Cyber Security Analyst

Cloud Security Engineer - Incident Response

In this role, you will focus on securing the healthTech platform, responding to security incidents, monitoring and mitigating potential threats using a variety of security tools. The role will also involve maintaining cloud security posture using CSPM tools. You will work with SIEM and SOAR platforms for real-time threat detection, incident response, and automation of security workflows.

This role requires a mix of hands-on cloud security engineering and operational security knowledge, working to safeguard cloud platforms and ensuring regulatory compliance.

In this role you will:

• Monitor, detect, and respond to security incidents using SIEM and SOAR tools.
• Lead incident investigations, conducting in-depth analysis of security events, determining the root cause, and coordinating remediation efforts.
• Develop, update, and manage incident response playbooks and workflows within the SOAR platform to ensure rapid, consistent, and effective responses to various security threats.
• Collaborate with cross-functional teams to resolve security incidents and conduct post-incident reviews to improve overall security posture.
• Continuously monitor and assess the security posture of cloud environments using Cloud Security Posture Management (CSPM) tools to identify misconfigurations, vulnerabilities, and non-compliance.
• Integrate and maintain SIEM solutions to collect, correlate, and analyze security events across cloud infrastructure, identifying anomalies and potential threats.
• Automate security processes through SOAR to improve the efficiency of threat detection, alerting, and incident management.
• Conduct regular log reviews and analysis using cloud native, and other monitoring tools to detect suspicious behavior and anomalies.
• Collaborate with DevOps teams to embed security practices into the CI/CD pipeline, ensuring that security testing is automated and part of the deployment process.

Skills & Requirements:

• 3+ years of experience in cloud security engineering, focusing on AWS environments and incident response.
• Proven experience with a focus in areas such as digital forensics and incident response
• 2+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security
• Strong understanding and hands-on experience with SIEM and SOAR tools for threat detection, incident response, and automation.
• Solid knowledge of network security, cloud security, and encryption principles in a cloud environment.
• Strong problem-solving and analytical skills, with the ability to lead incident investigations and conduct root cause analysis.
• Understanding of compliance requirements such as HIPAA and HITRUST, and experience ensuring cloud environments meet these standards.
• Certifications such as AWS Certified Security – Specialty, CompTIA Security+, or GIAC Certified Incident Handler (GCIH) are a plus.

“So what’s in it for me,” you ask?

We pride ourselves for being a culture-based company buzzing with high-energy. Aside from the enthusiastic environment, you'll enjoy:

• Competitive salary
• Health insurance
• Referral bonuses
• Generous vacation time
• Paid Maternity and Paternity leave
• Work from home days
• Lunch facility within office
• Travel allowance
• Company equipment (laptop, internet device, screens etc)
• Professional development and career growth opportunities
• Awesome team members

If we still have your attention, don't delay, send us your resume!