Overview
We’re working with a leading financial services business committed to maintaining the highest standards of data protection and integrity across its cloud environments. They are seeking a dedicated Senior Information Security Analyst to focus on Cloud Security GRC.
In this role, you’ll lead cloud risk assessments, enforce security policies and standards, and oversee control assurance across both AWS and Azure. You’ll play a key role in ensuring compliance with frameworks such as NIST, PCI-DSS, SWIFT, and GDPR, while driving continuous improvement across the cloud security landscape.
Responsibilities
* Lead Cloud risk assessments and ensure compliance with internal cloud security policies.
* Support audits, remediation, and incident analysis for cloud-based assets.
* Oversee the AWS SRC workstream and drive best practices using the AWS Well-Architected Framework.
* Enhance security posture using tools such as AWS Audit Manager, Security Hub, Macie, Wiz, Microsoft Compliance Portal/Purview, AIP, and Azure Security Centre.
* Evaluate and strengthen controls aligned to frameworks including NIST, ISO 27001, and CSA CCM.
Qualifications
* Proven experience in Information Security GRC, ideally within financial services.
* Strong technical knowledge of AWS cloud environments.
* Familiarity with Terraform, GitHub/GitOps, CI/CD, and DevSecOps principles.
* Certifications such as AWS Cloud Practitioner, CCSP, CISSP, or CRISC are advantageous.
Please apply if you are interested in the role.
Note: This description reflects the current opportunity and does not include non-essential boilerplate or site-specific notices.
#J-18808-Ljbffr