Overview
On Site
Hybrid
90-95/hr
Contract - W2
Skills
IT Management
Strategic Management
IaaS
Risk Management
Security Operations
Risk Assessment
Threat Modeling
Access Control
RBAC
SSO
Multi-factor Authentication
Stakeholder Engagement
DevOps
Embedded Systems
Legal
Optimization
Regulatory Compliance
HIPAA
System On A Chip
Auditing
Training
Cloud Architecture
SaaS
Innovation
Research
Continuous Improvement
ROOT
Computer Science
Information Security
IT Security
Security Controls
Microsoft
Information Systems
CISSP
Security Architecture
Network Security
Identity Management
Incident Management
Google Cloud
Google Cloud Platform
Microsoft Azure
Amazon Web Services
Terraform
Ansible
Vulnerability Management
Encryption
Cloud Computing
Leadership
Collaboration
Management
Cloud Security
Communication
Job Details
The Senior Manager Cloud Security will lead the strategic direction, execution, and continuous improvement of Company's cloud security posture across Google Cloud and Microsoft Azure environments. This role is responsible for overseeing the development, deployment, and management of cloud security strategies and solutions that ensure the integrity, confidentiality, and availability of our systems and data. The Senior Manager will work closely with other IT and business leaders to define security best practices, manage risk, and ensure that our cloud infrastructure is secure, compliant, and optimized for performance.
The ideal candidate will possess deep expertise in cloud security, with hands-on experience in securing both Google Cloud and Azure environments. In addition to technical leadership, this role requires a strong ability to influence and collaborate with stakeholders across the organization, ensuring alignment between security, business objectives, and cloud initiatives.
YOU'LL ACCOMPLISH THESE GOALS BY:
Cloud Security Strategy & Governance:
oDefine and execute the strategic direction for cloud security across Google Cloud and Azure environments.
oEstablish governance frameworks, security policies, and best practices for securing cloud workloads, services, and data.
oAlign cloud security initiatives with Company s broader security and business goals, ensuring compliance with industry regulations and internal standards.
Cloud Infrastructure Security:
oLead the design, implementation, and ongoing management of security controls within Google Cloud and Azure, including network security, identity and access management (IAM), encryption, threat detection, and vulnerability management.
oOversee the integration of security tools and platforms to monitor and protect cloud environments, ensuring that cloud resources are securely configured, optimized, and compliant.
Cloud Security Incident Response & Risk Management:
oDevelop and lead incident response strategies for cloud environments, ensuring that any security events in Google Cloud and Azure are swiftly addressed.
oWork closely with the security operations team to identify, assess, and mitigate cloud-specific risks, and lead the response to potential threats or vulnerabilities.
oParticipate in regular risk assessments and threat modeling to proactively address potential weaknesses in the cloud security architecture.
Identity and Access Management (IAM):
oLead the development and management of IAM strategies across cloud environments, ensuring robust access controls and least-privilege principles are enforced in both Google Cloud and Azure.
oImplement and manage role-based access controls (RBAC), single sign-on (SSO), multi-factor authentication (MFA), and privileged access management (PAM) to protect critical cloud resources.
Collaboration & Stakeholder Engagement:
oAct as the cloud security subject matter expert, collaborating with cross-functional teams including IT, DevOps, engineering, and compliance to ensure security is embedded throughout the development lifecycle.
oWork closely with internal and external auditors, regulators, and legal teams to ensure adherence to security and compliance requirements across cloud environments.
Primary Responsibilities:
Cloud Security Automation & Optimization:
oLead initiatives to automate cloud security controls and processes, using tools like Terraform, CloudFormation, or other infrastructure-as-code (IaC) solutions to enforce security configurations in Google Cloud and Azure.
oContinuously assess and optimize security performance and efficiency in cloud platforms, utilizing cloud-native security tools like Google Cloud Security Command Center and Azure Security Center.
Cloud Compliance & Regulatory Management:
oEnsure that cloud environments comply with applicable regulatory requirements, such as GDPR, CCPA, HIPAA, and SOC 2, and guide the organization through relevant cloud security audits.
oLead the implementation of security frameworks like CIS Benchmarks or NIST CSF in both Google Cloud and Azure.
Cloud Security Training & Awareness:
oDevelop and deliver training programs to upskill internal teams on cloud security best practices, secure cloud architecture, and threat detection in Google Cloud and Azure.
oFoster a security-first culture within the organization, ensuring that cloud security considerations are integrated into all stages of the cloud application lifecycle.
Cloud Security Research & Innovation:
oStay ahead of evolving threats and trends in cloud security, continuously evaluating new tools, technologies, and methodologies to improve Company s cloud security posture.
oConduct research on emerging cloud security threats and recommend solutions to mitigate risks before they impact the organization.
Incident Postmortem & Continuous Improvement:
oLead post-incident reviews to analyze cloud security breaches or near-misses and ensure that corrective actions are taken to strengthen the overall security framework.
oDrive continuous improvement in the cloud security program by analyzing incident data, identifying root causes, and updating processes and tools accordingly.
ESSENTIALS FOR SUCCESS:
Educational Background:
oBachelor s degree in Computer Science, Information Security, or related field, or equivalent professional experience.
Experience:
o8+ years of experience in IT security, with at least 5 years focused on cloud security in Google Cloud and Azure environments.
oProven experience leading cloud security initiatives, implementing security controls, and managing security risk in cloud environments.
Certifications:
oProfessional certifications such as Google Professional Cloud Security Engineer, Microsoft Certified: Azure Security Engineer, Certified Information Systems Security Professional (CISSP), or equivalent are strongly preferred.
