Responsibilities
- Evaluate existing security capabilities, pinpoint control deficiencies, and create realistic improvement plans that support business objectives.
- Lead and assist in reviewing security designs across cloud environments, applications, networks, identity and access management, data protection, and threat detection systems.
- Deliver expert guidance on security strategies, risk mitigation, control implementation, and enhancements to security operating models.
- Question inadequate security approaches confidently, using data-driven insights and clear communication for both technical and executive audiences.
- Develop and assess secure cloud environments, network architectures, identity frameworks, monitoring configurations, and security guardrails.
- Collaborate with engineering, platform, DevOps, and operations teams to integrate security into automated delivery processes and infrastructure-as-code workflows.
- Assist in strengthening threat detection capabilities, incident response preparedness, tuning of detection rules, and post-incident analysis for improvement.
- Help develop security standards, policies, design patterns, reusable tools, and client deliverables such as risk assessments, risk logs, and executive reports.
