Lead Information Security Analyst

Only W2

Job Title: Cybersecurity or Information Secuirty Analyst

Location: Charlotte, NC; Chandler, AZ; Phoenix, AZ; Dallas, TX; Irving, TX; San Francisco, CA

Duration: 06-12 months contract

Type: W2

RTO: 3 Days/ week to office (hybrid)

Job Description:

• Client is seeking an experienced Lead Information Security Analyst (Information Security Analyst 4 - Contingent) to join our Cloud Security Delivery Team.

• Be a part of one of the core teams working on client's digital transformation; join our dynamic, diverse and fast-pace team environment where we secure and reduce risk for our Enterprise cloud migration.

• This position will be responsible for executing cloud security control validation, ensuring cloud application workloads, cloud platforms and cloud services adhere to the client's Cloud Control Framework (CCF).

• In addition, the position will support evidence gathering in support of validation of cloud controls.

• Candidates for this role must be knowledgeable of Information Security industry and government standard frameworks, as well as having experience navigating and working with Cloud Service Provider platforms and associated services and controls (Azure and/or Google).

• Client's public cloud program is ramping up volumes of deployments for Azure AKS, ASE, SQL MI, while also introducing additional Database/ETL services on Azure and further upscaling of the use of services on GCP for Data Warehouse/Analytics.

• Based on all of that, Based on all of that, the ideal candidate for this role must have a strong understanding of Azure and Google, overall strong cloud technology and security knowledge and understanding and specific experience or at minimum strong conceptual understand of the cloud platforms and services specified herein.

Day to Day activities of the role include:

• Evaluate cloud app workload, platform and/or service implementations for adherence to the Cloud Control Framework (CCF)

• Identify risks, control gaps and control validation evidence deficiencies to ensure cloud workloads are secure prior to deployment, or validate as a post-deployment QA process

• Gather evidence of control adherence for the cloud platform, cloud application workloads and for cloud services.

• Work with development teams, platform architects and process engineers to gather evidence of control adherence, negotiate as needed to obtain sufficient evidence for successful validation with a high level of due diligence.

Required Skills:

• 5 plus years of Information/Cybersecurity experience

• 2 plus years of intermediate to advanced experience with public cloud computing/hosting (preferably Microsoft Azure and/or Google)

• Demonstrated deep understanding of cloud technology and cloud security concepts, spanning cloud platforms/landing zone, cloud services, Identity and Access Management, boundary protection / network security, cloud storage and data protection

• Strong understanding of and ability to apply knowledge of industry/government standards and frameworks to "real world" business and technical requirements (e.g. NIST, CIS, CSA, FFIEC, ISO)

• Experience with Agile Scrum or Kanban methodologies

• Strong analytical skills, proven critical thinking capabilities and ability to solve complex problems with minimal direct oversight

• Ability to handle multiple, high priority deliverables concurrently

• Ability to communicate confidentially, professionally, and effectively, in both written and verbal formats, with stakeholders and partners

• Intermediate to advanced experience working with Microsoft Office products (e.g. Word, Excel, PowerPoint, Visio, Outlook, MS Teams, SharePoint)

• Must have intermediate to advanced experience working with Microsoft Office products (e.g. Word, Excel, PowerPoint, Visio, Outlook, Teams, SharePoint)

Desired Skills /Skills that would be a "plus":

• Specific experience conduction Cloud implementation/migration control and or security capability validations

• Cloud auditing experience

• Cloud, Risk and/or Cybersecurity certifications (e.g., CISA, CISM, CISSP, CRISC, CCSK)

• Cloud certifications specific to Azure, Google or AWS

• Understanding of information security threats, trends and industry best practices and security tools

• Finance sector security experience or other regulated industry (e.g., utilities, health care, government)

Pay Range: $50- 55/hr. on W2.

#LI-NITISHSARDA

The specific compensation for this position will be determined by a number of factors, including the scope, complexity and location of the role as well as the cost of labor in the market; the skills, education, training, credentials and experience of the candidate; and other conditions of employment. Our full-time consultants have access to benefits including medical, dental, vision and 401K contributions as well as any other PTO, sick leave, and other benefits mandated by appliable state or localities where you reside or work.