• Assess, design, implement, automate, and document security solutions, controls, and processes for Amazon Web Service (AWS) and MS Azure cloud platforms
• Develop and maintain Security patterns for Cloud Platforms and Services, Assess all cloud patterns to ensure adherence to best security practices and controls
• Design and implement DevOps processes, tools, and reusable templates to incorporate security into application and infrastructure design patterns and the building of security controls into the CI/CD process.
• Build and deliver policies as code, automating security controls, and best practices.
• Review and approve codes and changes with security implications (e.g. IAM Roles and Policies, Security Groups, etc.)
• Provide subject matter expertise on architecture, authentication, and systems security based on a clear understanding of our cloud engineering stack, services, and data flow
• Lead focused and continuous cybersecurity risk assessments of new and existing technologies to identify risks and appropriate controls that balance security and operability
• Provide effective and pragmatic cybersecurity guidance up-front in major technology projects, to enable the business to innovate securely
• Assist in the investigation and remediation of security incidents and issues
• Be the cloud security subject matter expert for the Cloud Engineering group and its partners in any IaaS/ PaaS and SaaS implementations.
• Work closely with Information Security, product, and software development teams to assess cybersecurity risk, and cloud controls, and recommend solutions and remediation in the cloud environment

Skills: Cloud Security Solutions, Security Patterns Development, DevOps Security Integration, Policy Automation, Security Code Review, Architecture Expertise, Cybersecurity Risk Assessment, Cybersecurity Guidance

• Creation and maintenance of cloud security configuration monitoring signature rules
• Specification of custom cloud security controls that need to be engineered in-house, concerning detection and auto-remediation controls
• Creation of Management Information dashboards and statistics to inform stakeholders
• Act as subject matter expert for public cloud security and effective collaboration with senior business and security leadership
• Delivering ad-hoc cloud security training
• Evaluate new solutions in AWS and Microsoft Azure and develop security frameworks that enable us to introduce these technologies in a secure manner
• Continuously improve cloud security standards and build supporting documentation and reference architectures for technical and non-technical audiences
• Adopt a DevSecOps culture and improve the security of DevSecOps tools and practices
• Drive cloud security strategy and roadmap
• Learn continuously to maintain and broaden cloud security architecture expertise

Skills: Cloud Security Monitoring, Custom Security Controls, Management Information Dashboards, Public Cloud Security Expertise, Ad-hoc Security Training, Solution Evaluation, Security Framework Development, Cloud Security Standards Improvement

• Perform risk assessments of proposed and existing system architecture for compliance with security best practices, recommending technical and administrative controls to mitigate identified risks
• Design cloud security architectures and perform architecture design reviews
• Define, prioritize, and measure our efforts in achieving and maintaining cloud security in environments such as AWS, Azure, GCP and Kubernetes
• Draft and work with engineering teams to implement public cloud security requirements
• Draft and work with the private cloud team to implement private cloud security requirements
• Implement, maintain, and improve existing industry best practices of operational security controls such as audit mechanisms, vulnerability management, data classification, encryption and data security
• Continually evaluate new threats in the cloud, to identify the impact on IT and Business to develop and implement security controls
• Ensure effective coordination between IT Security, Private Cloud, and Infrastructure through collaboration with engineers
• Generates technical recommendations and design options based on assembling all requirements
• Review planned changes to ensure security is considered appropriately
• Perform technical compliance assessments of controls for in-scope systems, including remediation gap and audit-readiness assessments
• Works across multiple teams to balance long-term quality with speed and short-term risks

Skills: Risk Assessments, Cloud Security Architecture Design, Security Effort Prioritization, Public Cloud Security Implementation, Private Cloud Security Implementation, Operational Security Controls, Threat Evaluation, IT Security Coordination

