on industry standard security best practice, ensuring projects align to the Alight security policies and standards and offering general insight into security principles and their application within Alight. Additionally, the Cloud CyberSecurity Analyst will assist in the wider operational activities including but not limited to Cloud Data Security, SOC1/SOC2 Audits, Client Audits, security certifications and penetration and vulnerability testing.

You will be expected to support management teams during security incident events and be confident and capable of explaining the risk and remediation positions for threats as part of the global security incident management process.

The role will require you to have a technical background. Understanding of cloud services, security technologies, security controls and security best practice would be ideal but a willingness and desire to expand these security skills and knowledge within the technical security team is mandatory.

The ideal candidate will need to be proficient in security capabilities, particularly in a cloud setting, and wider general security best practice. Where up skilling is required, this will be provided through both peer knowledge share and explicit training.

The nature of the role and the distribution of team members requires the individual to be a self- starter, focused, motivated, flexible with good communication skills.

Duties and Responsibilities

• Support the delivery of services with respect to security offerings related to cloud security, including security governance (security policies and procedures), security strategy (security planning), risk (risk assessments and management), cloud data protection (classification, encryption, tokenization), cloud-based identity and access management, technology/provider-specific cloud architecture (AWS, & Azure) and monitoring/analytics for and in the cloud
• Assists with analyzing vulnerability findings to manage remediation actions to closure.
• Develops and Maintains Plan of Actions and Milestones (POA&M)
• Coordinates with appropriate teams to provide vulnerability management information
• Ability to map security controls to compliance requirements for cloud environments
• Conduct cloud security strategy, readiness and discovery assessments; be familiar with cloud security frameworks, compliance requirements and security operations
• Ability to quickly ramp up on new cloud security technologies and translate traditional and other cloud-related experience
• Work with the Cloud Operations Management and colleagues on a day-to-day basis to ensure the highest levels of security and control are maintained throughout Alight
• Ensure all Security Incidents and Security Events are managed through the Security Incident Management process and provide direct communications for all critical items requiring the attention of senior management through the Head of CyberSecurity Operations.
• Configure and execute vulnerabilities assessment activities to ensure that all vulnerabilities are discovered, prioritized and assigned to appropriate remediation teams. Provide guidance to teams with regard to the vulnerability management program.
• Ensure regular / recurring tasks and activities are managed efficiently and within defined time constraints.
• Work with technical and business units across the organization to develop and implement security standards, policies and practices to make continual improvements and increase the effectiveness of the security program.
• Work with technical and business units across the organization as a security reference point, offering advice, support and guidance on all a wide range of security orientated issues.
• Assist in documenting and updating as appropriate, security and risk policies, standards and processes ensuring these, and the risk register are up to date and regularly reviewed.
• Maintain a positive, professional environment in full compliance with applicable laws, regulations, policies, and procedures; ensure that staff members understand and comply with applicable laws, regulations, policies and procedures. Write and publish risk reports to provide situational awareness and communicate risks to management.

Skills and Experience

• Graduate or higher degree holder in relevant information security or a related technical discipline; or the equivalent combination of education; professional training or work experience.
• Some knowledge of ISO27001 and SSAE/18 standards and controls coupled with GDPR working knowledge would be a plus.
• Good understanding of Cloud concepts, architectural principles and experience in operating within a cloud environment
• Technical awareness of (and ideally experience in) SIEM, IDS / IPS, DLP, DDoS, Data classifications, vulnerability management and penetration testing, with any forensics experience a plus
• Maintain a good technical understanding of today's security marketplace, the threat landscape and how vendors are responding to the changing face of data security
• Confident but reassuring customer-facing style and excellent organizational skills.
• Good team player skills coupled with good analytical skills.
• Self-motivated learner with drive to investigate problems with minimal instruction and supervision.
• Advanced English oral and written communication skills.

Preferred Qualifications

• Experience with cloud data protection (gateway or aaS) for IaaS, PaaS or SaaS.
• Experience with cloud based identity and access management (hosted or aaS) for IaaS, PaaS or SaaS.
• Experience with cloud based Firewall
• Experience with cloud logging, monitoring, analytics or big data.
• Experience with Cloud Security vendors in the IAM, Data Protection, Monitoring and IaaS provider specific space
• Tenable Nessus/ACAS Vulnerability Scanning and Analysis

Background Check Required

By applying for a position with Alight, you understand that, should you be made an offer, it will be contingent on your undergoing and successfully completing a background check consistent with Alight's employment policies. Background checks may include some or all of the following based on the nature of the position: SSN/SIN validation, education verification, employment verification, and criminal check, search against global sanctions and government watch lists, fingerprint verification, credit check, and/or drug test. You will be notified during the hiring process which checks are required by the position.