We are hiring a Federal Cloud CyberSecurity Analyst.

　　As the Federal Cloud CyberSecurity Analyst, you will work closely with other members of the CyberSecurity program, monitoring and validating/nullifying identified risks in the environment.

　　You will work closely with internal and external managed security service providers on all manner of operational security and support their activities where needed.

　　You will assist in the wider operational activities including but not limited to validating and addressing identified security risks, Data Security, SOC1/SOC2 Audits, Client Audits, security certifications and penetration and vulnerability testing and support management teams during security incident events and be confident and capable of explaining the risk and remediation positions for threats as part of the global security incident management process.

　　The role will require you to have a technical background. Understanding of security technologies, security controls and security best practice would be ideal but a willingness and desire to expand these security skills and knowledge within the technical security team is mandatory.

　　The ideal candidate will need to be proficient in security capabilities and wider general security best practice. Where up skilling is required, this will be provided through both peer knowledge share and explicit training

　　Duties and Responsibilities

　　Work with the CyberSecurity Operations Management and colleagues on a day-to-day basis to ensure the highest levels of security and control are maintained throughout Alight's Federal environment.Ensure all Security Incidents and Security Events are managed through the Security Incident Management process and provide direct communications for all critical items requiring the attention of senior management through the Head of CyberSecurity Operations.Ensure regular / recurring tasks and activities are managed efficiently and within defined time constraints.Work with technical and business units across the organization to develop and implement security standards, policies, and practices to make continual improvements and increase the effectiveness of the security program.Work with technical and business units across the organization as a security reference point, offering advice, support, and guidance on a wide range of security orientated issues.Assist in documenting and updating as appropriate, security and risk policies, standards, and processes. Ensuring these, and the risk register are up to date and regularly reviewed.Backup the Vulnerability manager in configuring and executing vulnerability assessment activities to ensure that all vulnerabilities are discovered, prioritized and assigned to appropriate remediation teams. Provide guidance to teams about the vulnerability management program.Maintain a positive, professional environment in full compliance with applicable laws, regulations, policies, and procedures; ensure that staff members understand and comply with applicable laws, regulations, policies, and procedures.Write and publish risk reports and scorecards to provide situational awareness and communicate risks to management.Security Operations Management: Manage day-to-day interactions and escalations with our 3rd party 24/7 SOC provider.External Threat Oversight and Mitigation: Coordinate response to vulnerability assessments and remediation of the external surface. Work with the network team to guide them in order to ensure we leverage the threat detection and prevention capabilities of edge devices like firewalls.Threat Intelligence Management: Partner with various stakeholders to understand emerging threats and help coordinate response. Share critical information with management and relevant departments to ensure the company can stay proactive in its response to new threats.Incident Response Leadership: Provider leadership and support during the security events.Work with manager to establish measurable benchmarks to monitor progress and identify areas requiring additional focus.Vulnerability Management: Help prioritize and coordinate response to newly emerging vulnerabilities on the external edge.

　　Additional duties as assigned by management.

　　Drive the administrative execution of action items and top priorities agreed upon by the BISO and leadership teamOperate at a tactical, strategic, and operational level, handling the oversight of projects that fall between divisions or leadership areas of responsibility when appropriate.Advanced presentation, proposal, and report writing skills.

　　Position Requirements

　　Graduate or higher degree holder in relevant information security or a related technical discipline; or the equivalent combination of education; professional training or work experience.Prior experience running Security Operations Team or serving as a lead within a group4 years of security experience based on AWS cloud platform .3+ years of technical operations experience, providing system/platform support for one or more of the following:Network Operations or engineeringSystem administration of Linux or WindowsSOC/CIRT team leadAWS Security CenterAdvanced English oral and written communication skills.Strong program management skills.Confident but reassuring customer-facing style and excellent organizational skills.Good team player skills coupled with good analytical skills.Technical awareness of (and ideally experience in) Tenable, Splunk, SIEM, XDR, IDS / IPS, DLP, DDoS, Data classifications, vulnerability management and penetration testing, with any forensics experience a plus.Maintain a good technical understanding of today's security marketplace, the threat landscape and how vendors are responding to the changing face of data security.Working knowledge of ServiceNowSelf-motivated learner with drive to investigate problems with minimal instruction and supervision.

　　 Our story

　　At Alight, we believe a company's success starts with its people. At our core, we Champion People, help our colleagues Grow with Purpose and true to our name we encourage colleagues to "Be Alight."