• Help clients create and develop enterprise security use cases that align with their Cloud security strategy and security baseline.
• Design, develop and build security architectures for public, private, and hybrid-based systems within AWS, Microsoft Azure and GCP
• Identify, design and deploy solutions to secure cloud usage
•  Identify, recommend and co-ordinate training sessions to deliver the knowledge other teams need about security-relevant technologies, processes and tools.
• Develops a deep understanding of operational risks and drives the response process to minimize the impact of these risks.
• Develops and supports strategic plans and projects to meet Global Security and SOC goals and objectives.
• Partner, coach, and product owner for infrastructure and development and business teams from planning through deployment & execution of security-related technologies.
• Define and lead the strategy and roadmap to remediate existing technologies against a standard auditable set of security controls.
• Advises leadership with timely intelligence on security issues and/or events.
• Define and manage KPIs and other measurements to indicate the health of security-related programs.
• In addition to technical system and security developments, keeps abreast of changes to existing and proposed local and federal legislation and regulatory laws about information system security and privacy.
• Keeps management aware of the regulatory changes that will affect information privacy, information processing and/or security standards and techniques.

Skills: Enterprise Security Use Cases, Security Architecture Design, Cloud Security Solutions, Security Training Coordination, Operational Risk Management, Strategic Security Planning, Cross-functional Security Partnership, Security Strategy Leadership

• Design and develop security architectures for cloud and hybrid cloud systems.
• Design and implement cloud-native architectures and designs that will meet business requirements and required capabilities within the delicate balance of speed and risk.
• Represent Security in the development and implementation of the overall global enterprise cloud architecture.
• Acts as the ambassador and technical representative for Enterprise Security in the cloud.
• Works with Engineering, Infrastructure Services, Cloud Operations, Enterprise Architecture and Application Development organizations to evaluate and choose appropriate technology solutions and facilitate complete integration into the company environments.
• Shares knowledge and experience across the enterprise by identifying, recommending, coordinating, and producing solution designs promptly.
• Supports and drives the implementation of overall goals and business outcomes as defined by Enterprise Architecture and the Information Security organization.
• Develops standards, patterns, and roadmaps in partnership with other Architecture domains, Engineering, Infrastructure Services, and Application Development.
• Document various artifacts in support of Architecture.
• Identify and lead opportunities to engage, educate, and coordinate other stakeholders, upon which Security and its processes depend.
• Understand Security and company objectives and develop support strategies and how they map to Security Service Offerings.
• Actively participate in incident response activities, taking the lead.
• Identify, evaluate, and manage vendors, service providers and consultants that can support the Company’s Information Security program.

Skills: Cloud Security Architecture Design, Cloud-native Solution Implementation, Enterprise Cloud Architecture Representation, Security Ambassadorship, Technology Solution Evaluation, Knowledge Sharing, Goal-driven Implementation, Standards Development

• Research, develop and contribute to security solutions, support the organization of external penetration tests, conduct threat modelings and define security roadmap
• Promote Global Standards and standard infrastructure services and solutions while supporting audit processes for security and compliance strategies.
• Support in the definition of respective policies.
• Responsibility for the Vulnerability Management with regards to cloud components
• Support our product teams in EMEA, USA, and India in the conceptual development and implementation of security controls for a cloud-native SaaS platform - both at the infrastructure and application level and in close coordination with the CISO and our dedicated platform teams.
• Contribute to the ongoing education of our Security Champions, enable the teams to do self-assessments and threat modeling
• Work with experts from different technological backgrounds and countries, learn from highly experienced colleagues and share the knowledge
• Accountable for the Architecture and Technical lifecycle management of the Cloud & Security product offerings.
• Develop and evangelize a common technology strategy and direction across the Cloud & Security business, linking the detailed technology solution designs into a single vision and roadmap.
• Develop a set of architectural principles, along with a toolset, process and repository structure, to ensure the quality, consistency and effectiveness of the overall technology and service stack.
• Drive incoming demand into a single C&S roadmap aligned with the business planning cycle, taking inputs from across the business and actively researching and promoting new technologies and services.

