Cloud Ops Manager (Network and Security)

Job Description

Cloud Ops Manager (Network and Security)Experience 10 to 15 YearsTechnical Skills

• Minimum of 12 years in an engineering, architectural and operations role.
• Cloud Platform Expertise Azure, AWS & Google Cloud.
• Experience in using architecture methodologies such as SABSA, Zachman and/or TOGAF.
• Direct, hands-on experience or strong working knowledge of managing security infrastructure for Public cloud platform e.g., firewalls IPS/IDS, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM and log management technology.
• Barracuda, Palo Alto and other Native Cloud Security tools & Solutions.
• Verifiable experience reviewing application code for security vulnerabilities.
• Direct, hands-on experience or a strong working knowledge of vulnerability management tools.
• Documented experience and a strong working knowledge of the methodologies to conduct threat-modeling exercises on new applications and services.
• Documented experience and a strong working knowledge of the methodologies to conduct threat-modeling exercises on new applications and services.
• Full-stack knowledge of Cloud IT infrastructure:
• Applications
• Databases
• Operating systems Windows, Unix and Linux
• Hypervisors
• IP networks WAN and LAN
• Active Directory
• Lightweight Directory Access Protocol (LDAP)
• Cloud (Azure, AWS & GCP) IAM
• Strong working knowledge of IT service management (e.g., ITIL-related disciplines):
• Change management.
• Configuration management
• Asset management
• Incident management
• Problem management
• Regulations, Standards and Frameworks
• Payment Card Industry Data Security Standard (PCI-DSS)
• HIPAA-HITECH
• Validated Systems (e.g., GAMP)
• Sarbanes-Oxley
• General Data Protection Regulation (GDPR)
• Privacy Practices
• ISO 27001/2
• NIST Cybersecurity Framework (CSF)

Position responsibilities and expectations

• Translates complex security-related matters into business terms that are readily understood by customers.
• The network and security operations manager should anticipate presenting analysis in person and in written formats to senior leadership.
• Interprets technology and threat drivers and develops practical security roadmaps to deal with these drivers.
• Demonstrates flexibility within a variety of changing situations, while working with individuals and groups.
• Develops and maintains a cloud security architecture process that enables the enterprise to develop and implement identity and security solutions and capabilities that are clearly aligned with business, technology and threat drivers.
• Develops identity and cloud security strategy plans and roadmaps based on sound enterprise architecture practices.
• Develops and maintains identity and security architecture artifacts (e.g., models, templates, standards and procedures) that can be used to leverage Cloud security capabilities in projects and operations.
• Tracks developments and changes in the digital business and threat environments to ensure that theyre addressed in cloud security strategy plans and architecture artifacts.
• Participates in application and infrastructure projects to provide cloud security-planning advice.
• Drafts security procedures and standards to be reviewed and approved by executive management and/or formally authorized by Information Security and Compliance.
• Determines baseline security configuration standards for operating systems (e.g., OS hardening), network segmentation, and identity and access management (IAM).
• Conducts or facilitate threat modeling of services and applications that tie to the risk and data associated with the service or application.
• Ensures a complete, accurate and valid inventory of all systems, cloud infrastructure and applications that should be logged by the security information and event management or log management tool.
• Coordinates with DevOps teams to advocate secure coding practices.
• Validates cloud IT infrastructure and other reference architectures for security best practices and recommend changes to enhance security and reduce risks, where applicable.
• Validates security configurations and access to security infrastructure tools, including firewalls, IPSs, WAFs and anti-malware/endpoint protection systems.
• Reviews network segmentation to ensure least privilege for network access.
• Liaise with the internal audit (IA) team to review and evaluate the design and operational effectiveness of security-related controls.
• Reviews security technologies, tools and services, and make recommendations to the broader security team for their use, based on security, financial and operational metrics.
• Liaise with network and security architects or security practitioners to share best practices and insights.
• Responsible for research and evaluation of new tools and technologies, and the individual is expected to stay abreast of new developments in the technology and retail industry.
• Serves in capacity of technology advisory services for engaging with the business to solve business problems via technology and process innovation relative to IT capability requirements.

Consulting skills required

• Passionate, persuasive, articulate Cloud professional capable of quickly establishing interest and credibility in how to design, deploy and operate cloud-based Architectures. Strong written, verbal and chalk board skills
• Experience in enterprise applications, solutions and Cloud infrastructures.
• Experience in platform and cloud migrations, including of Mass Migration Toolsets:
• Ability to work with team members around the globe / experience working with offshore models.
• Ability to groom Team members.

Degrees/Certifications Earned

• Bachelors degree in Computer Science, Computer Engineering, or Information Technology
• Relevant Industry certifications such on Microsoft Azure, AWS & Google Cloud.

Other

• 10 or more years of IT experience.
• Exposure and working level knowledge of working with and interfacing to global delivery teams
• Good business judgment, a comfortable, open communication style, and a willingness and ability to work with customers and teams.
• Strong service attitude and a commitment to quality.
• Willing to work in 24x7 model as needed.
• Strong verbal and written english language skills

EligibilityB.Tech,

Keyskills :
security informationevent managementit service managementdata securitysecure codinginternal auditcloud securitylog management