Cloud Security Analyst

Location: Bangalore (Hybrid, 2 days from client’s location) Experience: 6 - 10 Years About the Role: We are seeking a Cloud Security Analyst with expertise in securing cloud platforms, implementing DevSecOps practices, and managing access controls. The ideal candidate will play a key role in enhancing security posture, monitoring threats, and ensuring compliance across Azure, AWS, and Microsoft 365 (M365) environments. Key Responsibilities:

• Cloud Security Expertise – Secure cloud platforms, including Azure, AWS, and M365 , ensuring compliance and best practices.
• DevSecOps Implementation – Integrate security into DevOps pipelines, ensuring security automation and compliance within CI/CD workflows.
• Security Monitoring & Threat Detection – Utilize SIEM (Security Information and Event Management), IDS/IPS (Intrusion Detection/Prevention Systems), and firewalls to monitor, detect, and respond to threats.
• Access Control & Identity Management – Manage Azure Active Directory (Azure AD) , enforce admin consent policies , and oversee access control mechanisms.
• Security Audits & Compliance – Conduct security assessments, audits, and reviews to ensure cloud configurations adhere to industry standards.
• Incident Response & Risk Mitigation – Analyze security incidents, investigate potential threats, and implement remediation plans.
• Configuration & Policy Management – Oversee cloud security configurations, review user requests, and implement access reviews within Azure environments.

• Strong expertise in securing Azure, AWS, and M365 environments.
• Hands-on experience in SIEM tools, IDS/IPS solutions, and firewall management .
• Knowledge of DevSecOps practices and security automation within CI/CD pipelines.
• Experience in Azure Active Directory (Azure AD) administration and access control policies .
• Ability to review, configure, and enforce security controls across cloud environments.
• Strong understanding of cloud compliance frameworks and security best practices.
• Experience in security incident detection, analysis, and remediation .
• Familiarity with role-based access control (RBAC), least privilege principles, and admin consent workflows .

• Certifications such as Azure Security Engineer Associate, AWS Security Specialty, or CISSP .
• Experience working with cloud security posture management (CSPM) tools .
• Hands-on experience with compliance frameworks like ISO 27001, NIST, or SOC 2.