Cloud Security Analyst

• Monitor cloud environments for anomalous activity, security breaches using SIEM, CSPM, and native cloud security tools.
• Act as first responder to security alerts, investigating events across cloud workloads, containers, identities, and APIs.
• Triage and categorize security incidents
• Perform forensic analysis on affected cloud assets and log sources
• Coordinate and execute incident response plans for cloud-specific threats
• Document root cause analysis (RCA) and lessons learned from incidents.
• Continuously improve cloud-specific playbooks and incident handling procedures.
• Develop and tune detection rules, alert thresholds, and correlation logic in SIEM or XDR platforms.

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or a related field.
• 2–5 years of experience in cybersecurity, with at least 2+ years in a cloud security role with proven experience in incident response.
• Proficiency with cloud-native services
• Hands-on experience with cloud platforms
• Experience with SIEM and log management tools
• Experience scripting or automating tasks (e.g., Python, PowerShell, Bash, Terraform).
• Familiarity with EDR/XDR and forensic tools.
• Strong understanding of incident lifecycle
• Knowledge of MITRE ATT&CK Cloud Matrix, kill chain, and threat modeling.

• AWS Certified Security – Specialty
• Azure Security Engineer Associate
• GIAC Certified Incident Handler (GCIH)
• Certified Cloud Security Professional (CCSP)

• Strong analytical and problem-solving abilities.
• Excellent verbal and written communication.
• Ability to work independently and collaboratively across teams.
• Strong attention to detail and process-oriented mindset.

Brenntag