Cloud Cybersecurity Analyst

About The Position

Requirements

• Strong understanding of cloud platforms: AWS, Azure
• Hands-on experience with cloud security tools and native.
• Expert in Security configurations baseline, Application security and vulnerabilities
• Understanding of Identity & Access Management (IAM)
• Understanding of Network security (WAF, security groups, firewalls, zero trust)
• Encryption, key management, and certificate management
• Understanding of Logging, monitoring, and SIEM tools
• Understanding of Container and Kubernetes security
• Experience with cloud security posture tools (CSPM), workload protection (CWPP), and vulnerability scanners.
• Knowledge of DevSecOps, CI/CD pipelines, and Infrastructure-as-Code (Terraform, CloudFormation, ARM).
• Experience with scripting languages (Python, PowerShell, Bash).
• Familiarity with common frameworks and standards: NIST CSF, NIST 800-53 CIS Benchmarks ISO 27001 FedRAMP
• Understanding of security incident response methodologies.
• Strong analytical skills and ability to interpret complex cloud environments.
• Bachelor’s degree in Computer Science or related field or equivalent education and related training
• Five years of experience in Cybersecurity or related work
• Broad knowledge of general IT with a focus area in two or more of the following areas: operating systems, networking, computer programing, web development or database administration
• Demonstrated advanced knowledge of cyber security concepts with a focus area in two or more of the following: attack surface management, Security Operations Center (SOC) operations, Intrusion Detection/Intrusion Prevention Systems (IDS/IPS), Security Information and Event Management (SIEM) use, threats (including Advanced Persistent Threat (APT), insider), vulnerabilities, and exploits; incident response, investigations and remediation

Nice To Haves

• AWS certifications (Solutions Architect, DevOps Engineer, etc.).
• Experience with AI/ML tools: AWS Bedrock Streamlit Claude Sonnet Vector Databases
• Familiarity with generative AI integrations.

Responsibilities

• Conduct security assessments and configuration reviews for cloud environments (AWS/Azure/GCP).
• Perform vulnerability scanning, remediation coordination, and risk analysis for cloud workloads and applications.
• Implement and maintain cloud security tools as needed
• Assist with develop and enforce cloud security standards, policies, and best practices.
• Assist in secure architecture design for new cloud applications and services.
• Support compliance with cloud security framework.
• Collaborate with DevOps teams to integrate security into CI/CD pipelines (DevSecOps).
• Stay current with emerging cloud threats, vulnerabilities, and security technologies.
• Provide subject-matter expertise during cloud migrations and transformation initiatives.

Benefits

• All regular teammates (not temporary or contingent workers) working 20 hours or more per week are eligible for benefits, though eligibility for specific benefits may be determined by the division of Truist offering the position.
• Truist offers medical, dental, vision, life insurance, disability, accidental death and dismemberment, tax-preferred savings accounts, and a 401k plan to teammates.
• Teammates also receive no less than 10 days of vacation (prorated based on date of hire and by full-time or part-time status) during their first year of employment, along with 10 sick days (also prorated), and paid holidays.
• For more details on Truist’s generous benefit plans, please visit our Benefits site.
• Depending on the position and division, this job may also be eligible for Truist’s defined benefit pension plan, restricted stock units, and/or a deferred compensation plan.
• As you advance through the hiring process, you will also learn more about the specific benefits available for any non-temporary position for which you apply, based on full-time or part-time status, position, and division of work.