Security Analyst – Risk, Applications & Infrastructure

Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field (or equivalent experience). Understanding of cloud platforms (AWS, Azure) and cloud security best practices. Experience with vulnerability scanning and assessment tools for applications and infrastructure. Familiarity with security frameworks and compliance standards (NIST, ISO 27001, SOC 2, CIS Benchmarks). Proficiency in security testing, penetration testing, and vulnerability analysis. Knowledge of security monitoring tools, intrusion detection systems, and SIEM solutions. Ability to assess security risks, prioritize vulnerabilities, and recommend remediations. Experience conducting security audits and control evaluations. Strong problem-solving skills. Ability to work collaboratively in cross-functional teams. Effective written and verbal communication skills.

Identify, assess, and mitigate security risks related to IT applications and infrastructure. Develop and implement risk management frameworks. Evaluate IT applications and infrastructure against security control frameworks. Conduct internal security audits. Track vulnerability remediation efforts. Monitor security tools and analyze logs. Assist with security incident response. Act as a Security Champion, training teams on security best practices. Support the integration of security tools into CI/CD pipelines. Generate reports for management on vulnerability status and security incidents.