Sr. Security Analyst to assist in day-to-day security operations activities, implement security

Our valued Healthcare client is seeking a Sr. Security Analyst to assist in day-to-day security operations activities, implement security enhancements and improvements in AWS cloud environment 

1 year contract (100% remote)

Responsibilities:

• Configure, update, implement, monitor, assess, and respond to alerts, recommendations, and findings reported by AWS detective controls such as AWS GuardDuty, Security Hub, Trusted Advisor, IAM Access Analyzer, CloudWatch Anomaly Detection, etc.
• Establish organizational security and compliance guardrails within the cloud environment using services such as AWS Config, Service Control Policies, Tag Policies, Permission Boundaries, AWS Firewall Manager, etc.
• Engage in root-cause analysis using tools such as Amazon Detective, AWS CloudTrail, CloudWatch Logs Insights, and VPC Flow Logs
• Assist in operations automation for security-related tasks such as patch management, building EC2 images, and container image scanning.
• Manage and improve network access control in AWS using a third-party firewall
• Integrate and collect AWS logs and events into Splunk using AWS CloudTrail, SQS, SNS, and the Splunk App for AWS.
• Acquire visibility and insight of the cloud environment and of services through the use and configuration of Splunk.
• Ensure that all cloud solutions adhere to enterprise cloud security and compliance controls using frameworks such as the AWS Well-Architected Security Pillar
• Develop processes, in the form of playbooks and runbooks, for incident response affecting the cloud environment as per security incident protocols.
• Identify gaps and assist in improving AD/Azure AD, M365, MS Defender, ZScalar security posture.
• Lead application security improvement initiatives including but not limited to SAST, DAST and other security best practices.
• Assist with the development, implementation and maintenance of ISMS policies and procedures.

Must have skills:

• 4+ years experience Implementing security in an AWS cloud environment
• 4+ years experience Architecting enterprise systems and solutions with AWS
• 4+ years experience using/configuring CloudFormation, IAM, EC2/EBS, S3, ALB/ELB, Security Groups, Lambda, AWS Config, Secrets Manager
• 3+ years experience with firewall administration
• 3+ years experience with Splunk SPL
• 5+ years experience Scripting skills (ex: Python, PowerShell, Bash)
• 3+ years experience automating AWS findings and remediations
• 4+ years experience with implementation of security best practices in AD/Azure AD, M365, ZScalar and MS Defender.