Technical Skills:
oExtensive knowledge of cloud security best practices, including security architecture, network security, identity management, and incident response in Google Cloud and Azure.
oHands-on experience with cloud-native security tools like Google Cloud Security Command Center, Azure Security Center, CloudTrail, and AWS GuardDuty.
oFamiliarity with tools for automating cloud security (e.g., Terraform, CloudFormation, Ansible).
oExperience with vulnerability management, encryption, and threat detection in cloud environments.
Leadership and Collaboration Skills:
oProven ability to lead and manage cross-functional teams, guiding both technical and non-technical stakeholders on cloud security best practices.
oStrong communication skills, with the ability to present complex security topics to executives, auditors, and technical teams.
The ideal candidate will possess deep expertise in cloud security, with hands-on experience in securing both Google Cloud and Azure environments. In addition to technical leadership, this role requires a strong ability to influence and collaborate with stakeholders across the organization, ensuring alignment between security, business objectives, and cloud initiatives.
YOU'LL ACCOMPLISH THESE GOALS BY:
Cloud Security Strategy & Governance:
oDefine and execute the strategic direction for cloud security across Google Cloud and Azure environments.
oEstablish governance frameworks, security policies, and best practices for securing cloud workloads, services, and data.
oAlign cloud security initiatives with Company s broader security and business goals, ensuring compliance with industry regulations and internal standards.
Cloud Infrastructure Security:
oLead the design, implementation, and ongoing management of security controls within Google Cloud and Azure, including network security, identity and access management (IAM), encryption, threat detection, and vulnerability management.
oOversee the integration of security tools and platforms to monitor and protect cloud environments, ensuring that cloud resources are securely configured, optimized, and compliant.
Cloud Security Incident Response & Risk Management:
oDevelop and lead incident response strategies for cloud environments, ensuring that any security events in Google Cloud and Azure are swiftly addressed.
oWork closely with the security operations team to identify, assess, and mitigate cloud-specific risks, and lead the response to potential threats or vulnerabilities.
oParticipate in regular risk assessments and threat modeling to proactively address potential weaknesses in the cloud security architecture.
Identity and Access Management (IAM):
oLead the development and management of IAM strategies across cloud environments, ensuring robust access controls and least-privilege principles are enforced in both Google Cloud and Azure.
oImplement and manage role-based access controls (RBAC), single sign-on (SSO), multi-factor authentication (MFA), and privileged access management (PAM) to protect critical cloud resources.
Collaboration & Stakeholder Engagement:
oAct as the cloud security subject matter expert, collaborating with cross-functional teams including IT, DevOps, engineering, and compliance to ensure security is embedded throughout the development lifecycle.
oWork closely with internal and external auditors, regulators, and legal teams to ensure adherence to security and compliance requirements across cloud environments.
Primary Responsibilities:
Cloud Security Automation & Optimization:
oLead initiatives to automate cloud security controls and processes, using tools like Terraform, CloudFormation, or other infrastructure-as-code (IaC) solutions to enforce security configurations in Google Cloud and Azure.
oContinuously assess and optimize security performance and efficiency in cloud platforms, utilizing cloud-native security tools like Google Cloud Security Command Center and Azure Security Center.
Cloud Compliance & Regulatory Management:
oEnsure that cloud environments comply with applicable regulatory requirements, such as GDPR, CCPA, HIPAA, and SOC 2, and guide the organization through relevant cloud security audits.
oLead the implementation of security frameworks like CIS Benchmarks or NIST CSF in both Google Cloud and Azure.
Cloud Security Training & Awareness:
oDevelop and deliver training programs to upskill internal teams on cloud security best practices, secure cloud architecture, and threat detection in Google Cloud and Azure.
oFoster a security-first culture within the organization, ensuring that cloud security considerations are integrated into all stages of the cloud application lifecycle.
Cloud Security Research & Innovation:
oStay ahead of evolving threats and trends in cloud security, continuously evaluating new tools, technologies, and methodologies to improve Company s cloud security posture.
oConduct research on emerging cloud security threats and recommend solutions to mitigate risks before they impact the organization.
Incident Postmortem & Continuous Improvement:
oLead post-incident reviews to analyze cloud security breaches or near-misses and ensure that corrective actions are taken to strengthen the overall security framework.
oDrive continuous improvement in the cloud security program by analyzing incident data, identifying root causes, and updating processes and tools accordingly.
ESSENTIALS FOR SUCCESS:
Educational Background:
oBachelor s degree in Computer Science, Information Security, or related field, or equivalent professional experience.
Experience:
o8+ years of experience in IT security, with at least 5 years focused on cloud security in Google Cloud and Azure environments.
oProven experience leading cloud security initiatives, implementing security controls, and managing security risk in cloud environments.
Certifications:
oProfessional certifications such as Google Professional Cloud Security Engineer, Microsoft Certified: Azure Security Engineer, Certified Information Systems Security Professional (CISSP), or equivalent are strongly preferred.
Technical Skills:
oExtensive knowledge of cloud security best practices, including security architecture, network security, identity management, and incident response in Google Cloud and Azure.
oHands-on experience with cloud-native security tools like Google Cloud Security Command Center, Azure Security Center, CloudTrail, and AWS GuardDuty.
oFamiliarity with tools for automating cloud security (e.g., Terraform, CloudFormation, Ansible).
oExperience with vulnerability management, encryption, and threat detection in cloud environments.
Leadership and Collaboration Skills:
oProven ability to lead and manage cross-functional teams, guiding both technical and non-technical stakeholders on cloud security best practices.
oStrong communication skills, with the ability to present complex security topics to executives, auditors, and technical teams.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.