Administrator - AWS Security, Cloud Security

Job Summary

Cybersecurity Risk Analyst develops and maintains the cybersecurity strategy, policies, and risk management processes to ensure that the organization effectively secures Chevron’s operations.

Key Responsibilities

1. Provide Technical Support And Solutions By Adhering To Quality Standards, Regulatory Requirements, And Company Policies While Managing Aws Security Configurations And Cisco Asa Firewall Rules.
2. Offer Support For On-Call Escalations By Conducting Thorough Root Cause Analyses Of Issues Related To Aws Security And Cisco Asa, Ensuring Timely Resolution And Documentation.
3. Contribute To Knowledge Base Update And Management By Developing And Maintaining Documentation Related To Aws Security Best Practices And Cisco Asa Configurations, While Also Training New Team Members And Coaching Analysts.
4. Independently Resolve Support Tickets Within The Agreed Sla, Utilizing Aws Security Tools And Cisco Asa Troubleshooting Techniques To Ensure Effective Solutions.
5. Ensure A Positive Customer Experience And High Csat Scores Through First Call Resolution And Minimizing Rejected Resolutions And Reopened Cases By Implementing Proactive Monitoring And Alerting For Aws Security Incidents.

Skill Requirements

Risk Management and Analysis: Demonstrated ability to identify and assess both business risks and technical risks and be able to translate those risks into business language so that they can be understood by the stakeholder community and addressed by an appropriate risk mitigation plan. Has fundamental knowledge of the functions of the NIST Cybersecurity framework (CSF). Knowledge of and experience with Industry Policies, standards, and Controls (e.g., NIST 800- 53, and IEC-62443) and application across network, infrastructure, applications, and databases. Familiarity with risk assessments and ability to provide recommendations and remediation plans to mitigate findings from Risk and Vulnerability Assessments, audits, penetration tests, and architecture reviews.

Other Requirements

Build Relationships: Proven ability to build and maintain trusting relationships across team of teams with functions and organizations, by meeting commitments and performing work with integrity. Ability to expand network and sphere of influence and seek diverse perspectives to drive improvements. 6-8 Years Experience | Work Timings: 01:30 pm - 10:30 pm IST | Immediate Joiners only Description:Role: Risk Analyst This should be a Bangalore candidate The candidates should be working with the vendors. This would be a contract to hire request. Job description (high level summary) Cybersecurity Risk Analyst develops and maintains the cybersecurity strategy, policies, and risk management processes to ensure that the organization effectively secures Chevron’s operations. Key responsibilities (day-to-day tasks, learning and development opportunities) \\r\\n Analyze and priortize cybersecurity risks, key controls and assess appropriate remediation plan, monitor progress of risk prevention and remediation. Follow processes that ensure critical cyber security information reaches Business Units. Identify and addresses gaps, trends, or opportunities to address cybersecurity risk in a specifically assigned area.n Required qualifications Demonstrated experience developing and maintaining the cybersecurity strategy, policies, and risk management processes to ensure that the organization effectively secures operations.n Preferred qualifications Demonstrated experience developing and maintaining the cybersecurity strategy, policies, and risk management processes to ensure that the organization effectively \n Selection criteria 1 \\r\\n Risk Management and Analysis: Demonstrated ability to identify and assess both business risks and technical risks and be able to translate those risks into business language so that they can be understood by the stakeholder community and addressed by an appropriate risk mitigation plan. Has fundamental knowledge of the functions of the NIST Cybersecurity framework (CSF). Knowledge of and experience with Industry Policies, standards, and Controls (e.g., NIST 800- 53, and IEC-62443) and application across network, infrastructure, applications, and databases. Familiarity with risk assessments and ability to provide recommendations and remediation plans to mitigate findings from Risk and Vulnerability Assessments, audits, penetration tests, and architecture reviews. Selection criteria 2Technical Knowledge: Understanding of key technology/data concepts such as access control, confidential data, encryption, data privacy, information management, intellectual property, business continuity, disaster recovery, security scans, and 3rd party/vendor applications. Functional knowledge in IT systems architecture. Good understanding of data security and AI security concepts.Selection criteria 3 Align & Inspire: Strong written and oral communication skills. Demonstrated influential leadership skills and ability to inspire, lead with intent, and work cross-functionally with confidence to align intent and deliverables towards common objectives and key results Selection criteria 4n Build Relationships: Proven ability to build and maintain trusting relationships across team of teams with functions and organizations, by meeting commitments and performing work with integrity. Ability to expand network and sphere of influence and seek diverse perspectives to drive improvements. n6-8 Years Experience | Work Timings: 01:30 pm