Administer and maintain Identity and Access Management (IAM) processes, including provisioning, de-provisioning, and periodic access reviews across enterprise systems and SaaS platforms.
Support the Vulnerability Management program by conducting regular scans, tracking remediation efforts, and working with engineering and IT teams to resolve identified risks in a timely manner.
Manage and monitor firewall rules and configurations, assist with policy reviews, and ensure alignment with security best practices and compliance requirements.
Investigate and respond to security alerts, escalating incidents as appropriate and contributing to root cause analysis and remediation.
Monitoring cloud environments (AWS, Azure, GCP) for misconfigurations and policy violations
Supporting Cloud Security Posture Management (CSPM) tools
Assisting with securing CI/CD pipelines and DevSecOps practices
Assist in the development and maintenance of security documentation, policies, and procedures.
Supporting SOC 2, PCI, or other compliance frameworks
Support internal and external audit activities by gathering evidence and ensuring controls are operating effectively.

2+ years of experience in an information security or IT security role.
Hands-on experience with Identity and Access Management (IAM) tools and processes.
Working knowledge of vulnerability scanning tools.
Hand-on experience working in Cloud environments (AWS, Azure, GCP).
Familiarity with firewall management and network security principles.
Strong analytical and problem-solving skills with attention to detail.
Ability to communicate clearly with both technical and non-technical stakeholders.
Experience working in a SaaS or cloud-first environment (AWS, Azure, or GCP).
Familiarity with security frameworks such as NIST, PCI, or SOC 2.
Relevant certifications such as CompTIA Security+, AWS Certification, or other equivalent.
Prior experience supporting compliance or audit activities.

Security Analyst

Key skills