Job
Description
About the Role We are looking for a skilled Application & Cloud Security Analyst to join our security team. In this role, you will help secure our applications, infrastructure, and cloud environments, leveraging your expertise in Cloud Security Posture Management (CSPM), Cloud Workload Protection Platform (CWPP), Web Application Firewalls (WAF), and Dynamic Application Security Testing (DAST). You will play a crucial role in identifying, mitigating, and managing security risks, while also supporting secure configurations and monitoring for critical cloud and application environments. Key Responsibilities Application Security: Conduct regular DAST and SAST (Static Application Security Testing) scans, analyze vulnerabilities, and work with development teams for remediation. Implement and manage Web Application Firewalls (WAF) to protect against application layer threats. Perform secure code reviews and application security assessments to identify potential security risks. Cloud Security: Manage and monitor Cloud Security Posture Management (CSPM) solutions to ensure compliance with cloud security standards and identify misconfigurations. Implement and maintain Cloud Workload Protection Platforms (CWPP) to secure workloads across multi-cloud environments. Conduct regular security assessments on cloud services and configurations to enforce security best practices. Infrastructure Security: Work with IT teams to enforce secure configurations for infrastructure components and monitor for any deviations. Implement and support endpoint security solutions, firewalls, and intrusion detection systems, EDR, MDR, SIEM, etc Participate in the design and review of network security architecture, ensuring infrastructure resilience and security. Email Security: Implement and maintain email security protocols, including DMARC, SPF, and DKIM. Monitor email security tools and policies to prevent phishing, spoofing, and spam. Conduct regular assessments to ensure the integrity and security of email communication. Risk Assessment and Vulnerability Management: Conduct regular vulnerability scans and risk assessments on applications, infrastructure, and cloud environments. Analyze findings and work with respective teams to prioritize, mitigate, and remediate vulnerabilities. Keep security tools, configurations, and patches up-to-date across systems to minimize exposure. Qualifications Education: Bachelors degree in Computer Science, Cybersecurity, or a related field. Experience: 2-4 years of experience in Application Security, Cloud Security, or Infrastructure Security. Certifications: Relevant security certifications (e.g., Certified Cloud Security Professional (CCSP), AWS Security Specialty, CEH, CompTIA Security+) are a plus. Skills and Competencies Proficient in application security practices, including DAST, WAF configuration, and vulnerability analysis. Hands-on experience with cloud security tools and solutions, particularly CSPM and CWPP. Familiarity with cloud environments (e.g., AWS, Azure, GCP) and their security configurations. Strong understanding of email security protocols such as DMARC, SPF, and DKIM. Knowledge of industry standards and frameworks (e.g., OWASP, CIS Benchmarks, NIST). Excellent problem-solving, analytical, and communication skills.
