Infosec analyst

We are seeking an Info Sec Analyst with strong governance, risk, and compliance (GRC) expertise to support the design, implementation, and management of secure cloud infrastructure. The role ensures compliance with regulatory requirements, especially PCI DSS and SOC 2, while enhancing the resilience and security of our cloud environments.

Key Responsibilities Monitor and respond to threats: Continuously monitor cloud infrastructures for security alerts and vulnerabilities, conduct risk assessments on vulnerabilities, and ensure that all cloud security alerts are managed. Vulnerability Management: Conduct vulnerability assessments, manage vulnerability scanning technologies, facilitate and/or conduct frequent penetration testing activities, ensure timely remediation of all vulnerabilities according to SLA, and keep all impacted parties updated on remediation activities and timelines. Security Controls & Tooling: Implement and maintain all cloud security tooling, including IAM, ...