Skills: Security Solution Development, Penetration Test Support, Threat Modeling, Security Roadmap, Standards Promotion, Audit Support, Policy Definition, Vulnerability Management

• Work with the Product team to design and build Mission security services 
• Provide technical expertise for security and compliance tool selection, process definition, automation creation and staff training
• Support pre-sales conversations with customers as a Security expert
• Understand customer requirements and match customer needs to Mission services
• Build technical documentation about Security services for Sales and Operations teams
• Establish Mission Security benchmarks, standards, and response methods
• Develop a framework for analysts and operation engineers to proactively communicate security best practices, findings, and recommendations to customers
• Be an escalation point during a security incident and response processes
• Provide training to Cloud Engineering teams in security and compliance-related areas
• Provide security expertise and guidance for designing internal Mission platforms and services
• Facilitate structured and rapid decision-making via an Architecture Review Board, informing both technology selection and key investment decisions.
• Lead a high-performing team within Cloud & Security providing guidance and supporting

Skills: Mission Security Service Design, Security Tool Selection, Process Definition, Automation Creation, Staff Training, Pre-sales Security Expertise, Customer Requirement Analysis, Technical Documentation

• Design secure cloud solutions, implementing cybersecurity frameworks such as NIST, and have experience navigating security standards.
• Design and implement secure cloud applications.
• Advise and maintain security standards and internal policies.
• Provide mentoring and coaching to product teams to help further cloud maturity.
• Work with architects to define a vision of technical excellence for Cloud architecture, tools, and processes.
• Work closely with the Nuance Security Office and Hosted Operations for secure and resilient cloud solutions.
• Analyze existing systems and propose software architecture improvements to improve their overall security posture.
• Access architecture and technical assets from product teams and propose a security improvement plan where possible.
• Write detailed designs, and convey intent and ideas to developers.
• Solve complex technical problems/communicate ideas and plans to a diverse set of colleagues, negotiate technical solutions across teams
• Working in a distributed environment with teams around the world.
• Seamlessly shift between multiple, concurrent projects.
• Define KIPs to monitor and improve service levels.

Skills: Secure Cloud Solution Design, Cybersecurity Framework Implementation, Security Standards Navigation, Cloud Application Security, Security Standards Maintenance, Mentoring Product Teams, Cloud Architecture Vision, Secure Cloud Solutions Collaboration

• Report to the Director of Application Security, lead overall security and privacy by design aspects of RingCentral products and applications
• Partner with the Chief Privacy Officer and CPO team to ensure product data handling supports new and emerging privacy regulations and standards
• Collaborate with Product Management, Engineering and Analytics teams to ensure RingCentral products, applications and tools support both security architecture and secure development standards
• Drive adoption of security and privacy-aware SDLC discipline across all organizations
• Identify gaps in existing security architecture and collaborate with engineering to design, review and approve changes or enhancements
• Enforce security guardrails for all RingCentral products and applications
• Lead security risk assessments for proposed cloud and endpoint designs, architectures and solutions
• Partner with application security testing team for tool/automation-based and hands-on testing focus, finding assessment and remediation
• Provide vulnerability remediation design and solutions
• Provide clear, risk-based assessments of product security maturity including areas for improvement and identify stop-ship situations
• Collaborate with Cloud platform and product architecture teams to embed security standards

Skills: Security and Privacy Leadership, Privacy Regulation Compliance, Cross-team Collaboration, Security SDLC Adoption, Security Architecture Enhancement, Security Guardrail Enforcement, Risk Assessments, Security Testing Collaboration

• Work with UKI solutions teams to provide content to drive deals that relate to cloud security transformation in multiple domains from the Design, Build and Operation phases
• Provide demonstration of IBM credentials in Cloud Security Strategy, Risk and Compliance 
• Good understanding of multiple domains IAM, Security Operations Consulting, Application and Data Security and Infrastructure Endpoint, leveraging principles of Zero Trust security architectures, and cloud-native & hybrid security solutions
• Drive security transformation offerings and be a focal point in UKI to help understand existing capabilities, offerings, client references and experiences
• Act as a senior thought leader in cloud security transformation internally in IBM and externally in marketing events and industry conferences
• Sell security solutions to the C-suite and the Board and existing relationships/examples of such interaction
• Work closely with the global, regional and local solution design teams in developing client presentations and SOWs.
• Provide advice and guidance around security solutions, across organisational and governance teams
• Ensure regular, clear and diligent communications with all Adarma and customer project stakeholders and within the team, escalating risks/issues
• Regularly get involved in complex and/or critical consultative engagements
• Design and develop security automation for Azure solutions along with external/internal vendors
• Produce necessary documentation following existing processes and identify potential enhancements.

