Coralogix- Cloud Security Analyst-VAPT

Title: Cloud Security Analyst (SOC/SIEM)

Experience Level: 3- 6+ years

Location: Gurgaon

We work 5 days a week from the office.

24*7 rotational shift env. (morning and afternoon shift are work from office),

Night shift and weekend is work from home

Preferred Cloud Platforms: AWS, Azure, or GCP

Key Responsibilities:

Cloud Security essentials-

• Focus on incident management and response handling within a Security Operations Center (SOC) environment.
• Work on complex use cases related to cloud security, including investigation of alerts and triggering response actions.
• Develop and implement use cases for detecting and mitigating threats such as ransomware, malware, and privileged escalation.
• Collaborate with cross-functional teams to ensure effective incident response and resolution.
• Operate in a 24x7 rotational shift environment.
  
  VAPT and Intel report essentials -
• Review and interpret vulnerability reports (e.g Hackerone) received from clients, partners, or external researchers, and reproduce reported issues safely in a controlled environment for validation.
• Work closely to recommend appropriate fixes or mitigations, verify effectiveness, and ensure the fix is correct which will eradicate the vulnerability.
• Document investigation steps, PoC reproductions, and remediation outcomes in standardized report formats for continuous improvement.
• Analyze threat intelligence feeds and hunting reports, correlate findings with internal telemetry, and proactively detect potential compromises or misconfigurations.
• Conduct Vulnerability Assessment and Penetration Testing (VAPT) activities across cloud workloads, applications, and infrastructure.

Requirements:

1. Bachelor's degree in Computer Science, Information Security, or related field.
2. 3-5 years of experience for Junior role; 6+ years for Senior role in cloud security analysis, SOC operations, or SIEM management.
3. Strong understanding of cloud security principles and best practices, with experience in AWS, Azure, or GCP environments.
4. Proficiency in incident management tools and techniques, including handling and investigating security alerts.
5. Ability to work independently and as part of a team in a fast-paced environment.
6. Excellent communication and documentation skills.
7. Relevant certifications such as CISSP, CCSP, AWS Certified Security Specialty, Azure Security Engineer, or GCP Professional Cloud Security Engineer are preferred.
8. Prior experience in handling security incidents related to cloud environments is a plus.
9. Experience in VAPT, analysing Bug bounty reports, analysing threat intelligence and threat hunting reports.
10. Security certifications such as CEH, CSA, OSCP, OSWE, or OSEE

About Coralogix :Coralogix is a SaaS platform that analyzes log, metric, and security data in real-time and uses machine learning to streamline delivery and maintenance processes for software providers, having its headquarters in California, United States . Coralogix is a streaming platform for modern engineering teams. Coralogix's Streama technology produces real-time insights and long-term trend analysis with no reliance on storage or indexing, solving the challenge of data growth in large-scale systems. Ingest data from any source for a single, centralized platform to manage, monitor, and alert your applications. As data is ingested, Coralogix instantly narrows millions of events down to common patterns for deeper insights and faster troubleshooting. Machine learning algorithms continuously observe data patterns and flows between system components and trigger dynamic alerts so you know when a pattern deviates from the norm without static thresholds or the need for pre-configurations.