Cyber Security Analyst

As a Cyber Security Engineer at our company, you will play a crucial role in collaborating with various departments including the Engineering Organization, IT, Information Security, Software Engineers, and DevOps teams to ensure the security of our back-end and front-end services, cloud infrastructure, DevOps pipelines, data pipelines, software, and embedded platforms. Your primary responsibility will be to develop and implement efficient security measures to safeguard our systems against potential threats. You will be expected to stay updated on the latest attack trends and technologies while working closely with your team to counteract threat vectors within our cloud and embedded environments. Key Responsibilities: - Cloud Security Posture Management: Contribute to the planning, development, implementation, and management of security measures across multiple cloud platforms to ensure robust security. - Threat Detection and Analysis: Utilize advanced security tools such as Wiz, BurpSuite, Sumologic, and Sonarqube to identify, analyze, validate, and prevent vulnerabilities from compromising the environment. Conduct regular penetration testing and vulnerability assessments. - Data Analysis and Security Monitoring: Perform comprehensive analysis of security data from various sources including microservice architectures, content distribution networks, data lakes, serverless functions, and databases. Utilize SIEM tools to correlate security events and detect anomalies. - Incident Response and Management: Participate in incident response efforts, conduct root cause analysis, and implement corrective actions to mitigate security breaches. Develop and maintain incident response playbooks. - Supply Chain Security: Assess and mitigate security risks associated with the supply chain, such as open source libraries, to ensure end-to-end security. - Software Security Flaws Mitigation: Identify and rectify software security flaws and misconfigurations to enhance overall security. Conduct code reviews, static/dynamic analysis, and work with languages including Python, C++, C#, JS, and HCL. - Security Solutions Development: Create and implement custom security solutions to reduce reliance on paid services. Develop security automation scripts and integrate security tools into CI/CD pipelines. - Automating Security Test Functions: Establish and execute automated security testing functions to continuously validate security. What we offer: At GlobalLogic, we prioritize a culture of caring, continuous learning and development, interesting and meaningful work, balance and flexibility, and being a high-trust organization. Join us to experience an inclusive culture, opportunities for growth, engaging projects, work-life balance, and a safe, ethical global company. About GlobalLogic: GlobalLogic, a Hitachi Group Company, is a digital engineering partner to leading companies worldwide. With a focus on creating innovative digital products and experiences, we collaborate with clients to transform businesses and redefine industries through intelligent solutions.,