Skills: Cloud Security Transformation, IBM Credentials Demonstration, Multi-domain Security Expertise, Zero Trust Architectures, Security Solution Selling, Thought Leadership, Client Presentations Development, Security Solution Guidance

• Good experience with cloud infrastructure (e.g. AWS, Azure) and modern software management techniques, such as CI/CD and containerized workloads
• Decent knowledge of secure infrastructure and software architecture, patterns and approaches
• Experience communicating cyber security risks and issues to both senior management and engineering teams
• Applied knowledge of security standards frameworks, such as ISO 27017 or STAR
• A bonus would be working knowledge of Java, and Python and/or experience with data engineering technologies such as Kafka, Flink 
• Autodidact, autonomous and rigorous
• Comfortable working in fast-changing environments
• Knowledge of automation and scripting languages
• Container Orchestration (Kubernetes, Cloud Foundry)
• Experience working with Azure PaaS, Azure networking, and Azure site reliability solutions
• Strong practical knowledge of Windows and Linux server operating systems (on-premises & IaaS)
• Have Microsoft Azure Certification
• Demonstrated experience utilizing verbal and written communication and conversation skills
• Highly skilled negotiator with proven ability to reach mutually satisfactory agreements by using a persuasive communication style

Qualifications: BS in Computer Science with 5 years of Experience 

• Network, Application and Database Security hardening background, Network Hardware Configuration, Network Protocols, Networking Standards, Data analysis capabilities
• AWS Cloud Practitioner, or ASW Solution Architect Certification.
• Security tools familiarity such as Vulnerability/ Network scanners, Firewalls, Intrusion prevention, Data loss prevention, Assessment tools
• Familiarity with NIST Cybersecurity Standards (800-53, 800-171) & FISMA, PCI-DSS, HIPAA Security Standards
• Supervision, Conceptual Skills, Decision Making, Informing Others, Functional and Technical Skills, Dependability, Information Security Policies
• Leadership mindset and proactive and result-oriented
• Effectively collaborate with a variety of stakeholders from top management to technical teams
• Excellent capacity to write, map and document processes as well as have strong communication skills to put these ideas into words
• Advanced knowledge of Application Security Architectures and Guidance
• Bilingual (French/English) is required both orally and written.
• Experience in understanding the cloud architecture patterns and solution design principles
• Experience in implementation of advanced security authentication and single sign-on across cloud and on-premise
• Experience in solution designing expertise with Cloud Security

Qualifications: BS in Computer Engineering with 6 years of Experience 

• Experience in Information Security-focused efforts, with demonstrated ability to distill complex security problems and drive toward creative solutions while complying with Enterprise policies.
• Experience participating with Enterprise executives to establish strategic plans and objectives.
• Demonstrated ability to communicate clearly with all constituents, serving as a mentor and SME.
• Knowledge or experience in translating on-premises security requirements to an elastic Cloud environment.
• Experience in analyzing both detailed design components and high-level architectural blueprints, ensuring compliance with Enterprise policy and guidelines.
• Experience in designing, communicating, and driving security controls matrix that complies with Enterprise-level security standards.
• Experience in designing, analyzing, and implementing testing plans to ensure security guardrails cannot be compromised.
• Experience with automated security validation and event-driven automation.
• A clear understanding of overall systems architecture and how to leverage specific components.
• Understanding of Cloud infrastructure environments and the challenges associated with Enterprise integration, with demonstrated ability to grasp and contribute to big-picture strategy.
• Experience in hands-on roles, with a focus on operational and security-focused tasks.
• Experience with incident detection, incident response and forensics.
• Work experience with Cloud Security
• Experience with Security of Apps, CICD, Infrastructure, Architecture, Firewalls (functionality and maintenance), Office 365 Security, VSX and Endpoint Security.

