Assess, review and design secure Cloud solutions working with various business teams and groups.
Promote Cloud security awareness in interactions with other teams.
Use a data centric risk-based approach to cloud security and solutions.
Define and create Cloud Security architectural standards, artifacts, design patterns and technical specification documents for the enterprise.
Assess, monitor and recommend Cloud security improvements and best practices to improve security posture, mitigate risks and balance costs.
Work closely with the Cloud enterprise architecture and Cloud security engineering team member(s) to ensure Cloud platforms are securely configured.
Oversee and consult with project teams in business units to ensure adherence to Cloud security design patterns and best practices.
Engage with M&A teams to integrate acquired resources into the Gallagher Gloud.
Design, collaborate and provide Cloud options for solutions that balance business requirements with information security requirements.
Proactively identify technical and architectural risks for current or proposed state, commenting and/or providing Cloud alternatives for consideration that will improve on capabilities, champion to present for approval and change.
Participate in security technology evaluations, proof of concept testing and provide in-depth analysis of the proposed solution.
Collaborate and partner with various key stakeholders across the enterprise to ensure alignment with the overall intended design.
Partner with architects and engineers within infrastructure, network, application and business teams to ensure that solutions are developed and managed as per GCIS policies and standards.
Assists with risk mitigation and governance activities aligned with Cloud security architecture compliance.
Enable architectural leadership within engaged and assigned forums and projects, acting as a guide by example for collaboration, thought leadership and expertise in Cloud security architecture.
Requirements & Skills:
Bachelor’s degree or equivalent in Computer Science or related field
Minimum 3+ years working with Microsoft Azure
Minimum 3+ years of cybersecurity experience
2+ years of experience working with other cloud platforms (AWS, GCP, Oracle)
Minimum 1+ years of experience reviewing detailed solution architectures and providing feedback to the application and infrastructure teams.
Experience with reviewing and developing Cloud solution-enabled models.
Minimum 1+ years of experience with multi-cloud security and aligning policies across platforms.
Demonstrated working experience in a regulated and globally distributed environment.
Knowledge and experience in enterprise architecture frameworks such as TOGAF.
Knowledge and experience implementing security standards frameworks (NIST – CSF, ISO 27001, CSA CCM, PCI-DSS, GDPR)
Proven success recommending and implementing Cloud security architecture best practices and standards for large projects or programs delivering or migrating to Cloud solutions and services.
At least one certification related to information security such as; CISSP, CCSP, CCSK, AWS Solutions Architect, Azure Security.
Demonstrated knowledge of multi-cloud environment security.
2+ years experience in a global organization
Insurance and risk management domain knowledge is desirable.
