- Company Name
- Dialogue
- Job Title
- Senior Cybersecurity Analyst, Cloud
- Job Description
-
Job Title: Senior Cybersecurity Analyst, Cloud
Role Summary: Lead the design, implementation, and continuous improvement of security controls across cloud, infrastructure, and application environments. Own incident response, threat intelligence, and risk assessment activities while mentoring peers and shaping the organization’s security strategy.
Expectations:
- Report directly to the CISO and drive critical security initiatives for a healthcare technology platform.
- Partner with engineering on secure CI/CD pipelines, infrastructure-as-code, and container orchestration.
- Maintain up‑to‑date threat models, incident playbooks, and audit evidence.
Key Responsibilities:
1. Design, build, and automate security controls for cloud services (AWS, GCP, Azure, Okta, Auth0, Google Workspace).
2. Integrate security best practices into Kubernetes, Terraform, and CI/CD workflows; automate security and operational tasks.
3. Proactively monitor security telemetry, analyze threats, and produce actionable insights and metrics (KRIs/KPIs).
4. Lead incident response lifecycle: investigation, containment, eradication, recovery, and post‑mortem.
5. Conduct threat‑response drills, continuity exercises, and refine disaster‑recovery plans.
6. Perform vulnerability and risk assessments, maintain risk registers, oversee audits, and evaluate vendor security.
7. Develop and deliver security awareness content; provide guidance to IT and Engineering on compliance and program objectives.
Required Skills:
- 5+ years in security engineering, DevSecOps, or cybersecurity operations with progressive responsibility.
- Expertise in incident response, vulnerability management, network security, and IAM.
- Strong knowledge of Zero‑Trust, NIST CSF, OWASP, MITRE ATT&CK, and SSDLC.
- Hands‑on experience with cloud security (AWS, GCP, Azure), CI/CD, Kubernetes, Terraform.
- Scripting proficiency (Python, Bash) for automation and analysis.
- Ability to communicate in English; French bilingualism regarded as an asset.
Required Education & Certifications:
- Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience).
- Relevant certifications (CISSP, CCSP, CISM, CISA, CRISC, CGEIT, or equivalent) strongly preferred.