Cyber Security Analyst
OneByte
Cloud Security Engineer - Incident Response
In this role, you will focus on securing the healthTech platform, responding to security incidents, monitoring and mitigating potential threats using a variety of security tools. The role will also involve maintaining cloud security posture using CSPM tools. You will work with SIEM and SOAR platforms for real-time threat detection, incident response, and automation of security workflows.
This role requires a mix of hands-on cloud security engineering and operational security knowledge, working to safeguard cloud platforms and ensuring regulatory compliance.
In this role you will:
- Monitor, detect, and respond to security incidents using SIEM and SOAR tools.
- Lead incident investigations, conducting in-depth analysis of security events, determining the root cause, and coordinating remediation efforts.
- Develop, update, and manage incident response playbooks and workflows within the SOAR platform to ensure rapid, consistent, and effective responses to various security threats.
- Collaborate with cross-functional teams to resolve security incidents and conduct post-incident reviews to improve overall security posture.
- Continuously monitor and assess the security posture of cloud environments using Cloud Security Posture Management (CSPM) tools to identify misconfigurations, vulnerabilities, and non-compliance.
- Integrate and maintain SIEM solutions to collect, correlate, and analyze security events across cloud infrastructure, identifying anomalies and potential threats.
- Automate security processes through SOAR to improve the efficiency of threat detection, alerting, and incident management.
- Conduct regular log reviews and analysis using cloud native, and other monitoring tools to detect suspicious behavior and anomalies.
- Collaborate with DevOps teams to embed security practices into the CI/CD pipeline, ensuring that security testing is automated and part of the deployment process.
Skills & Requirements:
- 3+ years of experience in cloud security engineering, focusing on AWS environments and incident response.
- Proven experience with a focus in areas such as digital forensics and incident response
- 2+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security
- Strong understanding and hands-on experience with SIEM and SOAR tools for threat detection, incident response, and automation.
- Solid knowledge of network security, cloud security, and encryption principles in a cloud environment.
- Strong problem-solving and analytical skills, with the ability to lead incident investigations and conduct root cause analysis.
- Understanding of compliance requirements such as HIPAA and HITRUST, and experience ensuring cloud environments meet these standards.
- Certifications such as AWS Certified Security – Specialty, CompTIA Security+, or GIAC Certified Incident Handler (GCIH) are a plus.
“So what’s in it for me,” you ask?
We pride ourselves for being a culture-based company buzzing with high-energy. Aside from the enthusiastic environment, you'll enjoy:
- Competitive salary
- Health insurance
- Referral bonuses
- Generous vacation time
- Paid Maternity and Paternity leave
- Work from home days
- Lunch facility within office
- Travel allowance
- Company equipment (laptop, internet device, screens etc)
- Professional development and career growth opportunities
- Awesome team members
If we still have your attention, don't delay, send us your resume!
How to apply
To apply for this job you need to authorize on our website. If you don't have an account yet, please register.
Post a resume