Cloud Information Security Analyst/Remote

Job Title: Cloud Information Security Analyst Location: Remote Experience: 3 7 years Role OverviewWe are looking for a Cloud Information Security Analyst to protect and secure cloud-based infrastructure, applications, and data across platforms like Microsoft Azure, Amazon Web Services, or Google Cloud Platform. The role focuses on identifying risks, implementing security controls, and ensuring compliance in cloud environments.Key ResponsibilitiesMonitor and analyze cloud environments for security threats and vulnerabilitiesImplement and manage security controls across cloud platformsConduct risk assessments, vulnerability scans, and penetration testing coordinationEnsure compliance with security standards (ISO 27001, SOC 2, etc.)Manage identity and access controls (IAM, RBAC, MFA)Investigate and respond to security incidents and breachesWork with DevOps and engineering teams to embed security best practices (DevSecOps)Configure and monitor security tools (SIEM, DLP, endpoint protection)Maintain security documentation, policies, and proceduresRequired Skills & QualificationsHands-on experience with at least one cloud platform (Microsoft Azure, Amazon Web Services, or Google Cloud Platform)Strong understanding of cloud security principles and best practicesExperience with identity and access management (IAM)Familiarity with security tools (SIEM, vulnerability scanners, firewalls)Knowledge of networking concepts, encryption, and secure protocolsExperience with incident response and threat analysisUnderstanding of compliance frameworks (ISO 27001, NIST, CIS benchmarks)Preferred QualificationsCertifications such as CEH, CISSP, CCSP, or cloud security certificationsExperience with container and Kubernetes securityFamiliarity with Infrastructure as Code (Terraform, ARM, etc.)Exposure to DevSecOps practices and automationSoft SkillsStrong analytical and problem-solving skillsAttention to detail and risk awarenessEffective communication and reporting skillsNice to HaveExperience with zero-trust architectureKnowledge of threat intelligence and security automation (SOAR)Experience in multi-cloud or hybrid cloud environments