Security Consultant Cloud Security Services

Introduction

The Digital Security Managing Consultant will be responsible for assessing and developing security design and implementation of digital security services for our clients in KSA. This requires demonstrating thought leadership, delivery expertise and wide understanding of cloud native as well as hybrid/3rd party security controls.

This role mainly focuses on how to assist IBM clients with the transformation in Cloud Security, IAM, security for cloud, workloads, data security, network and infrastructure. These cover a range of cloud service models deployed across private, public, hybrid and/or multi-cloud (off and on-prem) environments, and on major hyperscalers such as Microsoft Azure & M365, Amazon Web Services (AWS), and Google Cloud Platform.

You’ll engage clients and work to understand their business needs, works in levels of abstraction, apply industry knowledge, and leverage the appropriate business elements and information technology to address those needs. In addition, advise clients in understanding the desired future IAM landscape and work collaboratively with them to develop a roadmap to achieve this goal and become a trusted advisor.

Your Role And Responsibilities

Responsible for managing all the activities related to delivering a digital security solution for the duration of their engagement, including but not limited to:

• Consulting – comfortable in facilitating workshops, giving presentations, producing high quality deliverables and managing large delivery engagements.
• Leadership - supporting all aspects of the solution, consulting colleagues, the technical team, managing client requirements and linking those requirements to IBMs solution,
• Creating & delivering the solution element of Cloud & Data Security and IAM proposals, this could be administrative, operational or technical,
• Supporting the definition and creation of a solution that meets the client’s requirements,
• Understanding the Digital Security Posture of the client, including their drivers and appetite, risk, legal, regulatory and compliance drivers for the client
• Providing visibility and understanding the functional and non-functional requirements of the solution
• Assisting client facing colleagues with responding to requests for proposals
• Detailed knowledge of architecting and delivery of cloud native delivery methods and blueprints, security and deployment models for IaaS, PaaS, and SaaS across one or more hyperscalers.
• Delivery should centre around adopting agile approach, leveraging automation across infrastructure security via IaC (Infrastructure as a Code) driven approach.
• Working with global and local teams, help organize project approaches and teams for client delivery.
• Help resolve program issues as they arise with senior leadership
• Good understanding of cloud architecture and industry standards are required
• Establish strong client relationships in key accounts to help progress the Security Services portfolio
  
  

• Contribute content and advice to the offering development process
• Help establish capability and skills models for the core domain, partner with wider team to develop expertise
  
  

• One hyperscaler, security specialist certifications preferred and
• one leading security certificate like CISA, CISSP, CISM, etc.
• Working experience of industry compliance and security standards including KSA NCA ECC, CSA CSM, PCI DSS, ISO 27001, NIST, CIS, etc.
• Working experience in conducting security architecture and configuration reviews leveraging Zero Trust Security principles to identify security gaps and develop high-quality assessment reports.
• Extensive knowledge in security solutions such as IAM, Data Protection, SASE, ZTNA, SWG, DLP, NGFW, IPS, DDoS, WAF, API Security, Micro-segmentation, Email Security, and Endpoint Security Solutions.
• Develop high-quality security projects design documentation, etc.
• Working experience on cloud service models (IaaS, PaaS, SaaS etc), infrastructure and technology
• Background knowledge to KSA NCA ECC and other regulations and standards related to the cloud (e.g. ISO/IEC 27018)
• Extensive track record in delivering large-scale, complex and multi-year security transformation programs / projects in various capacities (e.g. cloud security architect, senior delivery/technical lead)
• Experience working across diverse teams to facilitate solutions
• Readiness to travel 25-50%
• At least 5 years’ experience in working in international deployment roles and interlocking with client on hybrid/multi cloud security engagements
• At least 8 years’ experience in working with security consulting and/or architecture roles
• At least 12 years’ experience overall, across IT and Cyber Security.
• English: Fluent.
  
  

• One hyperscaler, security specialist certifications preferred and
• one leading security certificate like CISA, CISSP, CISM, etc.
• Working experience of industry compliance and security standards including KSA NCA ECC, CSA CSM, PCI DSS, ISO 27001, NIST, CIS, etc.
• Working experience in conducting security architecture and configuration reviews leveraging Zero Trust Security principles to identify security gaps and develop high-quality assessment reports.
• Extensive knowledge in security solutions such as IAM, Data Protection, SASE, ZTNA, SWG, DLP, NGFW, IPS, DDoS, WAF, API Security, Micro-segmentation, Email Security, and Endpoint Security Solutions.
• Develop high-quality security projects design documentation, etc.
• Working experience on cloud service models (IaaS, PaaS, SaaS etc), infrastructure and technology
• Background knowledge to KSA NCA ECC and other regulations and standards related to the cloud (e.g. ISO/IEC 27018)
• Extensive track record in delivering large-scale, complex and multi-year security transformation programs / projects in various capacities (e.g. cloud security architect, senior delivery/technical lead)
• Experience working across diverse teams to facilitate solutions
• Readiness to travel 25-50%
• At least 5 years’ experience in working in international deployment roles and interlocking with client on hybrid/multi cloud security engagements
• At least 8 years’ experience in working with security consulting and/or architecture roles
• At least 12 years’ experience overall, across IT and Cyber Security.
• English: Fluent.