Cloud (AWS/GCP) Security Analyst #235054


Strategic Staffing Solutions


Strategic Staffing Solutions is currently looking for a Cloud (AWS/GCP) Security Analyst  for a contract opportunity with one of our largest clients!

Candidates should be willing to work on our W2 ONLY.

Job Title: Cloud (AWS/GCP) Security Analyst

Job #: 235054

Key Skills: Information/Cybersecurity exp, MS Azure or Google, CCF,CISA,CISM

Role Type: W2 only.

Duration: 6 Months

Location: Chandler, AZ , Charlotte, NC ,Dallas, TX , Irving, TX

Schedule: Onsite-Hybrid

Industry: Banking and Finance Industry

Job Description/Responsibilities:

Our client is seeking an experienced Lead Information Security Analyst (Information Security Analyst 4 – Contingent) to join their Cloud Security Delivery Team. Be a part of one of the core teams working on Client’s’s digital transformation; dynamic, diverse, and fast-paced team environment where we secure and reduce risk for our Enterprise cloud migration.

This position will be responsible for executing cloud security control validation, ensuring cloud application workloads, cloud platforms and cloud services adhere to the CLIENT’S Cloud Control Framework (CCF). In addition, the position will support evidence gathering in support of validation of cloud controls.

Candidates for this role must be knowledgeable of Information Security industry and government standard frameworks, as well as having experience navigating and working with Cloud Service the ideal candidate for this role must have a strong understanding of Azure and Google, overall strong cloud technology and security knowledge and understanding and specific experience or at minimum strong conceptual understanding of the cloud platforms and services specified herein. Day to Day activities of the role include:

  • Evaluate cloud app workload, platform and/or service implementations for adherence to the Cloud Control Framework (CCF)
  • Identify risks, control gaps and control validation evidence deficiencies to ensure cloud workloads are secure prior to deployment or validate as a post-deployment QA process.
  • Gather evidence of control adherence for the cloud platform, cloud application workloads and for cloud services.
  • Work with development teams, platform architects and process engineers to gather evidence of control adherence, negotiate as needed to obtain sufficient evidence for successful validation with a high level of due diligence.

Required skills

  • 5+ years of Information/Cybersecurity experience.
  • 2+ years of intermediate to advanced experience with public cloud computing/hosting (preferably Microsoft Azure and/or Google).
  • Demonstrated deep understanding of cloud technology and cloud security concepts, spanning cloud platforms/landing zone, cloud services, Identity & Access Management, boundary protection / network security, cloud storage and data protection.
  • Strong understanding of and ability to apply knowledge of industry/government standards and frameworks to “real world” business and technical requirements (e.g. NIST, CIS, CSA, FFIEC, ISO)
  • Experience with Agile Scrum or Kanban methodologies.
  • Strong analytical skills, proven critical thinking capabilities and ability to solve complex problems with minimal direct oversight.
  • Ability to handle multiple, high priority deliverables concurrently.
  • Ability to communicate confidentially, professionally, and effectively, in both written and verbal formats, with stakeholders and partners.
  • Intermediate to advanced experience working with Microsoft Office products (e.g. Word, Excel, PowerPoint, Visio, Outlook, MS Teams, SharePoint)
  • Must have intermediate to advanced experience working with Microsoft Office products (e.g. Word, Excel, PowerPoint, Visio, Outlook, Teams, SharePoint)

Desired Skills – Skills that would be a “plus”.

  • Specific experience conduction Cloud implementation/migration control and or security capability validations
  • Cloud auditing experience
  • Cloud, Risk and/or Cybersecurity certifications (e.g., CISA, CISM, CISSP, CRISC, CCSK)
  • Cloud certifications specific to Azure, Google, or AWS
  • Understanding of information security threats, trends and industry best practices and security tools
  • Finance sector security experience or other regulated industry (e.g., utilities, health care, government)

Job ID: JOB-235054
Publish Date: 22 Apr 2024

Tagged as: Cloud (AWS/GCP) Security Analyst #235054