Job Description A Cloud Security Analyst designs, implements, and manages security and compliance solutions using cloud Security services.
This role ensures the protection of an organization's identities, data, applications, and devices across the cloud ecosystem and beyond.
Responsibilities: Design and implement identity and access management solutions using Azure AD Premium P2 Configure and manage Microsoft Defender services for comprehensive threat protection Implement information protection and data loss prevention policies Manage cloud security using Microsoft Defender for Cloud and Microsoft 365 Defender Ensure compliance with regulatory requirements using Microsoft Purview services Monitor and improve the organization's security posture using Microsoft Security Score Conduct security assessments and implement best practices across Microsoft 365 services Respond to security incidents and conduct forensic investigations Stay updated with the latest security threats and Microsoft 365 security features Maintaining security good practice across our Azure cloud environment Qualifications Qualifications Essential: Microsoft 365 Certified: Security Administrator Associate (MS-500) Microsoft Certified: Azure Security Engineer Associate (AZ-500) Security + 3+ years' experience in IT Security, specializing in incident investigation & threat hunting using various tools and techniques. Ability to run an investigation from start to finish, including pivoting between data Additional Information Competencies: In-depth knowledge of Azure and Microsoft 365 Security services and features Strong understanding of identity and access management principles Experience with threat protection, information protection, and compliance management Familiarity with cloud security concepts and best practices Knowledge of relevant compliance standards (e.g., GDPR, HIPAA, ISO 27001) Experience with SIEM/SOAR solutions and security analytics Excellent problem-solving and communication skills Ability to translate complex security concepts for non-technical stakeholders Ability to secure all azure resources