Key skills
Incident ResponseThreat HuntingCloud SecurityDigital ForensicsVulnerability AnalysisSecurity AutomationNetwork AnalysisMalware AnalysisSecure CodingCloud-native Security ToolsPython DevelopmentContainer SecurityCollaborationPythonGoAIAWSAzureGCPKubernetesDockerCI/CD
About this role
NVIDIA is seeking a Cybersecurity Analyst with deep expertise in incident response and proactive cyber defense. This role involves leading efforts to detect, analyze, and respond to sophisticated attacks targeting NVIDIA’s corporate, cloud, and product ecosystems.
Responsibilities:
- Lead Incident Response efforts for corporate, cloud, and product environments, including investigation, containment, eradication, and recovery
- Perform threat hunting across endpoints, networks, and cloud workloads to proactively identify indicators of compromise, emerging threats, and control gaps
- Conduct cloud incident response for AWS, Azure, and GCP, and other cloud environments including Kubernetes and containerized workloads, performing log analysis, identity compromise investigations, and workload forensics
- Drive product security incident response, collaborating with engineering teams to analyze potential exposure to vulnerabilities, exploits, and security flaws in NVIDIA products
- Perform digital forensics and malware analysis to support investigations and root cause analysis
- Develop and optimize security orchestration and automation playbooks in partnership with Security Engineering to accelerate detection and response
- Build and refine detections and defense strategies based on threat models and attacker behaviors across cloud, identity, endpoint, and product telemetry, using frameworks such as MITRE ATT&CK to map adversary tactics and enhance detection coverage
- Provide guidance to engineering and business teams on secure design and incident handling standards and contribute to security policies, standards, and metrics to continuously improve NVIDIA’s security posture
Requirements:
- Bachelor's degree in Computer Science or related field, or equivalent experience
- 8+ years of hands-on experience in incident response and threat hunting, including cloud environments
- Strong knowledge of cloud security principles, identity and access management, and workload protection
- Experience with product security investigations, vulnerability analysis, and secure coding practices
- Proficiency in forensic analysis, intrusion detection, and threat intelligence
- Advanced knowledge of network analysis, OS internals (Windows/Linux/macOS), and web application security, including the ability to detect abnormal behaviors and assess exploit paths
- Ability to work independently and collaborate effectively across global teams
- Certifications such as GCIH, GCFA, AWS/Azure Security Specialty, CISSP
- Experience with cloud-native security tools (e.g., AWS GuardDuty, Azure Sentinel, GCP Security Command Center)
- Development experience in Python, Go, or similar for building security automation
- Hands-on experience with container security (Docker, Kubernetes), CI/CD pipeline, and AI security
- Advanced knowledge of digital forensics and malware reverse engineering