Key skills
Information securityCybersecurityCloud securityAWSGoogle CloudMicrosoft AzureSecurity frameworksNISTISO 27001SOC2SIEMVulnerability scanningEndpoint protectionSecurity monitoringNetwork securityEncryptionIdentityaccess managementSecurity certificationsSecurity+GSECCCSPScriptingPythonPowerShellAnalytical skillsAzureLeadershipCommunicationPenetration TestingNetwork SecurityCloud Security
About this role
DoiT is a global technology company that works with cloud-driven organizations to leverage the cloud for business growth and innovation. The Information Security Analyst / Engineer will support security operations, threat monitoring, and vulnerability management across a multi-cloud environment, ensuring the protection of customer data and cloud infrastructure.
Responsibilities:
- Monitor security alerts, incidents, and threats across DoiT's global infrastructure
- Conduct security assessments and vulnerability scans for cloud environments and applications
- Investigate and respond to security incidents, coordinating with relevant teams for remediation
- Maintain and update security documentation, playbooks, and incident response procedures
- Support compliance efforts including SOC2, ISO 27001, and customer security assessments
- Assist with security awareness training and education initiatives across the organization
- Implement and maintain security controls across AWS, Google Cloud, and Microsoft Azure environments
- Configure and monitor cloud security tools including SIEM, CASB, and vulnerability scanners
- Review cloud architecture designs and provide security recommendations
- Support secure configuration management and infrastructure as code practices
- Monitor cloud access patterns and investigate anomalous activities
- Assist with security policy development and implementation
- Support vendor security assessments and due diligence processes
- Maintain security metrics and reporting for leadership and compliance requirements
- Participate in security audits and provide evidence for compliance frameworks
- Help develop and test business continuity and disaster recovery plans
- Work closely with IT Operations team on security-related projects and initiatives
- Provide security guidance to development and engineering teams
- Support procurement processes by reviewing security requirements for new tools and services
- Collaborate with external security consultants and penetration testing teams
- Participate in cross-functional incident response and crisis management activities
Requirements:
- 2-4 years of experience in information security, cybersecurity, or related field
- Experience with cloud security in AWS, Google Cloud, and/or Microsoft Azure environments
- Knowledge of security frameworks and standards (NIST, ISO 27001, SOC2, etc.)
- Experience with security tools such as SIEM, vulnerability scanners, endpoint protection, and security monitoring platforms
- Understanding of network security, encryption, identity and access management, and security best practices
- Familiarity with compliance requirements and audit processes
- Strong analytical and problem-solving skills with attention to detail
- Excellent written and verbal communication skills
- Ability to work effectively in a remote, globally distributed team environment
- Security certifications preferred (Security+, GSEC, CCSP, or equivalent)
- Experience with scripting/automation (Python, PowerShell, etc.) is a plus
- Bachelor's degree in Information Security, Computer Science, or related field preferred