Qualifications: BS in Information Systems with 8 years of Experience

• Experience designing and implementing new on-premises and Microsoft Azure systems while implementing best practices and industry standards
• Experience migrating on-premises infrastructure to Microsoft Azure cloud
• Experience configuring Microsoft Azure monitoring and alerts for cloud resource availability
• Experience working in environments having different Azure-based PaaS & SaaS services (ASE, Azure Databricks, Azure Database, Azure AD, Azure ADDS, etc)
• Experience working with Azure Infrastructure services (VMs, VNETS, Subnets, etc) deployment
• AZ-900 Microsoft Azure Fundamentals and AZ-300 Microsoft Azure Architect Technologies
• AZ-301 Microsoft Azure Architecture Design and AZ-500 Microsoft Azure Security Technologies
• Have a high degree of knowledge in Azure Active Directory, Roles and Policies
• A high degree of knowledge in IT security
• High degree of knowledge in PaaS and SaaS application performance
• Understand enterprise-level application architecture diagrams
• Demonstrate a strong ability to troubleshoot technical problems and issues
• High degree of knowledge in networking
• Experience planning and executing Azure migrations

Qualifications: BS in Software Engineering with 5 years of Experience 

• Senior experience in IT along with found domain experience in cloud architecture or engineering capacity
• Excellent technical architecture skills, including tiered security architecture design  
• Deep technical knowledge and the ability to translate customer’s requirements to the delivery of a technology or designed architecture
• Understanding of Cloud delivery, security, and deployment models for IaaS, PaaS, and SaaS offerings provided by at least one of Amazon Web Services (AWS), Microsoft Azure and Google Cloud platforms
• Working knowledge of key cloud security standards e.g. NIST, CIS, NCSC, ISO, CSA STAR
• Providing security review of network and system architecture designs
• Understanding of Cloud Access Security Broker (CASB) into SaaS services and integration of CASB to SOC/SIEM services
• Very good command of English (German or other European language)
• Knowledge of SDLC and agile methodologies
• Project and Team management
• Proficiency in Python and Power Shell
• C++, Java, Ruby, Node, Go and the ability to work under pressure in a fast-paced environment.

Qualifications: BS in Systems Engineering with 4 years of Experience

• Experience in architectural design and implementation of the Barracuda Web Application Firewalls and Network Firewalls
• Has working knowledge of additional firewall technologies, including Imperva, Checkpoint, Cisco and F5.
• Experience in designing quality technical security architecture diagrams
• Architectural knowledge of enterprise environments including contemporary operating systems and major database platforms
• Understanding of security requirements and compliance requirements for Cloud implementations
• Deep knowledge of AWS, Azure cloud technologies
• Experience implementing security controls in the cloud e.g., workload protection, Firewalls, endpoint security, SIEM, proxy, IAM and large-scale monitoring.
• Experience with deployment orchestration, automation, and security configuration management
• Good knowledge of software configuration management systems
• Strong business acumen, strategy and cross-industry thought leadership
• Awareness of the latest technologies and Industry trends
• Logical thinking and problem-solving skills along with an ability to collaborate
• Understanding of the financial processes for various types of projects and the various pricing models available
• Client Interfacing skills

Qualifications: BS in Business Information Systems with 6 years of Experience 

• Excellent communication skills to articulate the risks associated with technology choices to technical and non-technical stakeholders
• Be a problem solver and go-getter who strives to meet the objectives of the function and the project
• Architecture skills, ability to think conceptually, and communicate
• Excellent team player who takes the initiative and ownership of assigned items to see them through to completion
• Be a quick learner and adapt to the changing security landscape
• Industry certifications such as CISSP, CRISC, CISM, or cloud security certifications
• Familiarity with architecture frameworks (Zachman Framework, TOGAF)
• Certifications in AWS or Azure environments
• Experience with Microsoft M365 and related security tools
• Experience working within and securing a DevOps environment
• Experience with Agile methodologies, experience securing APIs
• Experience with cloud orchestration or workload automation techniques
• Familiarity with HITRUST CSF, NIST CSF, NIST 800 series, ISO 27001, ITIL

