Information Security Analyst
Job #JOB-01175
๐ Dover, DE๐ผ CONTRACTOR๐ต USD $60/hr โ $60/hr
Cloud security professional with a deep understanding of securingCloud workloadsTools & Services
๐๐ข๐ญ๐ฅ๐: ๐๐ง๐๐จ๐ซ๐ฆ๐๐ญ๐ข๐จ๐ง ๐๐๐๐ฎ๐ซ๐ข๐ญ๐ฒ ๐๐ง๐๐ฅ๐ฒ๐ฌ๐ญ
๐๐จ๐๐๐ญ๐ข๐จ๐ง: ๐๐จ๐ฏ๐๐ซ, ๐๐ (๐๐ง๐ฌ๐ข๐ญ๐)
๐๐ฎ๐ซ๐๐ญ๐ข๐จ๐ง: ๐๐จ๐ง๐ ๐ญ๐๐ซ๐ฆ
๐๐ง๐ญ๐๐ซ๐ฏ๐ข๐๐ฐ โ ๐๐๐๐๐๐ฆ
๐๐๐ง๐ข๐จ๐ซ ๐๐๐๐ฎ๐ซ๐ข๐ญ๐ฒ ๐๐ง๐ ๐ข๐ง๐๐๐ซ : This role requires a highly skilled and experienced cloud security professional with a deep understanding of securing cloud workloads, tools and services. A strong preference would be given to candidates with prior Zero Trust Network.
Access (ZTNA) principles and a proven track record of implementing and managing secure cloud environments across multiple platforms. The ideal candidate will possess a strong combination of technical expertise and operational leadership. A candidate that brings strong experience in GCP cloud services to the stateโs multi-cloud program would be desired.
๐. ๐๐จ๐ซ๐ ๐๐๐๐ก๐ง๐ข๐๐๐ฅ ๐๐ค๐ข๐ฅ๐ฅ๐ฌ & ๐๐ฑ๐ฉ๐๐ซ๐ข๐๐ง๐๐:
- ๐๐๐ซ๐จ ๐๐ซ๐ฎ๐ฌ๐ญ ๐๐๐ญ๐ฐ๐จ๐ซ๐ค ๐๐๐๐๐ฌ๐ฌ (๐๐๐๐): The candidate must have extensive experience in ZTNA engineering and automation, ensuring secure, scalable, and policy-driven access control. This includes architecting and approving ZTNA configurations, implementing identity-aware segmentation, enforcing least privilege access policies, and leading the transition from traditional VPNs to ZTNA solutions. A deep understanding of NIST 800-207 and Zero Trust Architecture best practices is essential, along with hands-on experience with ZTNA technologies, particularly Zscaler.
- ๐๐ฅ๐จ๐ฎ๐ ๐๐ฅ๐๐ญ๐๐จ๐ซ๐ฆ ๐๐ฑ๐ฉ๐๐ซ๐ญ๐ข๐ฌ๐ : The candidate must demonstrate a comprehensive understanding of cloud security platforms and Infrastructure As A service (IAAS) solution providers like Google, Amazon and Microsoft. This includes in-depth knowledge of each provider's security services (e.g., IAM, security centers, firewalls, key management, logging, and monitoring tools), as well as the ability to design and implement secure cloud architectures. The candidate should be well-versed in cloud-native security controls, security posture management (CSPM) tools, and best practices for ensuring compliance with relevant security frameworks (NIST, ISO, SOC 2).
- ๐๐๐๐ง๐ญ๐ข๐ญ๐ฒ ๐๐ง๐ ๐๐๐๐๐ฌ๐ฌ ๐๐๐ง๐๐ ๐๐ฆ๐๐ง๐ญ (๐๐๐) : Working knowledge of IAM concepts and best practices is crucial, with specific experience in Okta preferred. The candidate should be proficient in implementing least privilege access controls, federation, single sign-on (SSO), and other IAM solutions across multiple cloud platforms.
- ๐๐๐๐ฎ๐ซ๐ข๐ญ๐ฒ ๐๐ฎ๐ญ๐จ๐ฆ๐๐ญ๐ข๐จ๐ง ๐๐ง๐ ๐๐ซ๐๐ก๐๐ฌ๐ญ๐ซ๐๐ญ๐ข๐จ๐ง : The candidate should possess a strong understanding of automation pipelines and experience with scripting and automation tools such as Python, Terraform, CloudFormation, and Azure Resource Manager. The ability to automate security tasks and processes, as well as experience with Security Orchestration, Automation, and Response (SOAR) platforms, is highly desirable.
