GRC Cloud Lead Consultant

company banner
The Judge Group, Inc.
Agile, Analysis, Analyst, Automated, Consulting, Development, Excel, HTTP, Management, Modeling, MS Office, PowerPoint, Project, Project Management, Scrum, SDLC, Security, Testing
C2H Independent, Contract Independent, Contract W2, Contract Corp-To-Corp, C2H W2, C2H Corp-To-Corp
Work from home not available Travel not required

Job Description


Location: Irving, TX
Salary: $110K to $115k
Description:

Location: ** In addition to Irving, TX, we are open to candidates in the following markets to work from our local offices: Charlotte, NC, Chicago, IL, & Phoenix, AZ. Strong qualified candidates in other US geographic markets will also be given consideration as potential home-based professionals .**


Job Description:

  • Candidates need to possess strong AWS experience particularly when it comes to cloud security governance & compliance.
  • This is your chance to join the team responsible for helping to integrate security into the development of the client-s cloud based applications that run and support the largest publicly held personal-lines insurer, which insures more than 17 million households with over 32 billion in annual revenues and 37,000+ employees internationally. The GRC Cloud Consultant will be part of the client-s Information Security - Assurance, Policy, Monitoring & Reporting (AIS-APMR) team and lead Cloud Information Security Governance activities. This includes working closely with the product, software, and infrastructure development teams to implement best practices within the cloud based environments. The individual will work closely with developers and system architects to diagnose, document, solution, and remediate any deviations from governance standards. Additional responsibility includes contributing to the evaluation, recommendations, and implementations of cloud security controls in an automated continuous integration/deployment environment.
  • In addition, this individual will have extensive client interactions relating to technical security controls with a wide range of technology-based functions and business groups. Relevant skills include an understanding of business/technology risk, thought leadership in designing and executing cloud / technology controls that mitigate those risks, and ability to keep up-to date with the latest technologies and potential cyber-threats.
  • A broad range of professional skills along with strong interpersonal skills will be required for problem-solving, collaboration with virtual cross-functional work groups, along with tracking and reporting of critical gaps to closure & final resolution. He/she is expected serve as a trusted advisor that can clearly articulate Allstate security policies, standards, and guidelines to both technical and business audiences alike.


Key Responsibilities:

  • Work closely with Application Development, Cloud, Governance, and Compliance teams to help formulate and implement a strategy for cloud based security that is tailored to the specific risks facing the organization, including threat modeling and applications security advisement services.
  • Develop and maintain a balanced cloud security governance framework based on industry standards.
  • Ensure compliance with society, regulatory, and industry standards for cloud based security.
  • Continuously evaluate the organization-s existing cloud security practices, define and measure security-related activities, and demonstrating improvements to the cloud programs within the organization.
  • Evaluate business strategies, requirements, and user needs, existing usage cloud platforms, technical capabilities, and overall cloud application maturity, and provides strategic guidance and best-practices based recommendations for implementing governance boards and proven best practices for cloud based application/platform development, deployment, and support.
  • Support lead security consultants in promoting and consulting on the positions that help strengthen and secure the organization by either following standards or helping direct others on technology positions.
  • Help facilitate review of changes in company processes, standards and technology to ensure the effectiveness of security controls to meet compliance requirements.
  • Help consult with stakeholders on requirements for new and existing business / technology solutions to assure compliance to compliance frameworks and internal standards and governing policies and procedures.
  • Responsible for building effective working relationships, making sound decisions, successfully making changes, initiating action and achieving results as a trusted advisor.


Job Qualifications:

  • 5+ years' experience in secure application/platform development and security
  • 3+ years' project management, consulting, and/or application security analyst experience
  • Strong understanding of cloud security governance & experience establishing cloud security governance across an organization
  • Practical understanding and use of cloud computing and cloud security tools
  • Strong self-starter who has ability to operate independently and demonstrates complete ownership over assigned objectives
  • Strong understanding of IT security best practices by applying depth and breadth of expertise in multiple related disciplines
  • Understanding of Agile/XP/Scrum/Kanban, Test Driven Development built on User Stories and Continuous Integration/Testing/Delivery
  • Demonstrated success at leading cross-functional projects leveraging SDLC methodology. Basic knowledge of Security Analysis (manual and leveraging automated scanning tools)
  • Excellent oral/written presentation skills with ability to communicate effectively with senior executive leadership; proficiency in preparation of presentations, analytical reports, and documents regarding program operational status, achievement and performance
  • Strong organizational skills, ability to effectively manage multiple, competing projects/priorities while achieving targeted completion results
  • Ability to stay up to date with current cybersecurity threat landscape to account for changing circumstances when evaluating security risks
  • Ability to maintain technical proficiency via self or formal training
  • Proficient in MS Office Suite (Word, Excel, PowerPoint, OneNote, Project, Access, Visio) and SharePoint


    Contact: asingh3@judge.com

    This job and many more are available through The Judge Group. Find us on the web at www.judge.com



    Company Information

    The Judge Group is a privately-owned, leading professional services firm. What does that mean? It means we provide technology, talent and learning solutions to businesses around the globe, and we're great at it. Our expertise is positioned at the crossroads of people and technology—two of the most important aspects of successful business today.
    Dice Id : cxjudgpa
    Position Id : 623382

    Similar Positions at The Judge Group, Inc.

    Java Cloud Developer-W2 only
    • Coppell, TX
    • 1 day ago
    Sr AWS Cloud Adoption Engineer
    • Irving, TX
    • 1 day ago
    Senior Data Modeler
    • Irving, TX
    • 1 day ago
    Senior Full Stack Engineer
    • Irving, TX
    • 1 day ago
    Mobile API Developer
    • Irving, TX
    • 1 day ago
    C#.Net Developer
    • Irving, TX
    • 1 day ago