Cyber Security Analyst

Date:  Jul 21, 2024
Location: 

Pune, IN

Requisition ID:  36610

About Avaya

Avaya is a global leader in digital communications products, solutions, and services for businesses of all sizes delivering most of its technology through software and services. We enable organizations around the globe to succeed by creating intelligent communications experiences for our clients, their employees, and their customers. Every minute of every day, we power positive and productive interactions that drive customer loyalty, team collaboration and business success.
Were focused on Innovation without Disruption, removing barriers, and placing our customers best interests at the forefront of everything we do. The world is evolving in technologically exciting ways, and we strive to lead revolutions in how businesses leverage the cloud, artificial intelligence, automation, and mobility.
We arent just focused on customer experience, we also prioritise the employee experience, and we work hard to engage and empower our people throughout their career with us. Were seeking the best diverse talent to shape and transform how the world connects. Find out more at Careers at Avaya

Job Information

Job Code: 00192760

Job Family: Information Technology

Job Function: Information Security

Short Description

ABOUT THE OPPORTUNITY
What could you experience and get involved with?
The Avaya Risk and Compliance (ARC) Team is responsible for analyzing and providing recommendations for the resolution of cybersecurity risk at Avaya. Our mission is to enable Avaya to understand, manage, and reduce cybersecurity risk.
The ARC Team resides in the Avaya CISO Organization within the Avaya Global IT organization.
The ARC Team conducts regular risk assessments for regulated and non-regulated customer and Avaya corporate environments and provides internal Avaya engineering and operations teams with detailed risk analysis and mitigation recommendations. Additionally, the Team monitors the remediation activities for issues identified during risk assessments.

On a day-to-day basis, you will:

  • Partner with Avaya Product, Operations, Compliance, IT, and Engineering Teams to gather information and data on Avaya customer environments, discuss your analysis and recommendations for cybersecurity risk mitigation, and monitor remediation activities for Avaya customer environments.
  • Respond to questions and requests for additional information from various Avaya Teams involved with compliance and management of Avaya customer environments.
  • Attend internal ARC Team meetings, as well as meetings with various Avaya Teams to collaborate on cybersecurity risk analysis and mitigation and process improvement.
  • Conduct research on emerging cybersecurity threats/risks and appropriate risk mitigation for cloud computing environments.
  • Hard & Technical Skills (desired):
    • Cloud Computing Fundamentals:
      • Understanding of cloud service models (IaaS, PaaS, SaaS).
      • Familiarity with cloud deployment models (public, private, hybrid, and multi-cloud).
      • Knowledge of leading cloud service providers (AWS, Azure, Google Cloud).
    • Security & Compliance:
      • Understanding of cloud security principles and best practices.
      • Knowledge of encryption, access control, and identity management in cloud environments.
      • Familiarity with compliance standards and regulations (e.g., GDPR, HIPAA, PCI-DSS, SOC 2, NIST 800-53).
    • Networking & Infrastructure:
    • Knowledge of virtual networks, VPNs, and firewalls in a cloud context.
    • Understanding of cloud storage solutions and data lifecycle management.
    • Familiarity with containerization (Docker, Kubernetes) and orchestration tools.
    • Risk Management Frameworks:
    • Experience with risk assessment methodologies (e.g., ISO 31000, NIST SP 800-30).
    • Ability to perform threat modeling and vulnerability assessments (e.g., Mitre ATT&CK).
  • Qualifications & Certifications (desired):
    • Certified Information Systems Security Professional (CISSP)
    • Certified Cloud Security Professional (CCSP)
    • AWS Certified Security – Specialty
    • Microsoft Certified: Azure Security Engineer Associate
    • Google Cloud Professional Cloud Security Engineer

Experience

3 - 6 Years of Experience

Education

Bachelor degree or equivalent experience

Preferred Certifications

Footer

Avaya is an Equal Opportunity employer and a U.S. Federal Contractor. Our commitment to equality is a core value of Avaya. All qualified applicants and employees receive equal treatment without consideration for race, religion, sex, age, sexual orientation, gender identity, national origin, disability, status as a protected veteran or any other protected characteristic. In general, positions at Avaya require the ability to communicate and use office technology effectively. Physical requirements may vary by assigned work location. This job brief/description is subject to change. Nothing in this job description restricts Avaya right to alter the duties and responsibilities of this position at any time for any reason. You may also review the Avaya Global Privacy Policy (accessible at https://www.avaya.com/en/privacy/policy/) and applicable Privacy Statement relevant to this job posting (accessible at https://www.avaya.com/en/documents/info-applicants.pdf).