- ๐๐๐๐ฎ๐ซ๐ข๐ญ๐ฒ ๐๐จ๐ง๐ข๐ญ๐จ๐ซ๐ข๐ง๐ ๐๐ง๐ ๐๐ง๐๐ข๐๐๐ง๐ญ ๐๐๐ฌ๐ฉ๐จ๐ง๐ฌ๐ : Experience with Security Information and Event Management (SIEM) logging and analysis is essential, along with an understanding of Endpoint Detection and Response (EDR) and Extended Detection and Response (XDR) concepts. The candidate must be capable of analyzing security logs and alerts, conducting threat hunting, and participating in incident response procedures and methodologies.
- ๐๐๐๐ฎ๐ซ๐ข๐ญ๐ฒ ๐๐จ๐ฅ๐ข๐๐ฒ, ๐๐จ๐ฆ๐ฉ๐ฅ๐ข๐๐ง๐๐, ๐๐ง๐ ๐๐จ๐ฏ๐๐ซ๐ง๐๐ง๐๐ : A working knowledge of current security policies, federal and state compliance regulations, and governance standards is necessary. The candidate should be able to implement security controls to meet compliance requirements and have experience with cloud-specific compliance frameworks like FedRAMP.
- ๐๐๐ญ๐ ๐๐๐๐ฎ๐ซ๐ข๐ญ๐ฒ : The candidate must demonstrate an understanding of data classification standards and experience with data loss prevention (DLP) configurations.
- ๐๐๐ญ๐ฐ๐จ๐ซ๐ค ๐๐๐๐ฎ๐ซ๐ข๐ญ๐ฒ : A deep understanding of modern networking standards, including Zero Trust principles, is crucial. The candidate should have extensive experience with network security concepts and technologies, including firewall management, intrusion detection/prevention systems (IDS/IPS), network segmentation, VPNs, routing and switching protocols, network traffic analysis, and network security tools (e.g., Wireshark, tcpdump). Experience with Network Access Control (NAC), DNS security, load balancers, and web application firewalls (WAFs) is also highly desirable.
- ๐๐ง๐๐ฉ๐จ๐ข๐ง๐ญ ๐๐๐๐ฎ๐ซ๐ข๐ญ๐ฒ : The candidate should possess an understanding of endpoint security concepts and technologies.
๐๐. ๐๐จ๐๐ญ ๐๐ค๐ข๐ฅ๐ฅ๐ฌ & ๐๐ฑ๐ฉ๐๐ซ๐ข๐๐ง๐๐ : Leadership and Communication: The candidate should be able to lead and mentor junior security engineers, possess excellent communication and presentation skills, and effectively explain complex technical concepts to non-technical audiences.
- ๐๐ซ๐จ๐๐ฅ๐๐ฆ-๐๐จ๐ฅ๐ฏ๐ข๐ง๐ ๐๐ง๐ ๐๐ซ๐ข๐ญ๐ข๐๐๐ฅ ๐๐ก๐ข๐ง๐ค๐ข๐ง๐ : Strong analytical and problem-solving skills are vital, along with the ability to think critically and strategically, anticipate security risks, and develop effective mitigation strategies.
๐๐๐. ๐๐๐ฎ๐๐๐ญ๐ข๐จ๐ง ๐๐ง๐ ๐๐๐ซ๐ญ๐ข๐๐ข๐๐๐ญ๐ข๐จ๐ง๐ฌ (๐๐ซ๐๐๐๐ซ๐ซ๐๐) :
- Bachelor's or Master's degree in Computer Science, Information Security, or a related field.
- Relevant certifications (e.g., CISSP, CCSP, AWS Certified Security โ Specialty, Google Cloud Certified Professional.
- Cloud Security Engineer, Microsoft Certified: Azure Security Engineer Associate).
๐๐. ๐๐ฑ๐ฉ๐๐ซ๐ข๐๐ง๐๐ ๐๐๐ฏ๐๐ฅ :
- Minimum of 7-10 years of experience in information security, with a focus on cloud security and ZTNA.
- Significant experience with GCP, AWS, and/or Azure.
- Demonstrated experience in implementing and managing ZTNA solutions.
๐๐๐ช๐ฎ๐ข๐ซ๐๐ ๐๐ค๐ข๐ฅ๐ฅ๐ฌ:
- The candidate must have extensive experience in ZTNA engineering and automation, Experience with Security Information and Event Management (SIEM).
- The candidate must demonstrate an understanding of data classification standards and experience with data loss prevention (DLP) configurations.
- The candidate should possess an understanding of endpoint security concepts and technologies.
- Strong analytical and problem-solving skills are vital, along with the ability to think critically and strategically, anticipate security risks, and develop effective mitigation strategies.
Posted 7/7/2026 ยท Open until 8/25/2026
Apply for Information Security Analyst
Fill in the form below and our team will review your application.
