Cloud Security Analyst

Cloud Security Analyst

Whitehall Resources are currently looking for a Cloud Security Analyst.

This role will be Inside of IR35, so you will be required to use an FCSA Accredited Umbrella Company.

Key Requirements:

- We are seeking a Cloud Security Analyst with hands-on experience deploying and managing Cloud-Native Application Protection Platforms (CNAPP) across multi-cloud environments.
- The ideal candidate will be responsible for implementing and maintaining advanced cloud security controls, ensuring compliance, and enabling Real Time threat detection across AWS, Azure, and GCP.
- This is a critical role that bridges cloud operations, DevSecOps, and security architecture-helping us strengthen our security posture in an evolving cloud-native ecosystem.

Key Responsibilities:

- Deploy, configure, and manage a CNAPP solution across AWS, Azure, and GCP.
- Implement CSPM, CWPP, CIEM, DSPM, and IaC scanning modules within the CNAPP platform.
- Continuously monitor workloads, containers, APIs, and serverless functions for threats and misconfigurations.
- Investigate and respond to runtime security incidents using CNAPP and integrated SIEM/SOAR platforms.
- Partner with DevOps and Cloud Engineering teams to embed CNAPP into CI/CD pipelines.
- Track and enforce compliance with frameworks such as CIS, NIST, ISO 27001, HIPAA, and PCI-DSS.
- Develop dashboards and reporting for cloud security posture and incident metrics.
- Reduce IAM risks by analysing multi-cloud entitlements and implementing least privilege access.
- Conduct periodic posture assessments and lead remediation initiatives.
- Stay ahead of evolving threats, vulnerabilities, and cloud-native security practices.

Key Experience:

- 3-5+ years of experience in cloud security operations, analysis, or engineering.
- Proven expertise in AWS, Azure, and GCP security controls (IAM, KMS, networking, logging, monitoring).
- Hands-on experience deploying and managing a CNAPP vendor (eg,Wiz, Upwind, Lacework, Sweet Security, Microsoft Defender for Cloud, Check Point CloudGuard). Preferred candidate has Wiz experience.
- Strong understanding of CSPM, CWPP, CIEM, DSPM, and IaC security.
- Familiarity with Kubernetes security (RBAC, network policies, admission controllers).
- Experience with threat detection and incident response in multi-cloud environments.
- Working knowledge of SIEM/SOAR integrations (Splunk, Sentinel, Chronicle, etc.).
- Knowledge of compliance frameworks and ability to produce audit-ready reports.

Nice-to-Have Skills:

- Certifications: CCSP, AWS Security Specialty, Azure Security Engineer Associate, GCP Professional Cloud Security Engineer.
- Experience with eBPF-based runtime monitoring or advanced workload security.
- Exposure to API security and identity threat detection in cloud environments.
- Familiarity with Zero Trust Architecture and modern DevSecOps practices.

All of our opportunities require that applicants are eligible to work in the specified country/location, unless otherwise stated in the job description.

Whitehall Resources are an equal opportunities employer who value a diverse and inclusive working environment. All qualified applicants will receive consideration for employment without regard to race, religion, gender identity or expression, sexual orientation, national origin, pregnancy, disability, age, veteran status, or other characteristics.