Key skills
PythonGoAIAWSAzureGCPKubernetesDockerCI/CDCloud Security
About this role
NVIDIA is seeking a Cybersecurity Analyst with deep expertise in incident response, forensics investigation, threat hunting, and proactive cyber defense. This role is ideal for a cybersecurity professional passionate about defending enterprise and product environments against advanced threats, and eager to tackle complex investigations across diverse platforms.
Responsibilities:
- Lead Incident Response efforts for corporate, cloud, and product environments, including investigation, containment, eradication, and recovery
- Perform threat hunting across endpoints, networks, and cloud workloads to proactively identify indicators of compromise, emerging threats, and control gaps
- Conduct cloud incident response for AWS, Azure, and GCP, and other cloud environments including Kubernetes and containerized workloads, performing log analysis, identity compromise investigations, and workload forensics
- Drive product security incident response, collaborating with engineering teams to analyze potential exposure to vulnerabilities, exploits, and security flaws in NVIDIA products
- Perform digital forensics and malware analysis to support investigations and root cause analysis
- Develop and optimize security orchestration and automation playbooks in partnership with Security Engineering to accelerate detection and response
- Build and refine detections and defense strategies based on threat models and attacker behaviors across cloud, identity, endpoint, and product telemetry, using frameworks such as MITRE ATT&CK to map adversary tactics and enhance detection coverage
- Provide guidance to engineering and business teams on secure design and incident handling standards and contribute to security policies, standards, and metrics to continuously improve NVIDIA’s security posture
Requirements:
- Bachelor's degree in Computer Science or related field, or equivalent experience
- 8+ years of hands-on experience in incident response and threat hunting, including cloud environments
- Strong knowledge of cloud security principles, identity and access management, and workload protection
- Experience with product security investigations, vulnerability analysis, and secure coding practices
- Proficiency in forensic analysis, intrusion detection, and threat intelligence
- Advanced knowledge of network analysis, OS internals (Windows/Linux/macOS), and web application security, including the ability to detect abnormal behaviors and assess exploit paths
- Ability to work independently and collaborate effectively across global teams
- Certifications such as GCIH, GCFA, AWS/Azure Security Specialty, CISSP
- Experience with cloud-native security tools (e.g., AWS GuardDuty, Azure Sentinel, GCP Security Command Center)
- Development experience in Python, Go, or similar for building security automation
- Hands-on experience with container security (Docker, Kubernetes), CI/CD pipeline, and AI security
- Advanced knowledge of digital forensics and malware reverse engineering