Cloud Security Architect - Contract

Cloud Security Architect

Gallagher is a global leader in insurance, risk management and consulting services. We help businesses grow, communities thrive and people prosper. This is a Contract W-2 position. It is a fully remote role that will need to be based in the U.S. You must meet our U.S. Eligibility requirements for work authorization.

Position Summary:

Cloud Security Architect will serve as a key technical resource in Global Cyber and Information Security (GCIS) organization. This role will be responsible for developing and/or maturing Cloud security architecture approach, recommended standards, reference architecture designs and narratives. The role will keep current on Cloud best practices and provide direction for Cloud technical specifications. This role will work closely with other Information Security colleagues, IT & Infrastructure organization, and Business teams globally to provide security architecture guidance and recommendations.

How You'll Make an Impact

Key Responsibilities:

• Assess, review and design secure Cloud solutions working with various business teams and groups.
• Promote Cloud security awareness in interactions with other teams.
• Use a data centric risk-based approach to cloud security and solutions.
• Define and create Cloud Security architectural standards, artifacts, design patterns and technical specification documents for the enterprise.
• Assess, monitor and recommend Cloud security improvements and best practices to improve security posture, mitigate risks and balance costs.
• Work with direction from the Director of Cloud Security Governance and closely with the Cloud enterprise architecture and Cloud security engineering team member(s) to ensure Cloud platforms are matured and securely configured.
• Oversee and consult with project teams in business units to ensure adherence to Cloud security design patterns and best practices.
• Engage with M&A teams to integrate acquired resources into the Gallagher cloud.
• Design, collaborate and provide Cloud options for solutions that balance business requirements with information security requirements.
• Proactively identify technical and architectural risks for current or proposed state, commenting and/or providing Cloud alternatives for consideration that will improve on capabilities, champion to present for approval and change.
• Participate in security technology evaluations, proof of concept testing and provide in-depth analysis of the proposed solution.
• Collaborate and partner with various key stakeholders across the enterprise to ensure alignment with the overall intended design.
• Partner with architects and engineers within infrastructure, network, application and business teams to ensure that solutions are developed and managed as per GCIS policies and standards.
• Assists with risk mitigation and governance activities aligned with Cloud security architecture compliance.
• Enable architectural leadership within engaged and assigned forums and projects, acting as a guide by example for collaboration, thought leadership and expertise in Cloud security architecture.

About You

Required:

• Bachelor's degree or equivalent in Computer Science or related field
• Minimum 3+ years working with Microsoft Azure
• Minimum 3+ years of cybersecurity experience
• 2+ years of experience working with other cloud platforms (AWS, GCP, Oracle)
• Minimum 1+ years of experience reviewing detailed solution architectures and providing feedback to the application and infrastructure teams.
• Experience with reviewing and developing Cloud solution enabled models and security monitoring tooling.
• Minimum 1+ years of experience with multi cloud security and aligning polices across platforms.
• Demonstrated working experience in a regulated and globally distributed environment.
• Knowledge and experience in enterprise architecture frameworks such as TOGAF.
• Knowledge and experience implementing security standards frameworks (NIST - CSF, ISO 27001, CSA CCM, PCI-DSS, GDPR)
• Proven success recommending and implementing Cloud security architecture best practices and standards for large projects or programs delivering or migrating to Cloud solutions and services.

Preferred:

• At least one certification related to information security such as; CISSP, CCSP, CCSK, AWS Solutions Architect, Azure Security.
• Demonstrated knowledge of multi-Cloud environment security.
• 2+ years experience in a global organization
• Insurance and risk management domain knowledge desirable.
• Architecture tasks associated with a Cloud Security Posture Monitoring tool such as WIZ.

Key Characteristics:

• Strong communications skills - oral and written.
• Self-starter with strong work ethic.
• Flexible and resilient, handle various demands planned and unplanned.
• Proven ability to handle multiple tasks and projects simultaneously.
• Problem solver and desire to close issues, pragmatic and realistic with solutions.
• Resilient and collaborative, motivated to pro-actively drive issues to successful mutually agreed upon resolutions.

Compensation and Benefits

We offer a competitive and comprehensive compensation package. The base salary range represents the anticipated low end and high end of the range for this position. The actual compensation will be influenced by a wide range of factors including, but not limited to previous experience, education, pay market/geography, complexity or scope, specialized skill set, lines of business/practice area, supply/demand, and scheduled hours. On top of a competitive salary, great teams and exciting career opportunities, we also offer a wide range of benefits. Below are the minimum core benefits you'll get, depending on your job level these benefits may improve: Medical/dental/vision plans, which start from day one! Life and accident insurance 401(K) and Roth options Tax-advantaged accounts (HSA, FSA) Educational expense reimbursement Paid parental leave Other benefits include: Digital mental health services (Talkspace) Flexible work hours (availability varies by office and job function) Training programs Gallagher Thrive program – elevating your health through challenges, workshops and digital fitness programs for your overall wellbeing Charitable matching gift program And more...

We Value Inclusion and Diversity

Inclusion and diversity (I&D) is a core part of our business, and it's embedded into the fabric of our organization. For more than 95 years, Gallagher has led with a commitment to sustainability and to support the communities where we live and work. Gallagher embraces our employees' diverse identities, experiences and talents, allowing us to better serve our clients and communities. We see inclusion as a conscious commitment and diversity as a vital strength. By embracing diversity in all its forms, we live out The Gallagher Way to its fullest. Gallagher believes that all persons are entitled to equal employment opportunity and prohibits any form of discrimination by its managers, employees, vendors or customers based on race, color, religion, creed, gender (including pregnancy status), sexual orientation, gender identity (which includes transgender and other gender non-conforming individuals), gender expression, hair expression, marital status, parental status, age, national origin, ancestry, disability, medical condition, genetic information, veteran or military status, citizenship status, or any other characteristic protected (herein referred to as "protected characteristics") by applicable federal, state, or local laws. Equal employment opportunity will be extended in all aspects of the employer-employee relationship, including, but not limited to, recruitment, hiring, training, promotion, transfer, demotion, compensation, benefits, layoff, and termination. In addition, Gallagher will make reasonable accommodations to known physical or mental limitations of an otherwise qualified person with a disability, unless the accommodation would impose an undue hardship on the operation of our business.