GRC Cloud Consultant (Lead)
Posted on Sep 24, 2019 by Request Technology - Connor Roettig
GRC Cloud Lead
As the GRC Cloud Lead Consultant, you will be part of the Company Information Security - Assurance, Policy, Monitoring & Reporting (AIS-APMR) team and lead Cloud Information Security Governance activities. This includes working closely with the product, software, and infrastructure development teams to implement best practices within the cloud based environments. You're going to work closely with developers and system architects to diagnose, document, solution, and remediate any deviations from governance standards. Additional responsibility includes contributing to the evaluation, recommendations, and implementations of cloud security controls in an automated continuous integration/deployment environment.
A broad range of professional skills along with strong interpersonal skills will be required for problem-solving, collaboration with virtual cross-functional work groups, along with tracking and reporting of critical gaps to closure & final resolution
Work closely with Application Development, Cloud, Governance, and Compliance teams to help formulate and implement strategies.
Develop and maintain a balanced cloud security governance framework based on industry standards.
Ensure compliance with society, regulatory, and industry standards for cloud-based security.
Evaluate business strategies, requirements, and user needs, existing usage cloud platforms, technical capabilities, and overall cloud application maturity, and provide strategic guidance and best-practices based recommendations for implementing governance boards and proven best practices for cloud based application/platform development, deployment, and support.
Support lead security consultants in promoting and consulting on the positions that help strengthen and secure the organization
Help facilitate review of changes in company processes, standards and technology to ensure the effectiveness of security controls to meet compliance requirements.
Responsible for building effective working relationships, making sound decisions, successfully making changes, initiating action and achieving results as a trusted advisor.
5+ years' experience in secure application/platform development and security
3+ years' project management, consulting, and/or application security analyst experience
Relevant postsecondary education and/or industry standard certifications preferred (ie, CompTIA, ISACA, ISC2, SANS Institute/GIAC, EMC, Amazon, VMware), AWS Certified Solutions Architect, CompTIA Cloud+ Certification, CISSP, Certificate of Cloud Security Knowledge (CCSK)
Strong understanding of cloud security governance & experience establishing cloud security governance across an organization
Practical understanding and use of cloud computing and cloud security tools
Strong self-starter who has ability to operate independently and demonstrates complete ownership over assigned objectives
Strong understanding of IT security best practices by applying depth and breadth of expertise in multiple related disciplines
Understanding of Agile/XP/Scrum/Kanban, Test Driven Development built on User Stories and Continuous Integration/Testing/Delivery
Demonstrated success at leading cross-functional projects leveraging SDLC methodology. Basic knowledge of Security Analysis (manual and leveraging automated scanning tools)
Excellent oral/written presentation skills with ability to communicate effectively with Senior Executive leadership; proficiency in preparation of presentations, analytical reports, and documents regarding program operational status, achievement and performance
Strong organizational skills, ability to effectively manage multiple, competing projects/priorities while achieving targeted completion results
Ability to stay up to date with current cybersecurity threat landscape to account for changing circumstances when evaluating security risks
Ability to maintain technical proficiency via self or formal training
Proficient in MS Office Suite (Word, Excel, PowerPoint, OneNote, Project, Access, Visio) and SharePoint
If interested in this role please email Connor Roettig with your resume at (see below)
The candidate(s) offered this position will be required to submit to a background investigation, which includes a drug screen.
*In addition to Dallas/Ft. Worth, TX, we are open to candidates in the following markets to work from our local offices: Charlotte, NC, Chicago, IL, & Phoenix, AZ. Strong qualified candidates in other US geographic markets will also be given consideration as potential home-based professionals.*