Cybersecurity Analyst

Responsibilities

• This role focuses on protecting corporate platforms, cloud infrastructure, trading and business systems, endpoints, and digital identities.
• The ideal candidate enjoys building, configuring, automating, and continuously improving security controls. Working closely with Platform Engineering, IT, and business teams, you will help embed security into systems, development pipelines, and daily operations. This position provides exposure to cloud security, DevSecOps, endpoint and identity protection, threat detection and response, vulnerability management, governance, and emerging AI-related security risks.
• You should be proactive, eager to learn, and capable of driving operational security improvements through automation, measurable controls, and effective reporting.
• Cloud Security, DevSecOps & Automation
• Implement and maintain security controls across Azure cloud environments using native and third-party security solutions, including Defender for Cloud, Defender for Containers, Azure Policy, and related technologies.
• Integrate security practices and controls into CI/CD pipelines using Azure DevOps.
• Automate recurring security activities such as control validation, evidence collection, access reviews, remediation tracking, and reporting using PowerShell, Python, Bash, Bicep, Terraform, Azure DevOps, Jira, and AI-powered tools.
• Endpoint, Identity & IT Security
• Manage endpoint security through Microsoft Intune and Defender for Endpoint, including device compliance, hardening baselines, encryption, and attack surface reduction measures.
• Support identity and access management controls within Entra ID, including Conditional Access, Multi-Factor Authentication (MFA), privileged access management, identity protection, and workload identities.
• Enhance Microsoft 365 and SaaS security configurations, including application consent controls, audit logging, Data Loss Prevention (DLP), and email security.
• Security Operations
• Monitor, triage, and investigate alerts across security platforms such as Sentinel, Defender, Darktrace, and other monitoring tools.
• Respond to security incidents including phishing attempts, malware infections, suspicious activity, and account compromise events.
• Develop and refine detection rules, alerting mechanisms, and threat-hunting queries across cloud, endpoint, identity, SaaS, and network environments.
• Coordinate vulnerability management activities, including risk assessment, remediation tracking, and reporting to stakeholders.
• Governance & Reporting
• Support the maintenance of security policies, standards, and procedures aligned with frameworks and regulations such as ISO 27001, NIST CSF, CIS Controls, GDPR, and PDPA.
• Create and maintain operational runbooks, technical procedures, and automation documentation to support global teams.
• Develop dashboards, metrics, and reports using tools such as Sentinel Workbooks, KQL, Power BI, Grafana, or similar platforms for both technical and business audiences.

 

Requirements

• 1–3 years of experience in cybersecurity, cloud infrastructure, IT operations, DevOps, or a related technical field.
• Ability to develop automation and scripting solutions using PowerShell, Python, Bash, or similar languages.
• Working knowledge of Git, CI/CD processes, Infrastructure-as-Code (IaC), cloud technologies, and security best practices.
• Understanding of cloud security, endpoint protection, identity management, networking, vulnerability management, and incident response concepts.
• Strong analytical and communication skills, with the ability to investigate issues, document findings, and explain technical concepts to diverse stakeholders.
• Hands-on experience with Microsoft Sentinel, Defender for Endpoint, Intune, Entra ID, KQL, Grafana, or comparable SIEM, XDR, CSPM, SASE, endpoint management, and reporting solutions.
• Relevant certifications such as Security+, SC-900, AZ-500, or equivalent security and cloud certifications.
• Familiarity with AKS, Kubernetes security, Terraform, Bicep, OWASP Top 10, OWASP LLM Top 10, MITRE ATT&CK, MITRE ATLAS, STRIDE, ISO 27001, NIST CSF, CIS Controls, GDPR, and PDPA.

 

Application

• Apply to this job posting, and send your CV with the job title as the subject line to: T.Wong@GravitasGroup.com & https://www.linkedin.com/in/treasa-wong/