Cybersecurity Analyst

Job Profile: Cybersecurity Analyst

Exp - 5-7 yrs
Location: Bengaluru, India
Work Model: Hybrid

Job Description

We seek a dedicated Cybersecurity Analyst to enhance the security of web, mobile, and standalone applications and systems, ensuring their robustness against cyber threats. This role involves close collaboration with engineering, cloud, and product teams to safeguard their applications.

What You Will Do

• Contribute to security assessments for applications hosted in cloud or hybrid environments.
• Assist in reviewing the security of multi‑tier applications (web, application, database layers).
• Support teams in implementing basic security controls across applications and platforms.
• Help evaluate web security, data protection practices, and identity/access configurations.
• Participate in documenting security requirements and supporting internal security certification processes.
• Assist in tracking risks, documenting findings, and following up on remediation activities.
• Support reviews of API access, authentication and authorization setup, encryption practices, and deployment pipelines.
• Contribute to secure design recommendations under the guidance of senior staff.
• Stay informed about emerging security risks, best practices, and cloud‑security fundamentals.

• 5-7 years of experience in IT or cybersecurity (professional experience, academic projects, or hands‑on labs accepted).
• Basic understanding of how web applications are structured (front‑end, backend, database).
• Familiarity with general cloud concepts (identity & access, logging, basic compute and storage usage).
• Understanding of fundamental security principles:
• common web vulnerabilities (e.g., OWASP Top 10)
• basic API security concepts
• data protection fundamentals (encryption, secure storage)
• identity and access management basics
• Exposure to security assessments or technical reviews (design checks, configuration checks, vulnerability findings).
• General understanding of security controls available in cloud environments (e.g., firewalls, access policies, monitoring).
• Ability to collaborate with engineering, QA, cloud, architecture, and product teams.
• Awareness of secure development practices and basic CI/CD security concepts.
• Ability to write clear documentation and contribute to assessment reports.

• Basic understanding of threat modeling or risk analysis concepts.
• Exposure to cybersecurity frameworks (ISO 27001, NIST, SOC 2).
• Foundational certifications such as:
• Security+, AWS Cloud Practitioner, Azure AZ‑900 / SC‑900
• Introductory AI‑security knowledge (e.g., "AI for Cybersecurity")
• Hands‑on labs or personal learning in cloud or application security.

• Contribute to security assessments for applications hosted in cloud or hybrid environments.
• Assist in reviewing the security of multi‑tier applications (web, application, database layers).
• Support teams in implementing basic security controls across applications and platforms.
• Help evaluate web security, data protection practices, and identity/access configurations.
• Participate in documenting security requirements and supporting internal security certification processes.
• Assist in tracking risks, documenting findings, and following up on remediation activities.
• Support reviews of API access, authentication and authorization setup, encryption practices, and deployment pipelines.
• Contribute to secure design recommendations under the guidance of senior staff.
• Stay informed about emerging security risks, best practices, and cloud‑security fundamentals.

• 5-7 years of experience in IT or cybersecurity (professional experience, academic projects, or hands‑on labs accepted).
• Basic understanding of how web applications are structured (front‑end, backend, database).
• Familiarity with general cloud concepts (identity & access, logging, basic compute and storage usage).
• Understanding of fundamental security principles:
• common web vulnerabilities (e.g., OWASP Top 10)
• basic API security concepts
• data protection fundamentals (encryption, secure storage)
• identity and access management basics
• Exposure to security assessments or technical reviews (design checks, configuration checks, vulnerability findings).
• General understanding of security controls available in cloud environments (e.g., firewalls, access policies, monitoring).
• Ability to collaborate with engineering, QA, cloud, architecture, and product teams.
• Awareness of secure development practices and basic CI/CD security concepts.
• Ability to write clear documentation and contribute to assessment reports.

• Basic understanding of threat modeling or risk analysis concepts.
• Exposure to cybersecurity frameworks (ISO 27001, NIST, SOC 2).
• Foundational certifications such as:
• Security+, AWS Cloud Practitioner, Azure AZ‑900 / SC‑900
• Introductory AI‑security knowledge (e.g., "AI for Cybersecurity")
• Hands‑on labs or personal learning in cloud or application security.