Senior Security Analyst - AWS

NetDocuments is committed to providing an excellent candidate experience and will never ask you to engage in recruitment activity without phone, video, and in person meetings and communications from emails using the @netdocuments.com domain. If you have any concerns or questions about communications you have received, please send them to hrgroup@netdocuments.com so our team members can review.

NetDocuments is the world’s #1 trusted cloud-based content management and productivity platform that helps legal professionals do their best work. We strive to win together through passionate hard work, exploring new things and recognizing every interaction matters. 

NetDocuments provides rewarding career growth in an inclusive, diverse environment where employees are encouraged to openly contribute creative ideas and innovation, backed by supportive peers and leadership working together to achieve our goals as a unified team. 

At our core, we are dedicated to empowering our employees to drive successful business outcomes and better user experiences for our customers and partners. Our customer-centric approach and employee enablement has allowed us to enjoy many accolades, including being named among the 2022,  2023, & 2024 list of Inc. Magazine’s 5000 Fastest-Growing Private Companies in America. 

Other recent awards include: 

• Two-time winner (2024, 2023) National Top Workplaces
• Two-time winner (2024, 2023) Top Workplace innovation
• Three-time winner (2023, 2022, 2021) Top Workplace in the US by the Salt Lake Tribune
• Three-time winner (2023, 2022, 2021) Best Companies to Work for by Utah Business magazine
• Three-time winner (2024, 2023, 2022) Top Workplace Work-Life Flexibility
• Three-time winner (2024, 2023, 2022) Top Workplace Compensation & Benefits
• 2024 Cultural Excellence
• 2024 Technology Industry 
• 2023 Top Workplace Leadership
• 2023 Top Workplace Purpose & Values
• 2022 Top Workplace Employee Appreciation and Employee Well Being

NetDocuments is a hybrid, remote-friendly workplace. Come join our team and work inspired each day! 

 What You'll Do

We are seeking a highly skilled Senior AWS Public Cloud Security Analyst with a passion for securing cloud environments and driving proactive security measures. In this role, you will leverage your expertise in AWS security services, infrastructure as code, threat detection, and compliance frameworks to protect and optimize our public cloud infrastructure. As a key contributor, you’ll collaborate with cross-functional teams to identify risks, implement security solutions, and support DevSecOps practices. If you thrive in dynamic environments and have a knack for automation and innovation, we’d love to have you join our team. 

You will: 

• Design, implement, and maintain robust AWS security services (IAM, VPC, KMS, GuardDuty, Security Hub, etc.) to safeguard cloud infrastructure.
• Develop and enforce security policies using Infrastructure as Code (IaC) tools, such as Terraform, CloudFormation, or Ansible.
• Monitor cloud environments by configuring and fine-tuning threat detection and alerting systems (GuardDuty, Wiz, CloudTrail, Security Hub) and integrating with SIEM platforms.
• Ensure compliance with security standards such as CIS AWS Foundations Benchmark, NIST, SOC 2, and FedRAMP, collaborating with relevant teams to maintain governance.
• Conduct penetration testing and vulnerability assessments in cloud environments, remediating identified risks and implementing best practices.
• Collaborate with DevOps and product teams to integrate security into CI/CD pipelines and promote DevSecOps practices across development workflows.
• Develop and execute incident response plans (IRPs), ensuring rapid response to security incidents while continuously improving processes.
• Automate security checks, monitoring, and compliance tasks through scripting languages such as Python, Bash, or PowerShell.
• Lead or support cloud security audits and assessments, documenting security architectures, policies, and incident reports.
• Mentor and guide junior engineers on security best practices and contribute to fostering a strong security culture within the organization.
• Secure multi-account cloud architectures, applying network security best practices (security groups, NACLs, VPC configurations, etc.) and encryption standards (KMS, HSMs). 

What You’ll Need to be Successful 

• 5-7 years of experience in cloud security, preferably with AWS environments.
• CISSP certification required
• Experience with public cloud deployments and securing multi-account architectures.
• Familiarity with DevSecOps practices and integrating security into CI/CD pipelines.
• Prior experience in cloud migration from private to public environments.
• Experience conducting or supporting security audits and assessments.
• Deep understanding of AWS security services (IAM, VPC, KMS, Security Hub, CloudTrail, GuardDuty, Config, WAF).
• Strong experience with AWS Identity & Access Management (IAM) and role-based access control (RBAC).
• Knowledge of network security best practices (security groups, NACLs, VPC architecture, VPN setups).
• Experience with encryption standards and management, including KMS, HSMs, and data encryption.
• Hands-on experience with Terraform, CloudFormation, or Ansible.
• Ability to programmatically enforce security policies using IaC.
• Experience setting up and fine-tuning GuardDuty, CloudTrail, Wiz, Security Hub, and SIEM tools (e.g., Splunk, Datadog, AWS CloudWatch).
• Familiarity with CIS AWS Foundations Benchmark, NIST 800-53, SOC 2, FedRAMP, and other security frameworks.
• Ability to assess, identify, and remediate vulnerabilities in cloud environments.
• Experience creating and executing incident response plans (IRPs).
• Proficiency in scripting languages such as Python, Bash, or PowerShell to automate security checks and tasks.

What Will Make You Stand Out (optional) 

• Any additional certifications are a plus:
• AWS Certified Security – Specialty
• AWS Certified Solutions Architect – Associate/Professional
• AWS Certified Advanced Networking – Specialty
• CEH (Certified Ethical Hacker) or OSCP (Offensive Security Certified Professional)
• CISM (Certified Information Security Manager) or CCSP (Certified Cloud Security Professional)

What You’ll Love About NetDocuments 

• The People!
• 90% healthcare premiums company covered
• HSA company contribution
• 401K match at 4% with immediate vesting
• Flexible PTO (typically 3 to 4 weeks a year)
• 10 paid holidays
• Monthly contributions for life activities & wellness
• Access to LinkedIn learning with monthly dedicated time to explore 

Compensation Transparency 

The compensation range for this position is: $120,000 - $150,000 

The posted cash compensation for this position includes on target earnings, base salary and variable if applicable. Some roles may qualify for overtime pay. Individual compensation packages are determined based on various factors specific to each candidate, such as career level, skills, experience, geographic location, qualifications, and other job-related considerations 

Equal Opportunity 

NetDocuments is an Equal Opportunity Employer and prohibits discrimination and harassment of any kind. All employment decisions are based on business needs, job requirements, individual qualifications, without regard to race, color, religion, sex, (including pregnancy), national origin, age, physical and mental disability, marital status, sexual orientation, gender identity and/or expression, military and veteran status, or any other status protected by laws or regulations in the locations where we operate. NetDocuments believes diversity and inclusion among our employees is critical to our success, and we are committed to providing a work environment free of discrimination and harassment.