Information Security Analyst / Engineer
Role details
Job location
Tech stack
Job description
This is an exciting opportunity to join DoiT's Information Security team and play a crucial role in protecting our global operations, customer data, and cloud infrastructure. Reporting to the Head of InfoSec, you will be responsible for day-to-day security operations, threat monitoring, vulnerability management, and supporting security initiatives across our multi-cloud environment., Security Operations:
- Monitor security alerts, incidents, and threats across DoiT's global infrastructure
- Conduct security assessments and vulnerability scans for cloud environments and applications
- Investigate and respond to security incidents, coordinating with relevant teams for remediation
- Maintain and update security documentation, playbooks, and incident response procedures
- Support compliance efforts including SOC2, ISO 27001, and customer security assessments
- Assist with security awareness training and education initiatives across the organization
Cloud Security Management:
- Implement and maintain security controls across AWS, Google Cloud, and Microsoft Azure environments
- Configure and monitor cloud security tools including SIEM, CASB, and vulnerability scanners
- Review cloud architecture designs and provide security recommendations
- Support secure configuration management and infrastructure as code practices
- Monitor cloud access patterns and investigate anomalous activities
Governance and Compliance:
- Assist with security policy development and implementation
- Support vendor security assessments and due diligence processes
- Maintain security metrics and reporting for leadership and compliance requirements
- Participate in security audits and provide evidence for compliance frameworks
- Help develop and test business continuity and disaster recovery plans
Collaboration and Support:
- Work closely with IT Operations team on security-related projects and initiatives
- Provide security guidance to development and engineering teams
- Support procurement processes by reviewing security requirements for new tools and services
- Collaborate with external security consultants and penetration testing teams
- Participate in cross-functional incident response and crisis management activities
Requirements
The successful candidate should be highly detail-oriented with a strong security mindset, focused on building robust, scalable security processes. A high degree of collaboration is required, working cross-functionally with IT Operations, Engineering, Sales, and Client Services teams, as well as externally with security vendors and compliance partners., * 2-4 years of experience in information security, cybersecurity, or related field
- Experience with cloud security in AWS, Google Cloud, and/or Microsoft Azure environments
- Knowledge of security frameworks and standards (NIST, ISO 27001, SOC2, etc.)
- Experience with security tools such as SIEM, vulnerability scanners, endpoint protection, and security monitoring platforms
- Understanding of network security, encryption, identity and access management, and security best practices
- Familiarity with compliance requirements and audit processes
- Strong analytical and problem-solving skills with attention to detail
- Excellent written and verbal communication skills
- Ability to work effectively in a remote, globally distributed team environment
- Security certifications preferred (Security+, GSEC, CCSP, or equivalent)
- Experience with scripting/automation (Python, PowerShell, etc.) is a plus
- Bachelor's degree in Information Security, Computer Science, or related field preferred
Are you a Do'er?
Be your truest self. Work on your terms. Make a difference.
We are home to a global team of incredible talent who work remotely and have the flexibility to have a schedule that balances your work and home life. We embrace and support leveling up your skills professionally and personally.
