Cloud Security Senior Advisor
Key Responsibilities:
Define security requirements and architectures while engaging directly with stakeholders within Client Business Units and the Information Technology organisations to ensure products, services and solutions are designed to adhere to those requirements across Client private, hybrid and public Cloud environments.
· Support the development of Cloud solutions that meet regulatory requirements including, but not limited to EU GDPR, PCI, SOX, HIPAA, etc.
· Assist with the development, maintenance and communication of Cloud security policies and procedures.
· Contribute into the development and delivery of a world class Cloud training program.
- Utilise program and project management techniques to drive successful initiatives.
Job Requirements:
· Bachelor's degree in Computer Science, Information Systems, or a related field
· Individuals with CISSP, CISM, or CCSP certifications preferred
· 6+ years Security experience with 3+ years in Security Consulting and at least 10+ years in IT
· Strong knowledge of Cloud service and deployment models (e.g. CaaS, SaaS, IaaS, and PaaS) and proven experience migrating on premise solutions to the Cloud.
· Knowledge of Cloud-native/Cloud-friendly authentication mechanisms such as OAuth, OpenID, SAML, Ping, etc.
· Experience working with Cloud access security brokers (CASBs) and other governance solutions designed to provide visibility into Cloud usage.
· Experience with infrastructure Threat Modeling (preferably to STRIDE methodology).
· Provide-risk based recommendations to Executive leaders which address unsanctioned applications.
· Detailed technical knowledge and experience with network security, authentication, security protocols, access control, cryptography, application security and data protection.
· Coordinate with system architects and developers to provide guidance in creating and integrating secure Cloud-based designs.
· Proven success with the following technologies: Microsoft Azure, Amazon Web Services (AWS), Google Cloud Platform, VMware vitalisation solutions, Pivotal, Windows and Linux based platforms, etc.
· Experience with laws, regulations, standards and best practices including, but not limited to, CSA CCM, NIST, ISO, PCI, Sarbanes Oxley, HIPAA, and EU GDPR.
· Experience building a security catalogue of best practices, techniques and patterns to enable secure network implementations.
· Hands-on experience with multiple security technologies such as Firewalls, Intrusion Detection/Prevention Systems, Vulnerability Scanning, WAF, Wireless LAN, NAC, DLP, DDoS Mitigation, WAN security, SIEM, Content Filtering, Cloud Security gateways, Secure Proxies, SSL crypto solutions.
· Ability to operate effectively in a fast-paced environment with competing and shifting priorities.
· Ability to efficiently summarise complex, cross-organisational initiatives.
· Ability to help drive agreement on priorities through the influencing of and negotiation with stakeholders who at times may hold competing or conflicting goals.
· Ability to engage executive-level stakeholders on complex matters in a substantive manner with little to no oversight and limited guidance.
· Ability to confidently and effectively present complex technical topics to senior non-technical audiences.
· Ability to work collaboratively and effectively as part of larger matrixed organisation.
· Ability to quickly organise and direct virtual teams as necessary to accomplish goals.
· Excellent written and verbal communication skills.
· Pragmatic, results-driven, value focused, and accountability minded.
The candidate must have a valid visa to work in Ireland to apply for this role.
