Cloud Security Practice Lead

About NeudesicPassion for technology drives us, but it's innovation that defines usFrom design to development and support to management, Neudesic offers decades of experience, proven frameworks and a disciplined approach to quickly deliver reliable, quality solutions that help our customers go to market faster.What sets us apart from the rest, is an amazing collection of people who live and lead with our core values. We believe that everyone should be Passionate about what they do, Disciplined to the core, Innovative by nature, committed to a Team and conduct themselves with Integrity. If these attributes mean something to you - we'd like to hear from you.Role ProfileWe are currently seeking an Azure Security Leader to become a key member of Neudesic's Cloud Security Practice. This role will support both national and global initiatives. The ideal candidate has extensive senior-level knowledge and experience in designing, migrating, and implementing complex security solutions and operations on the Azure Cloud platform. This leadership position is customer-facing and will work closely with market leadership on both technical sales pursuits and technical delivery oversight, with an emphasis on driving our security offerings across different regions globally.The Azure Security Leader will collaborate with Product Owners, Applications Owners, Network and Security teams to design and deliver optimal solutions for large-scale app and infrastructure cloud solutions. Candidates should possess proficiency in both public and hybrid cloud models. Exceptional consulting skills and the ability to clearly derive desired states from customer requests are essential. The role also requires the ability to work with delivery teams and support the sales process from a technical excellence standpoint, ensuring our services meet global standards and requirements. Importantly, this role is hands-on in delivery, requiring active involvement in the implementation and execution of security solutions.Responsibilities:Cloud Security design, operations, and automation experienceCloud Presales, and Estimating experience working with Customers and Account Teams (Sales, Solutions and Delivery)Manage and mentor and lead a group of Cloud Security consultants (Architects and Engineers) on customer engagements with Delivery Team and advise on career paths.Design and deploy highly available, scalable, and secure cloud infrastructure and apps with a focus on Azure Cloud.Design and develop automation to build cloud security accelerators and IP.Experience with Security Operations teams to build and maintain SIEM, SOAR and XDR technology.Analyze and resolve configuration issues in development, test, and production environments.Familiar with major security compliance frameworks and building effective monitoring, logging, and auditing of production systems to ensure compliance with mandated compliance policies (e.g., NIST, HIPAA, PII, SOX, PCI, CMMC, CUI, etc.....).Experience implementing secure (zero trust) infrastructure in cloud.Security experience with state and local government customersOpen to Travel as needed to customer engagementsKey Technology requirements:CISSP - Certified Information Systems Security Professional (Preferred and will be required within 1 year of hire)SC100 - Microsoft Cybersecurity Architect (Preferred and will be required within 1 year of hire)Experience designing Azure solutions leveraging:1) (SIEM) Security Incident and Event Management2) (SOAR) Security Orchestration Automation and Response3) (XDR) Extended Detection and Response4) Security Operations and Design5) Security Planning and Management6) Security AutomationExperience and knowledge of secure development practices1) Hardening the software supply chain2) DevOps secure patterns 3) SAST and DAST Tooling 4) Familiar with Azure DevOps, Visual Studio Team Server (VSTS), Jenkins, Github, Octopus DeployExperience with Azure security technologies such as Defender, Security Manager, Sentinel, and Policy ManagerCloud Infrastructure Azure patterns for Compute, Network, Security, Identity, Data Management, Policy and controls, Service recovery, and Deployment models.Cloud Management: Policy, RBAC roles, Cost Management, Monitor and Alerting, Site Recovery, Disaster RecoveryOn-premises infrastructure: Active Directory, DNS, VMWare, Hyper-V, firewalls, routingIdentity and user management solutions provided by Azure or 3rd partyExperience with Automation scripting including PowerShell/Python or other configuration as code toolsDeployment automation languages and tools such as JSON Template, Terraform, Ansible or othersExperience with Azure and 3rd party monitoring tools and firewall devicesExperience with Windows and Linux-based operating system configuration, automation, and managementExtensive experience dealing with Sensitive Data information systemsTechnology Plus: (Ideal candidate similar to below level - but "not required"):Professional information security certification: ISC2, CISM, CRISC, SANS, GIAC, or similarStrong Microsoft Azure Cloud design and hands-on experience solutioning with customersMicrosoft Azure Certified - Exam MS500 - Microsoft 365 Security AdministrationMicrosoft Azure Certified - Exam AZ500 - Azure Security Engineer AssociateMicrosoft Azure Certified - Exam SC200 - Microsoft Security Operations AnalystMicrosoft Azure Certified - Exam SC300 - Microsoft Identity and Access AdministratorMicrosoft Azure Certified - Exam SC100 - Microsoft Cybersecurity ArchitectMicrosoft Azure Certified - Exam AZ-305: Designing Microsoft Azure Infrastructure SolutionsMicrosoft Azure Certified - Exam SC-200: Microsoft Security Operations AnalystHands-on Experience with Terraform and/or Bicep but ARM scripting a must (Python a plus)Accommodations currently remain in effect for Neudesic employees to work remotely, provided that remote work is consistent with the work patterns and requirements of their team's management and client obligations. Subject to business needs, employees may be required to perform work or attend meetings on-site at a client or Neudesic location.Phishing Scam NoticePlease be aware of phishing scams involving fraudulent career recruiting and fictitious job postings; visit our Phishing Scams page to learn more.Neudesic is an Equal Opportunity EmployerAll employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.Neudesic is an IBM subsidiary which has been acquired by IBM and will be integrated into the IBM organization. Neudesic will be the hiring entity. By proceeding with this application, you understand that Neudesic will share your personal information with other IBM companies involved in your recruitment process, wherever these are located. More Information on how IBM protects your personal information, including the safeguards in case of cross-border data transfer, are available here:

Created: 2025-01-15