Cloud Security Architect- IBM, Singapore
Introduction
Information and Data are some of the most important organizational assets in today’s businesses. As a Security Consultant, you will be a key advisor for IBM’s clients, analyzing business requirements to design and implement the best security solutions for their needs. You will apply your technical skills to find the balance between enabling and securing the client’s organization with the cognitive solutions that are making IBM the fastest growing enterprise security business in the world.
Your Role and Responsibilities
The Cloud Security Architect will develop security assessment and evaluation plans for existing clients in order to lead and deliver Cloud Risk and Cloud Hygiene Assessments. Based on cloud architecting best practices, this individual will be expected to provide guidance and hands-on experience to teams in design, development, and maintenance of security solutions for cloud. This service will include the design and development of cloud security policies, standards and procedures for various types of public/private/hybrid clouds. This includes account management, tenant management, Cloud Access Security Broker (CASB) integration, network management, security incident and event management (SIEM), data protection, user account management (SSO, SAML), and password/key management, vulnerability/threat management, etc.
The Cloud Security Architect will lead customer-facing projects and all aspects of the development of security project deliverables including assessment, solution development and, as appropriate, implementation oversight efforts. He or she will effectively and accurately scope customer facing projects as well as identify and positions follow-on work with customer stakeholders that extends the value of BW Cyber as a strategic partner to the client. The Cloud Security Architect is expected to individually solve problems of higher complexity. The Cloud Security Architect will also participate in the development and enhancement of the information security solutions portfolio to insure it maintains relevancy with customer requirements and industry changes.
The individual will lead the design and development of the Azure, GCP and AWS security architectures for protecting PHI/PII/PCI data deployed into different types of cloud and cloud/hybrid systems. This position will directly contribute to the overall global enterprise cloud architecture and lead the security vision and strategy around cloud-based applications, across all types (including Infrastructure, Platform, and Software as a Service (IaaS/PaaS/SaaS).
The Cloud Security Architect will serve as the central point of contact for Enterprise Security for other Technology teams within the organization for all matters related to cloud security reporting into APAC Cloud Security Leader. The successful candidate possesses the excellent interpersonal and communication skills required to partner with other leaders across the business to identify opportunities and risks and develop and deliver solutions that support business strategies and protect Organization intellectual property globally.
Key Responsibilities
• Manage and execute cloud security solutions across lifecycle strategy, design, implementation, and operations
• Participate, lead and jointly deliver security evaluation reports on cloud providers (Azure, AWS, GCP), cloud native platforms (PCF, Docker, Kubernetes, etc.), and Software as a Service solutions
• Establish security requirements for cloud-based solutions by evaluating business strategies and requirements; researching cloud infrastructure security standards such as ISO 27000 series, NIST CSF, and CSA
• Provide domain expertise in both public and private cloud and enterprise technology
• Identify and deliver appropriate controls based on industry standards (e.g. CCM) to drive cloud and customer security solutions framework based on business risk and cloud native threats
• Continually evaluate new threats in the cloud, to identify the impact on IT and Business to develop and implement security controls
• Provide recommendations for improvement and risk reduction by assessing clients’ cloud
security posture; and act as a change agent with customer organizations to oversee the vulnerability improvements with our clients’ existing IT staff as well as 3rd party vendors support our clients (most often managed IT service providers)
• Design and develop security architectures for cloud and cloud/hybrid based systems. Possess a firm understanding of the offerings within VmWare, Amazon Web Services (AWS) and the Microsoft Azure platforms. Based on business requirements, design and implement cloud-native architectures and designs that will allow those requirements to be met with a minimal degree of risk to Organization and with appropriate security controls present.
• Represents Security Platform in development and implementation of the overall global enterprise cloud architecture. Acts as the ambassador and senior technical representative for Enterprise Security while engaging with other senior technical leaders throughout organization in design and implementation of cloud and cloud/hybrid based implementations and solutions. Works with Engineering, Infrastructure Services, and Application Development organizations to choose appropriate technology solutions and facilitates complete integration into the company environments. Develops standards in partnership with Engineering, Infrastructure Services, and Application Development.
