Logo
Neudesic, an IBM Company

Cloud Security Lead

Neudesic, an IBM Company, Houston, Texas, United States


About Neudesic Passion for technology drives us, but it’s innovation that defines us . From design to development and support to management, Neudesic offers decades of experience, proven frameworks and a disciplined approach to quickly deliver reliable, quality solutions that help our customers go to market faster. What sets us apart from the rest, is an amazing collection of people who live and lead with our core values. We believe that everyone should be Passionate about what they do, Disciplined to the core, Innovative by nature, committed to a Team and conduct themselves with Integrity. If these attributes mean something to you - we'd like to hear from you. Role Profile We are currently seeking an Azure Security Leader to become a key member of Neudesic’s Cloud Security Practice. This role will support both national and global initiatives. The ideal candidate has extensive senior-level knowledge and experience in designing, migrating, and implementing complex security solutions and operations on the Azure Cloud platform. This leadership position is customer-facing and will work closely with market leadership on both technical sales pursuits and technical delivery oversight, with an emphasis on driving our security offerings across different regions globally. The Azure Security Leader will collaborate with Product Owners, Applications Owners, Network and Security teams to design and deliver optimal solutions for large-scale app and infrastructure cloud solutions. Candidates should possess proficiency in both public and hybrid cloud models. Exceptional consulting skills and the ability to clearly derive desired states from customer requests are essential. The role also requires the ability to work with delivery teams and support the sales process from a technical excellence standpoint, ensuring our services meet global standards and requirements. Importantly, this role is hands-on in delivery, requiring active involvement in the implementation and execution of security solutions. Responsibilities: Cloud Security design, operations, and automation experience Cloud Presales, and Estimating experience working with Customers and Account Teams (Sales, Solutions and Delivery) Manage and mentor and lead a group of Cloud Security consultants (Architects and Engineers) on customer engagements with Delivery Team and advise on career paths. Design and deploy highly available, scalable, and secure cloud infrastructure and apps with a focus on Azure Cloud. Design and develop automation to build cloud security accelerators and IP. Experience with Security Operations teams to build and maintain SIEM, SOAR and XDR technology. Analyze and resolve configuration issues in development, test, and production environments. Familiar with major security compliance frameworks and building effective monitoring, logging, and auditing of production systems to ensure compliance with mandated compliance policies (e.g., NIST, HIPAA, PII, SOX, PCI, CMMC, CUI, etc…). Experience implementing secure (zero trust) infrastructure in cloud. Security experience with state and local government customers Open to Travel as needed to customer engagements Key Technology requirements: CISSP - Certified Information Systems Security Professional (Preferred and will be required within 1 year of hire) SC100 - Microsoft Cybersecurity Architect (Preferred and will be required within 1 year of hire) Experience designing Azure solutions leveraging: 1) (SIEM) Security Incident and Event Management 2) (SOAR) Security Orchestration Automation and Response 3) (XDR) Extended Detection and Response 4) Security Operations and Design 5) Security Planning and Management 6) Security Automation Experience and knowledge of secure development practices 1) Hardening the software supply chain 2) DevOps secure patterns 3) SAST and DAST Tooling 4) Familiar with Azure DevOps, Visual Studio Team Server (VSTS), Jenkins, Github, Octopus Deploy Experience with Azure security technologies such as Defender, Security Manager, Sentinel, and Policy Manager Cloud Infrastructure Azure patterns for Compute, Network, Security, Identity, Data Management, Policy and controls, Service recovery, and Deployment models. Cloud Management: Policy, RBAC roles, Cost Management, Monitor and Alerting, Site Recovery, Disaster Recovery On-premises infrastructure: Active Directory, DNS, VMWare, Hyper-V, firewalls, routing Identity and user management solutions provided by Azure or 3rd party Experience with Automation scripting including PowerShell/Python or other configuration as code tools Deployment automation languages and tools such as JSON Template, Terraform, Ansible or others Experience with Azure and 3rd party monitoring tools and firewall devices Experience with Windows and Linux-based operating system configuration, automation, and management Extensive experience dealing with Sensitive Data information systems Technology Plus: (Ideal candidate similar to below level - but “not required”): Professional information security certification: CISSP, ISC2, CISM, CRISC, SANS, GIAC, or similar Strong Microsoft Azure Cloud design and hands-on experience solutioning with customers Microsoft Azure Certified – Exam MS500 - Microsoft 365 Security Administration Microsoft Azure Certified – Exam AZ500 - Azure Security Engineer Associate Microsoft Azure Certified – Exam SC200 - Microsoft Security Operations Analyst Microsoft Azure Certified – Exam SC300 - Microsoft Identity and Access Administrator Microsoft Azure Certified – Exam SC100 - Microsoft Cybersecurity Architect Microsoft Azure Certified – Exam AZ-305: Designing Microsoft Azure Infrastructure Solutions Microsoft Azure Certified – Exam SC-200: Microsoft Security Operations Analyst Hands-on Experience with Terraform and/or Bicep but ARM scripting a must (Python a plus) Accommodations currently remain in effect for Neudesic employees to work remotely, provided that remote work is consistent with the work patterns and requirements of their team’s management and client obligations. Subject to business needs, employees may be required to perform work or attend meetings on-site at a client or Neudesic location. Phishing Scam Notice Please be aware of phishing scams involving fraudulent career recruiting and fictitious job postings; visit our Phishing Scams page to learn more. Neudesic is an Equal Opportunity Employer All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Neudesic is an IBM subsidiary which has been acquired by IBM and will be integrated into the IBM organization. Neudesic will be the hiring entity. By proceeding with this application, you understand that Neudesic will share your personal information with other IBM companies involved in your recruitment process, wherever these are located. More Information on how IBM protects your personal information, including the safeguards in case of cross-border data transfer, are available here: https://www.ibm.com/us-en/privacy?lnkflg-priv-usen