Qualifications: BS in Cloud Computing with 5 years of Experience 

• Willingness to be hands-on with AWS architecting and engineering
• Design/implementation/consulting experience with Security, Compliance, and Risk Management including a mix of hands-on technical work along with compliance and oversight
• Experience with cloud compliance and/or common industry security standards
• Experience building Security documentation packages and leading organizations through Security compliance processes, accreditations, and/or ATO lifecycles
• Demonstrated experience with systems administration and/or engineering in Cloud migration/deployment
• Experience with Server/OS management, Network management, Database and Middleware management
• Experience with enterprise Software Development, Storage and Virtualization management
• Experience in technical architecture or similar experience
• Experience in the information security field or relevant experience
• Subject matter expert for security in one or more cloud environments AWS, GCP, Azure
• Solid knowledge of industry standards (ISO27002, PCI Compliance, NIST/DISA, OWASP)
• Experience in technical hands-on experience on at least one of the following topics: Microsoft security, Network security, Linux security
• Strong knowledge of network design and technologies (TCP/IP stack, VPNs, Firewalls, reverse proxies, PKI and encryption)
• Exposure to programming automation (C#, Python, PHP, Ruby, etc)

Qualifications: BS in Network Security with 7 years of Experience 

• Experience in the security aspects relating to multiple platforms, operating systems, software, communications, and network protocols, or an equivalent combination of education and work experience.
• Experience designing, architecting and securing IaaS, Pass, and SaaS cloud deployments.
• In-depth understanding of cloud cybersecurity standards, frameworks and best practices.
• Exceptional communication and interpersonal skills - including negotiation, facilitation, and consensus-building skills
• Ability to influence and persuade, without direct control.
• In-depth understanding of business operations, objectives and strategies including but not limited to, the insurance industry, financial services, global business and technology trends.
• Experience in infrastructure and architecture management
• Experience in Azure Cloud environment and Azure Active Directory
• Full proficiency with Microsoft Office suite
• Passion and affinity for Cloud technologies (Azure, AWS, GCP,...), 
• Experience with Windows 10, IOS, Android, INTUNE
• Experience with Active Directory / ADFS / MIM / EMS / GPO / PowerShell / PKI
• Experience with Windows Server 2016/2012/2008 R2
• Experience with Azure AD, Azure AD Connect, AIP, ATA
• Experience with O365 migrations

Qualifications: BS in Computer Engineering with 10 years of Experience 

• An understanding of the impact of emerging business and end-user technologies on information security requirements and architecture
• Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
• Demonstrated technical expertise in existing security and IT systems, and an ability to keep pace with changing security and IT technologies
• Strong interpersonal skills, with an emphasis on the ability to effectively influence others
• A team-focused mentality with the proven ability to work effectively with diverse stakeholders
• An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood, authoritative and actionable manner
• Network technologies such as next-generation firewalls, IDS, IPS, WAF, routing, switching, SDN
• Data loss prevention tools at the network and endpoint layers
• Cloud services such as cloud-based email, enterprise file sync and share, cloud access security brokers (CASB), IAAS, PAAS, SAAS, and hybrid implementations
• Mobile and endpoint: Enterprise mobility management including MDM and MAM; endpoint security - anti-malware, encryption.
• Enterprise security tools such as identity and access management, multi-factor authentication, privileged access management, malware and endpoint protection, threat and vulnerability management, threat intelligence, and security incident and event management tools
• Great awareness of cybersecurity trends and hacking techniques.
• Strong attention to detail with an analytical mind and outstanding problem-solving skills.

Qualifications: BS in Software Engineering with 5 years of Experience