• Leads initiatives designed to share knowledge across Security Platforms and/or Technology teams. Identifies, recommends, coordinates, deliver timely knowledge to support teams regarding technologies, processes or tools. Develops and executes strategies to increase Cloud Security knowledge throughout the enterprise.
Key Characteristics
• Strong ability to communicate with both and technical and non-technical team members
• Excellent presentation skills to able co-ordinate and facilitate security workshops to technical team members
• Customer focused mindset and is capable of flexing and delivering security solutions to meet the business needs by still achieving the high security standards
• Growth mindset who is passionate to learn and use new/emerging technologies
• Must work well independently and with others as part of larger team and be able to collaborate on cross-functional teams
SecuritySvcs_AP
SG_hotjobs
Required Technical and Professional Expertise
Knowledge and understanding of key differences between most popular cloud provider solutions and cloud orchestration tools (e.g. Azure, AWS, GCP, Pivotal Cloud Foundry, BOSH, Kubernetes, Docker, etc.)
Strong domain expertise of cloud infrastructure compute, network and storage as well as the cloud control plane
Knowledge of virtualization, containers, service-mesh and enterprise service business
Experience with structured Enterprise Architecture practices, hybrid cloud deployments, and on- premise-to-cloud migration deployments
Ability to identify and drive remediation of public and hybrid cloud risks
Experience in designing, implementing and delivering security for cloud native, distributed computing and architectural solutions with a principle of “Secure by Design”
Expertise in performing Threat Modeling, generating security architectural requirements to software development and product teams
College degree or/equivalent and 10 years related work experience, required
10 years experience with Security Architect and/or Engineering.
5 years experience with Cloud platforms such as Amazon Web Services (AWS), Azure, VMware NSX
Experience architecting solutions within Amazon Web Services (AWS), Azure, VMware NSX
Experience with assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes (secure software development (Application Security), data protection, cryptography, key management, identity and access management (IAM), network security) within SaaS, IaaS, PaaS, and other cloud environments.
Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms (OAuth, OpenID, etc).
Experience with deployment orchestration, automation, and security configuration management (Jenkins, Puppet, Chef, etc) preferred.
Experience with service-oriented architecture for cloud-based services.
Experience working with cloud security and governance tools, cloud access security
brokers (CASBs), and server virtualization technologies.
Experience with enterprise applications (architecture, development, support, and troubleshooting).
Experience performing threat modeling and design reviews to assess security implications and requirements for introduction of new technologies.
Experience representing technical viewpoints to diverse audiences and in making timely and prudent technical risk decisions.
Experience with enterprise architecture and working as part of a cross-functional team to implement solutions.
Strong interpersonal and communication skills; ability to work in a team environment
Ability to work independently with minimal direction; self-starter/self-motivated
Technical writing experience
Preferred Technical and Professional Expertise
5+ years of full-time dedicated experience leading Cloud Security focused roles on delivering security on cloud native, distributed architectural solutions in complex environments
3+ years of experience in defining security standards and reference architectures used to guide technical resources in secure system implementation and configuration for enterprise cloud systems and consumption of public cloud
Familiarity with predominant public cloud providers (AWS, Azure, GCP)
Understanding of Industry trends in cloud technologies for public, private and hybrid cloud deployments
Bachelor’s degree in Computer Science, Engineering, Mathematics, related field; or equivalent combination of education/professional experience in a similar role
One or more technical security certifications is a plus:
o CCSP – Certified Cloud Security Professional
o CISSP – Certified Information Systems Security Professional
o CSSLP – Certified Secure Software Lifecycle Professional
o CISM – Certified Information Security Manager
o CSEC – SANS CIAC Security Essentials
o CSP Security Certifications – AWS, Azure & GCP
Apply Here:
https://careers.ibm.com/job/14516074/cloud-security-architect-singapore-sg/?codes=JB_Indeed
========================================================================
You may also submit your CV here >>>>>>>>
https://www.dubai-forever.com/submit-your-cv.html
Employer Registration (CV Distribution):- We register you with 30 leading employers/ firms/ organizations in your sector/ industry.
Navigate here, to read more:
https://www.dubai-forever.com/employer-registration.html
