Exposure Intelligence Analyst – Cloud Platforms (AWS / Azure / GCP / Cloud Posture)
About The Position
The team operates within a newly established Exposure Management function in the broader cybersecurity organization, focused on modernizing how the enterprise identifies, prioritizes, and mitigates security vulnerabilities shifting from traditional patch approaches to a more strategic focus on true business risk and exploitability. Individual Contributor/ Lead Consultant roles are designed to bring in deep domain expertise (network, endpoint, cloud, identity, infrastructure, etc.) to bridge the gap between security insights and practical remediation strategies. The Exposure Intelligence Analyst – Cloud Platforms is the SME responsible for identifying and prioritizing exposure risk across cloud services (AWS, Azure, GCP), including cloud IAM, posture misconfigurations, insecure architectures, and cloud-native control gaps. The role applies CTEM principles to identify exploitable conditions and collaborate with cloud engineering teams to drive rapid and durable exposure reduction. Help secure modern cloud environments by identifying exploitable misconfigurations and attack paths across AWS, Azure, and GCP, using AI‑enhanced insights to prioritize and remediate the exposures that matter most.
Requirements
- 3+ years in cloud security, cloud engineering, security operations, or exposure management.
- Experience with at least one major cloud provider (AWS/Azure/GCP) and cloud security fundamentals.
- Ability to translate technical cloud findings into business risk prioritization.
Nice To Haves
- Cloud posture management and architecture security
- Hands-on experience with cloud posture management, cloud IAM security, and cloud logging/telemetry.
- Experience evaluating cloud attack paths and privilege escalation scenarios.
- Scripting/query skills for validation (Python/KQL/SQL).
Responsibilities
- Correlate vulnerability and posture signals into actionable exposure intelligence.
- Identify attack paths spanning cloud control planes, identity privileges, and data access pathways.
- Create clear prioritization and remediation guidance; track closure outcomes.
- Own SME coverage for cloud exposure: IAM misconfigurations, excessive privileges, insecure storage, network exposure, workload security, and posture drift.
- Identify systemic patterns: role sprawl, weak guardrails, misconfigured service endpoints, risky trust relationships, insecure defaults.
- Partner with cloud platform teams to validate fixes and reduce repeated exposure creation.
Benefits
- Comprehensive technology setup, including a laptop, monitors, headset, keyboard, and mouse.
- Monthly connectivity reimbursement to help offset internet costs for eligible remote employees.
- Opportunity to explore ideas and feel proud of the work you do.
- Environment that fosters innovative thinking.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
