Description
Cloud Security Consultant required for a 2 week period each month for 4 months.
My client requires the support on a part time basis of an experienced, dedicated Cloud Security Consultant with experience of reviewing information security aspects of design and implementation of important projects that must meet tight deadlines.
You will initially review the design documentation of the proposed solution and provide a detailed report outlining and quantifying risks that exist in the design and recommending mitigations to address the identified risks. A high level cost estimate of the recommended mitigations must be provided as part of the recommendation.
You will work in close cooperation with the Cloud Programme Manager and report directly to the Programme Sponsor.
- You must have proven, substantial, practical experience of Security Advisory roles supporting a systems implementation project, identifying and assessing security risks.
- You must have proven experience demonstrating a comprehensive knowledge of Microsoft Windows Azure based technologies including System Center, Active Directory, Hyper-V, SQL Server and be capable of demonstrating credibility when advising on the risks and likely mitigations of risks in a solution based on these technologies.
- You must also have experience of operating at a senior level within an organisation and possess excellent communication and stakeholder management skills.
Skills, Experience & Knowledge of Candidate
- University degree with experience minimum 5 years working in the field of IT Security in infrastructure and/or application security;
- Experience with security test: vulnerability scan and penetration test;
- One or more certification from a recognized organization (CISSP, CISA, CISM, SANS, Security Vendors: Cisco CCIE Security, Microsoft, HP, etc.);
- Experience and expertise with ethical hacking, Firewall and intrusion detection/prevention technologies, secure coding practices and threat modelling;
- Minimum of 5 years of system admin or development experience on a Windows operating system; excellent experience with system hardening; Skilled with Power Shell;
- 2 years experience of Microsoft Azure technologies and System Center.
- Experience of security practices in a multi-tenant virtualised network and the products required to successfully mitigate the risks in a Microsoft based solution.
- Expert level knowledge in designing secure network architectures, Microsoft virtualization technologies, Microsoft database platforms, System Center, identity and access management principles, application security, encryption technologies, Active Directory and DNS;
- Excellent understanding of the Internet protocol suite, eg ARP, IP, ICMP, BGP, OSPF, TCP, UDP, NVGRE, LDAP, DNS, DHCP, SNMP, SMTP, SIP, GRE, Netflow/cflowd and POP3;
- Experience with the following SSL, HTTPS, PGP, DES, SSH, SCP, Kerberos, IPSEC, PKI;