CyberSecurity Analyst

Shape a remarkable future with us. Build a career working for an industry leader that truly invests in their people – and equips them with leading technology, continuous learning, and the ability to bring their best selves to work. As the premier wine and spirits distributor, Southern Glazer’s isn't just one of Forbes’ Top Private Companies; it's a family-owned business with deep roots dating back to 1933.

The reputation of Southern Glazer’s is well-established, and it's no surprise that we are regularly recognized for our culture. Southern Glazer’s has been recognized by Newsweek as one of America’s Greatest Workplaces for Inclusion and Diversity, as well as for Women and Parents and Families. These accolades speak volumes about our commitment to creating a supportive and inclusive culture of belonging for all employees.

As a full‑time employee, you can choose from a wide-ranging menu of our Top Shelf Benefits, including comprehensive medical and prescription drug coverage, dental and vision plans, tax‑saving Flexible Spending Accounts, disability coverage, life insurance plans, and a 401(k) plan. We also offer tuition assistance, a wellness program, parental leave, vacation accrual, paid sick leave, and more.

By joining Southern Glazer’s, you would be part of a team that values excellence, innovation, and community. This is more than just a job – it's an opportunity to build the future of beverage distribution and grow with a company that truly cares about its people.

The Staff Cybersecurity Analyst, Cloud Security plays a pivotal role in safeguarding the organization's cloud assets by leveraging advanced security tools and methodologies. This position involves conducting comprehensive cloud service and infrastructure assessments to identify and address policy deviations and investigating sophisticated security events to mitigate threats. The Staff Cybersecurity Analyst, Cloud Security is responsible for developing and implementing robust security integrations, managing complex operations, and maintaining system security.

This role leads cloud incident response efforts, performs in‑depth cloud vulnerability assessments, and conducts thorough risk assessments. Additionally, the Staff Cybersecurity Analyst, Cloud Security communicates cybersecurity improvements and provides strategic recommendations for informed risk management decisions. This position requires applying advanced concepts and practices to complete high‑complexity assignments, coordinating work on multiple or cross‑functional initiatives, and providing direct and indirect leadership within the team.

The Staff Cybersecurity Analyst, Cloud Security ensures SGWS’s cloud security posture remains robust and effective through proactive measures and strategic oversight.

• Lead service, system, and infrastructure assessments of major cloud environments to identify deviations from acceptable configurations, or policies.
• Work with internal and external teams to develop cloud‑specific security policies, procedures, standards, guardrails and design security controls for IaaS, PaaS, and SaaS.
• Work with developers to respond to escalated problems from System Administrators or other Engineers.
• Maintain comprehensive documentation, understand and practice operating procedures, playbooks and other cloud security‑related activities.
• Monitor, track, and mentor on cloud projects, programs, tools, systems, applications and networks for security issues.
• Regularly review Cloud Security Posture Management (CSPM) and Endpoint Protection findings to identify and address infrastructure configuration issues and security vulnerabilities proactively.
• Utilize CSPM solution to monitor and manage the configuration of infrastructure‑as‑code (IaC) frameworks, ensuring strict adherence to established security standards and policies.
• Collaborate with cross‑functional teams to integrate security into the CI/CD pipelines and ensure continuous security throughout the software development lifecycle.
• Implement, manage, and maintain a Web Application Firewall (WAF) to protect web applications and APIs from a variety of online threats.
• Lead security…