Cloud Security Consultant

Who We Are

At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.

The Role

The security consultant support clients in assessing, improving, and maintaining the cybersecurity posture of their Cloud Security environments to mitigate security risks (e.g., insider and external threats, intentional and accidental). Position is for an experienced security professional with demonstrated experience within Cloud Security and Zero Trust architecture.

• Advise clients on design and development of cloud security Zero Trust architectures for cloud/hybrid systems deployed across multiple cloud service providers, including AWS, Azure, GCP, and VMware NSX.

• Advise clients on Zero Trust Cloud architecture, development of high-level and low-level architecture designs, including recommended security controls including:

• Reviewing cloud security architectures and determining if good practices are being followed (e.g., the Landing Zone concept, Network and resource segmentation, cloud policy design structure); and providing recommendations to comply with applicable cybersecurity framework.

• Reviewing security products utilized (e.g., firewalls, IDS, IPS, CNAPP, Cloud management plane) and determining if they are configured properly.

• Reviewing security policies, plans, and procedures; assessing network monitoring capabilities; analyzing system and resource logs, security alerts and events, and packet captures to identify security threats; and providing recommendations to comply with applicable cybersecurity framework.

• Reviewing administrative, technical, and physical security controls and providing recommendations to mitigate the identified security risks.

• Help clients implement security controls necessary for Zero Trust cloud security architecture.

• Take ownership of end-end technical delivery of Cloud Security work for client and ensure what's sold is getting delivered to satisfaction of client.

• A willingness to go beyond the ordinary to meet and exceed client expectations.

• Support Cloud Security opportunity creation and development of client presentations and SOWs.

• Establish strong client relationships in key accounts to help progress the Security Services portfolio.

• Contribute content and advice to the offering development process.

• Experience in working with Azure, GCP or AWS native cloud security and governance tools as well as 3rd party tools.

• Experience with assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes within SaaS, IaaS, PaaS, and other cloud environments.

• Experience in delivering Cloud Security maturity assessments including roadmaps to bridge existing security gaps.

• Proficiency in one of the following cloud security domains: Networking, IAM, Infrastructure and Platform, Data or Application security. Good understanding of other domains and threats techniquest and tactics associated with them.

• As a technical lead/architect, successfully support cloud security transformation environment to a Zero Trust architecture.

• Deep knowledge in Zero Trust architecture and associated frameworks (E.g., NIST SP 800-207, CISA’s Zero Trust Maturity Model, CSA Software Defined Perimeter and CSA Cloud Controls Matrix)

• The candidate must have exceptional communication and presentation skills as well as must be a self-starter and always exhibit professional business conduct.

• Stakeholder management and interpersonal skills at both a technical and non-technical level.

• Must be willing to travel up to 50%, depending on client requirements.

• Excellent customer service and communication (oral / written) skills required. 

• English: Fluent

• Strong critical thinking and analytical skills and ability to think “out of the box” required.

• Must be able to work independently or with a team, under minimum supervision.

Required Technical and Professional Expertise

• At least 5 years of experience with cloud platforms, including at least one of AWS, Azure, GCP, or VMware NSX.

• Proven cloud security knowledge gained from a Cloud Security specific job role.

• Deep knowledge of Cloud Secrity Framework, Cloud Security Benchmarks and Cloud Security Controls

• Candidates should possess proven record in advising on Cloud Security at the Chief Information Security Officer (CISO) and/or Senior Security Manager levels and be recognized for business as well as technical acumen. 

• A minimum of 5 years “hands on” experience assessing, designing, and implementing Cloud Security architectures using IaC (Infrastruycture as Code)

• Experience with container orchestration, automation, and security configuration management.

• Hands-on Experience with GitOps, DevSecOps, CI/CD and SDLC toolset 

If you are hired, the anticipated compensation range for the position is $123,720 to $255,150 based on a full-time schedule.  Your ultimate compensation may vary depending on your geography, job-related skills and experience.  For part time roles, the compensation will be adjusted appropriately. The pay or salary range will not be below any applicable state, city or local minimum wage requirement.

This position will be eligible for Kyndryl’s discretionary annual bonus program, based on performance and subject to the terms of Kyndryl’s applicable plans. You may also receive a comprehensive benefits package which includes medical and dental coverage, disability, retirement benefits, paid leave, and paid time off.  Note: If this is a sales commission eligible role, you will be eligible to participate in a sales commission plan in lieu of the annual discretionary bonus program.

Applications will be accepted on a rolling basis.

Kyndryl currently does not require employees to be fully vaccinated against COVID-19, however, if you are hired to work at a client, customer, or partner location, you may be required to show proof of vaccination to align with their respective COVID-19 vaccination policies.  Those who believe they are eligible may apply for a medical or religious accommodation prior to the start of employment.

Who You Are

• MBA or master’s degree 

• At least 2-year experience in information security consulting working for International Recognized consulting firms.

• Experience with deployment orchestration, automation, and security configuration and infrastructure management (Terraform, Jenkins, Puppet, Chef, Ansible).

• Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms (OAuth, OpenID, etc).

• Experience with MITRE ATT&CK and/or D3FEND frameworks and ability to leverage them within cloud security projects

• Experience with service-oriented architecture for cloud-based services.

• Hands on experience with one or more of the following multicloud security technologies:

• Assess, Advise, and Implementation of Caveonix, Aqua, Wiz, Orca or other industry leading solution:

• Thorough knowledge of Cloud Security Posture Management (CSPM), Cloud Workload Protection Platform (CWPP), cloud-native application protection platform (CNAPP), Cloud Access Security Broker (CASB)

Required Education

Bachelor's Degree 

Preferred Education

Master’s Degree

Being You

Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way.

What You Can Expect

With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter – wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations.  At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.

Get Referred!
If you know someone that works at Kyndryl, when asked ‘How Did You Hear About Us’ during the application process, select ‘Employee Referral’ and enter your contact's Kyndryl email address.