Senior Security Analyst

We are looking for an experienced Senior Security Analyst to lead and advance our security operations across cloud environments and data platforms. This role demands deep technical expertise in security operations combined with strong knowledge of Governance, Risk, and Compliance (GRC). You will be instrumental in safeguarding our infrastructure and client data, leading incident response efforts, and maintaining compliance standards like SOC 2 Type II. Collaborating closely with the CTO and cross-functional teams, you will integrate security best practices throughout our products, systems, and processes.

Key Responsibilities:

• Lead and manage security operations, including monitoring, detection, and incident response for internal and client-facing systems.
• Enhance and own SIEM/SOAR capabilities (e.g., Azure Sentinel), including implementation, tuning, and automation.
• Investigate and respond to security incidents such as malware, phishing, and cloud misconfigurations, ensuring prompt remediation.
• Monitor systems, logs, and network traffic for anomalies, threats, and vulnerabilities.
• Conduct vulnerability assessments, penetration testing, and risk analysis.
• Manage and maintain SOC 2 Type II accreditation and support ISO 27001 readiness/audits.
• Administer internal compliance and security platforms (e.g., Drata) to ensure continuous organizational compliance.
• Implement and manage a Trust Portal for enhanced client transparency and security assurance.
• Integrate security into the SDLC and CI/CD pipelines (DevSecOps) by collaborating with Product, Engineering, and IT teams.
• Develop and maintain security documentation, including policies, threat models, and incident reports.
• Lead security audits and coordinate with external auditors and certification bodies.
• Provide expert guidance on security best practices to internal teams and clients.
• Stay updated on emerging threats, tools, and cloud security advancements.

Required Experience & Skills:

• 6–8 years of experience in cybersecurity.
• 3–4+ years of hands-on experience in cloud security, specifically Microsoft Azure.
• Deep expertise in Azure security services (e.g., Azure AD, Sentinel, Microsoft Defender).
• Strong experience implementing and tuning SIEM platforms, with exposure to SOAR automation.
• Proven experience in security operations and incident response in real-world scenarios.
• Solid understanding of GRC frameworks and audit processes (SOC 2, ISO 27001).
• Experience working within or alongside a Security Operations Centre (SOC) environment.
• Strong knowledge of threat detection, vulnerability management, and risk mitigation.

Nice to Have:

• Security certifications (e.g., CISSP, CISM, CISA, CEH).
• Microsoft Azure security certifications (e.g., Azure Security Engineer Associate, AZ-500).
• Experience with DevSecOps, automation, and cloud-native security tooling.
• Familiarity with data protection techniques (encryption, masking, tokenization).
• Experience with third-party risk management and vendor security assessments.
• Exposure to compliance platforms like Drata.

This is a work-from-home position.

Interested candidates can share their CV with sonal.garg@talentcorner.in or WhatsApp on 9726002887, including total experience, current CTC, expected CTC, notice period, reason for change, and current location.