Information Security Analyst I

Hiring Information Security Analyst to join our team at Neology PSquare TechSystems (part of Neology Inc www.neology.com) Number of Open Positions - 1 Experience – 3 to 5 years Industry - IT Product & Services and IT Consulting Employment Type - Full-time Work Location - Smart City, Kochi, Kerala Shift timing based on projects – typically day/evening shift Role Description We’re hiring an Information Security Analyst I who lives at the intersection of DevSecOps, Application Security, and Compliance‑as‑Code. You’ll embed security into our software delivery pipelines, harden cloud workloads, operationalize policy code, and produce auditor‑ready evidence by design—not as an afterthought. Expect to partner closely with platform engineering, SRE, QA, and managed cloud providers in a shared‑responsibility model. Key Responsibilities 1) DevSecOps & Platform Guardrails - Design and maintain CI/CD guardrails for SAST/SCA/DAST, container image scanning, and IaC checks; integrate findings into issue trackers with SLAs. - Enforce secure SDLC entry/exit criteria; drive PR checks (e.g., SonarQube quality gates, license policies) and verify SBOM generation & signing. - Partner with SRE/platform teams to set Kubernetes/EKS admission and network policies; validate egress controls and secrets hygiene. 2) Application Security - Lead threat modeling for new services; define secure coding patterns and developer enablement (OWASP‑aligned training and playbooks) - . Coordinate third‑party and internal penetration tests; track remediation to closure with measurable risk reduction . 3) Compliance-as-Code & Evidence Automation - Translate NIST/ISO/SOC requirements into machine‑enforceable policies (e.g., AWS Config Conformance Packs, OPA policies) and automate evidence captur - e. Maintain continuous compliance dashboards; deliver auditor‑ready evidence for periodic reporting and assessment - s. Tune GuardDuty/Security Hub detections and triage flow s . Required Qualification - s - 3–5 years in Information Security with a focus on DevSecOps/AppSec and cloud security (AWS preferred) and integrating automated security checks within pipelin - es. Hands‑on with: Git‑based CI/CD (GitHub Actions/GitLab/Bitbucket), IaC (Terraform/CloudFormation), container security (EKS/ECR), and policy‑as‑code (OPA/Rego, Conftest; Sentinel/Checko - v). Demonstrated experience aligning SDLC and cloud controls to NIST 800‑53/800‑207 (Zero Trust), ISO 27001, and SOC -  2. Strong ability to convert framework control statements into automated checks and durable eviden - ce. Strong communication and collaboration skills to work across development, security, and operations tea - ms. Ability to promote a security-first culture and provide training to develope r s. Neology PSquare TechSystems (part of Neology Inc - www.neology.com) is a leading firm in Toll systems solutions and systems Integration Services since 2005. We are committed to delivering innovative Toll solutions and exceptional service to our clients. Our core values include integrity, collaboration, and excellence, and we are dedicated to fostering a diverse and inclusive workplace. At P Square, we will offer you Good Work Culture and Career opportunities with competent Salary in the industry, complemented with excellent employee benefits. We will provide you with opportunities to Learn and evolve in your career. We will support you with work life balance through Balanced leave policy and other benefits for working from office. Our assessments will be focused on your strengths and help to progress and venture career possibilities to grow. We have a holistic approach building talents and nurturing work culture. We are always keen listen and open to feed backs which helps enhance the work environment at Neology PSquare TechSystems.