Associate Security Analyst

Codimite is an innovative software development company based in Sri Lanka, dedicated to delivering high-quality technology solutions tailored to clients in the United States. Specializing in data analytics, AI, and advanced software services, Codimite supports a diverse portfolio of American companies by providing reliable, cutting-edge technology products. Our commitment to excellence and client satisfaction has made us a trusted partner across various industries in the USA.

About the Role

At Codimite, we are strengthening our security and compliance practices to support scalable, secure software delivery. As an Associate Security Analyst, you will play a key role in maintaining and improving our security posture across cloud, on-prem, and SaaS environments.

You will work closely with cross-functional teams to support governance, risk, and compliance initiatives while contributing to day-to-day security operations. This role is ideal for someone who is detail-oriented, proactive, and eager to grow in the cybersecurity domain.

Responsibilities

• Maintain confidentiality of security data, incidents, and audit evidence
• Support security governance & compliance (ISO 27001, SOC 2, GDPR)
• Review and update security policies
• Maintain incident registers (cloud, on-prem, SaaS)
• Conduct monthly access reviews (least privilege)
• Support vulnerability management & security assessments
• Assist in audit preparation and evidence collection
• Handle customer/vendor security questionnaires
• Support phishing simulations & awareness initiatives
• Research security tools & automation improvements
• Execute tasks from the Security Jira board
• Monitor security channels & track remediations
  
  

Qualifications & Requirements

• 1–2 years of experience in IT / Security / Compliance (or relevant internship experience)
• Basic knowledge of cloud environments (AWS, GCP, Azure)
• Strong understanding of security fundamentals (CIA triad, access control)
• Familiarity with IAM concepts
• Understanding of risk, compliance, and security policies
• Strong analytical skills and attention to detail
• Ability to handle sensitive information with confidentiality
• Good written and verbal communication skills
• Exposure to ISO 27001, SOC 2, or similar frameworks
  
  

What We Offer

• Competitive remuneration package
• Performance-based benefits
• Flexible working hours
• Exposure to new technologies and a dynamic team