Analyst - Cloud security / Microsoft Defender For cloud

Key Responsibilities/skills:

• Support the implementation and daily operations of

  Cloud Security Posture Management (CSPM)

  including monitoring, configuration reviews, and issue analysis.
• Work with security tools such as

  Microsoft Defender for Cloud (MDC)

  to monitor and improve cloud security posture.
• Hands-on experience on cloud platform such as Microsoft Azure Cloud.
• Perform cloud security assessments, identify misconfigurations, and remediate risks across Azure or GCP environments.
• Perform end-to-end vulnerability management, including identification, prioritization, and remediation of cloud-based risks.
• Conduct regular exposure checks to detect exploitable weaknesses and reduce attack surface across cloud environments.
• Cyber security reviews of cloud-hosted assets, including infrastructure resources, applications and associated configurations.
• Perform or demonstrate familiarity around container security assessments (Kubernetes, Docker, Sandbox) and ensure secure configurations.
• Apply security practices with industry-standard frameworks such as

  CIS Benchmarks

  ,

  NIST, ISO 27001, and CSA CCM.

• Collaborate with cross-functional teams to embed security best practices.
• Stay updated on emerging threats, vulnerabilities, and compliance requirements.
• Develop and maintain security documentation, including review reports and risk assessments.

Technical Skills:

• 24 years of experience in cloud security, with exposure to multi-cloud platforms.
• Solid understanding of

  cloud fundamentals and cloud security principles.

• Hands-on experience with CSPM tools such as Microsoft Defender for Cloud (MDC)

  , familiarity with Wiz and Prisma Cloud are a plus.

• Hands-on experience on cloud platform such as Microsoft Azure Cloud. Experience with GCP Google Cloud Platform is a plus.

• Familiarity with vulnerability scanners (

  Qualys

  , Tenable) and ticketing systems (e.g.,

  ServiceNow), SecOps

  .
• Knowledge around IAM concepts and reviews of least privilege access.
• Understanding of networking protocols, Firewalls, IDS/IPS, NSG, NACL, DDOS, VPN and WAF technologies.
• Knowledge of common security frameworks (

  CIS Benchmarks, NIST, ISO 27001

  , etc.).
• Familiarity with incident response, vulnerability management, and risk assessment in cloud environments.
• Willingness to work in rotational shifts, including occasional 24x7 support as required.

• Mandatory certifications: Anyone.

- SC-900: Microsoft Certified: Security, Compliance, and Identity Fundamentals

- SC-200: Microsoft Certified Security Operations Analyst Associate

- AZ-500: Microsoft Certified: Azure Security Engineer Associate

- ISC2 Certified in Cybersecurity (CC)

- CompTIA Security+ or equivalent.