Cloud Security Analyst

Summary

The Cloud Security Analyst is a member of the Network Services team responsible for securing the college’s cloud infrastructure, applications, and data. This position focuses on protecting systems within Microsoft 365, Azure, and other cloud-based platforms, ensuring the confidentiality, integrity, and availability of institutional information. The Cloud Security Analyst works collaboratively with infrastructure, application, and support teams to implement security best practices, respond to incidents, and maintain compliance with regulatory requirements.

• Monitor cloud environments for security threats, vulnerabilities, and suspicious activity.
• Manage and distribute Windows Updates to the college’s computers, laptops, and servers.
• Respond promptly to security incidents, alerts, and service requests related to cloud platforms and applications.
• Investigate, analyze, and remediate security incidents including phishing, account compromise, malware, and unauthorized access attempts.
• Manage the college’s Managed Detection and Response (MDR) and Endpoint Detection and Response (EDR) platforms, including monitoring alerts, investigating suspicious activity, coordinating incident response efforts, tuning detection rules to reduce false positives, and ensuring endpoints remain compliant with established security standards.
• Conduct ongoing risk assessments of cloud and on-premises systems to identify security gaps, evaluate potential threats and vulnerabilities, document risk findings, and develop mitigation strategies aligned with institutional policies and industry security frameworks.
• Administer and maintain security configurations within the colleges cloud infrastructure.
• Configure and manage identity and access controls including Azure Active Directory, multi-factor authentication (MFA), conditional access policies, and role-based access controls (RBAC).
• Implement and monitor Advanced Threat Protection, Defender for Office 365, and related Microsoft security solutions.
• Conduct vulnerability assessments and coordinate remediation efforts for cloud systems and applications.
• Develop, maintain, and update cloud security governance documentation, standards, and procedures.
• Ensure compliance with FERPA, HIPAA (as applicable), PCI-DSS, and other regulatory or accreditation requirements impacting higher education.
• Perform risk assessments for new cloud technologies and services prior to implementation.
• Collaborate with other IT teams, including infrastructure and application support, to secure hybrid and on-premises integrations.
• Maintain up-to-date documentation of cloud configurations, security controls, incident response procedures, and continuity plans.
• Develop and maintain scripts (e.g., Power Shell) to automate security tasks, reporting, and monitoring within the cloud environment.
• Analyze email security trends including SPAM, PHISHING, and spoofing attempts and implementing remediation measures.
• Manage security logging, auditing, and reporting within SIEM or cloud-native monitoring platforms.
• Assist in the development and testing of disaster recovery and business continuity procedures related to cloud services.
• Assist with training and guidance to IT staff and end users regarding secure cloud usage and security awareness best practices.
• Schedule and maintain backups for areas of responsibility and verify data recovery processes.
• Enter and clear service requests in the college’s helpdesk system.
• Maintain a continuity binder related to each assigned system.
• Work closely with outside vendors and agencies for technical support and security assessments.
• Performs periodic weekend and after hour work.
• Responds to after-hour calls, as needed.
• Performs other job-related duties as assigned in support of the College's goals and core values.

This job has no supervisory responsibilities.

Associate degree in Cybersecurity, Information Technology, Computer Science, or related field.

• 2–5 years of experience in cybersecurity or cloud security
• Hands-on experience with AWS, Azure, or other security services
• Experience with SIEM, IDS/IPS, endpoint…