　　 Our Values:

　　 Champion People - be empathetic and help create a place where everyone belongs.

　　 Grow with purpose - Be inspired by our higher calling of improving lives.

　　 Be Alight - act with integrity, be real and empower others.

　　It's why we're so driven to connect passion with purpose. Our team's expertise in human insights and cloud technology gives companies and employees around the world the ability to power confident decisions, for life.

　　With a comprehensive total rewards package, continuing education and training, and tremendous potential with a growing global organization, Alight is the perfect place to put your passion to work.

　　Join our team if you Champion People, want to Grow with Purpose through acting with integrity and if you embody the meaning of Be Alight.

　　Learn more at careers.alight.com.

　　 Flexible Working

　　So that you can be your best at work and home, we consider flexible working arrangements wherever possible. Alight has been a leader in the flexible workspace and "Top 100 Company for Remote Jobs" 5 years in a row.

　　Benefits

　　We offer programs and plans for a healthy mind, body, wallet and life because it's important our benefits care for the whole person. Options include a variety of health coverage options, wellbeing and support programs, retirement, vacation and sick leave, maternity, paternity & adoption leave, continuing education and training as well as a number of voluntary benefit options.

　　By applying for a position with Alight, you understand that, should you be made an offer, it will be contingent on your undergoing and successfully completing a background check consistent with Alight's employment policies. Background checks may include some or all the following based on the nature of the position: SSN/SIN validation, education verification, employment verification, and criminal check, search against global sanctions and government watch lists, credit check, and/or drug test. You will be notified during the hiring process which checks are required by the position.

　　Our commitment to Diversity and Inclusion

　　Alight is committed to diversity, equity, and inclusion. We celebrate differences and believe in fostering an environment where everyone feels valued, respected, and supported. We know that diverse teams are stronger, more innovative, and more successful.

　　At Alight, we welcome and embrace all individuals, regardless of their background, and are dedicated to creating a culture that enables every employee to thrive. Join us in building a brighter, more inclusive future.

　　Diversity Policy Statement

　　Alight is an Equal Employment Opportunity employer and does not discriminate against anyone based on sex, race, color, religion, creed, national origin, ancestry, age, physical or mental disability, medical condition, pregnancy, marital or domestic partner status, citizenship, military or veteran status, sexual orientation, gender, gender identity or expression, genetic information, or any other legally protected characteristics or conduct covered by federal, state or local law. In addition, we take affirmative action to employ and advance in the employment of qualified minorities, women, disabled persons, disabled veterans and other covered veterans.

　　Alight provides reasonable accommodations to the known limitations of otherwise qualified employees and applicants for employment with disabilities and sincerely held religious beliefs, practices and observances, unless doing so would result in undue hardship. Applicants for employment may request a reasonable accommodation/modification by contacting his/her recruiter.

　　Authorization to work in the Employing Country

　　Applicants for employment in the country in which they are applying (Employing Country) must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the Employing Country and with Alight.

　　Note, this job description does not restrict management's right to assign or reassign duties and responsibilities of this job to other entities; including but not limited to subsidiaries, partners, or purchasers of Alight business units.

　　#LI-Remote p&tjobs

　　We offer you a competitive total rewards package, continuing education & training, and tremendous potential with a growing worldwide organization.

　　Pay Transparency Statement: Alight takes into consideration a candidate's experience, education, certification/credentials, market data, internal equity, and geography when determining an offer for a successful employment candidate, and Alight does so on an individualized, non-discriminatory basis. Therefore, an offer may fall anywhere between the estimated minimum base salary for this role of $90,200.00/year (for full time employees) and the estimated maximum base salary for this role of $143,000.00/year (for full time employees). In addition to a base salary, this position may be eligible for a bonus and/or other incentive plans. Alight also offers a comprehensive benefits package; for specific details on our benefits package, please visit: https://careers.alight.com/us/en/alight-us-benefits-2023

　　DISCLAIMER:

　　Nothing in this job description restricts management's right to assign or reassign duties and responsibilities of this job to other entities; including but not limited to subsidiaries, partners, or purchasers of Alight business units.

　　Alight Solutions provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, age, disability, genetic information, pregnancy, childbirth or related medical condition, veteran, marital, parental, citizenship, or domestic partner status, or any other status protected by applicable national, federal, state or local law. Alight Solutions is committed to a diverse workforce and is an affirmative action employer.