Cloud Security Analyst

As a member of the Cyber Security/Technology Risk Governance function, you will play a crucial role in developing and implementing the Cyber Security strategy and roadmap. Your responsibilities will include: - Being involved in the governance of the Cloud security program for both private and public cloud infrastructure, covering IaaS, PaaS, and SaaS - Conducting Technology Risk Assessments and Security architecture Reviews for on-premises and Cloud environments, and recommending appropriate Security Controls - Developing Technology Security policies and standards - Collaborating with stakeholders from various functions to support the ongoing technology risk/Cyber Security management program - Performing Technology risk audits and providing recommendations to mitigate risks - Proactively assessing risks from emerging technologies and designing adequate controls and processes - Mentoring security experts, providing thought leadership, and advisory - Studying and recommending industry best practices and latest trends for continuous improvement of information security In terms of skills, you should possess: - The ability to establish and enhance Cloud Security governance and management programs, along with knowledge and experience of Cloud Security concepts and implementation - Practical application experience of information/Cyber security best practices - In-depth knowledge of Infrastructure and Application security with a strong foundation in core security areas - Practical security engineering/architecture concepts including network, identity services, application security, encryption, endpoint security, etc. - Experience in planning and conducting Cyber Security Audits - Knowledge of various control and risk management concepts and methodologies - Strong interpersonal skills to influence the leadership team internally and clients externally - Excellent written, communication, and presentation skills - A proactive attitude towards learning and development, with a record of continuous professional development You should have a minimum of 2+ years of experience in Information/Cyber Security and hold a Bachelor's degree in engineering or IT-related field, or equivalent, or an MBA. Additionally, key pre-requisites include certifications such as CISA, CISSP, CCSP, GIAC, and other technology-related certifications. Cloud Security certifications are considered an added advantage, as well as certifications in Security Architecture (SABSA, etc.).,