Analyst, Cybersecurity (Control Design)

Job Summary

We are seeking a skilled Cybersecurity Analyst with at least five (5) years of experience to design, review and support the implementation of secure system architectures for both cloud-based and on-premises environments. This role will require a blend of cybersecurity, cloud, network and application design expertise to safeguard our IT infrastructure and ensure compliance with security best practices and regulations.

Key Accountabilities

1. Design and Architecture:
• Design, document and communicate comprehensive security architectures for both cloud and on-premises environments.
• Evaluate and recommend security technologies and tools to address both cloud and on-premises security challenges.
• Define security configuration standards for various environments, including operating systems, serverless infrastructures, cloud infrastructures and network infrastructures.
• Assess an intended system design and evaluate risks associated with design gaps, technical vulnerabilities and other misconfigurations, and provide recommendations.
2. Implementation:
• Oversee the implementation of security solutions or controls in cloud environments (e.g., AWS, Azure, Google Cloud) and on-premises infrastructure.
• Ensure that security standards are effectively applied across all environments, including firewalls, intrusion detection systems, and endpoint protection.
• Execute proper handoff to operational teams.

3. Policy and Compliance:
• Participate in the development of security standards and procedures for both cloud and on-premises environments.
• Ensure architecture meets compliance with relevant industry regulations and standards (e.g., GDPR, PCI-DSS) as well as internal security requirements.
• Keep up with the latest security trends, technologies, and regulatory changes affecting both cloud and on-premises environments.
4. Collaboration and Leadership:
• Collaborate with IT, development, business, and operations teams to integrate security into all aspects of cloud and on-premises projects and initiatives.
• Represent Cybersecurity in various forums such as Change Advisory Board and Architecture Review Board.
• Provide guidance and mentorship to junior security staff, fostering a culture of cooperation and continuous improvement.

Job Requirements

• Bachelor's, DEC or AEC in Cybersecurity, Information Security or a related field.
• At least five (5) years of experience in cybersecurity roles, with demonstrated expertise in both cloud and on-premises security architecture.
• Proven experience with major cloud platforms (e.g., AWS, Azure, GCP) and traditional on-premises security solutions.
• Strong understanding of security frameworks and standards relevant to both cloud and on-premises environments.
• Relevant certifications, such as Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), AWS Certified Security – Specialty, or similar, are highly desirable.
• Excellent problem-solving skills, with the ability to analyze and address complex security issues in diverse environments.
• Ability to work on several projects in parallel.
• Strong documentation skills.
• Strong communication and interpersonal skills, with the ability to interact effectively with technical and non-technical stakeholders.