LEAD CONSULTANT (CLOUD SECURITY ARCHITECT)
WHO WE ARE
Apex Systems is a leading global technology services firm that incorporates industry insights and experience to deliver solutions that fulfill our clients' digital visions. We provide a continuum of services, including strategy and enablement, innovation and productivity, and technology foundations to drive better results and bring more value to our clients.?Apex transforms our customers with modern enterprise solutions tailored to the industries we serve. Apex has a presence in over 70 markets across North America, Europe, and India. Apex is a part of the Commercial Segment of ASGN Incorporated (NYSE: ASGN). To learn more, visit www.apexsystems.com .
At Apex Systems, we prioritize professional development, work-life balance, and fostering a collaborative culture. We value our teams well-being and recognize the importance of building strong relationships. Thats why we organize regular team-building events and philanthropic days to give back to the community - fostering a sense of purpose and fulfillment among our team. Join us for career advancement, innovative solutions, and a supportive environment focused on your success.
JOB DESCRIPTION
Apex is seeking a dynamic Lead Consultant with strong consultative skills to serve as a Cloud Security Lead Architect within US & Canada practice as part of Apex Systems' Solutions Delivery Organization. This role will serve on project teams with Apex clients to assess, design, implement and advise on secure cloud technologies and services. This role will also provide technical subject matter expertise for Apex sales and account teams during the scoping of new cloud security opportunities.
RESPONSIBLITIES

• Works with our Client stakeholders to assess, design, and develop security controls for their cloud platforms (PaaS, SaaS, and IaaS) and environments
• Provide subject matter expertise on securing cloud architecture and infrastructure based on industry and vendor best practices within AWS, Azure, and GCP
• Design, evaluate, and implement security tools with an emphasis on automation to assist our clients, including and not limited to data protection, secure development (CI/CD), asset management, cloud logging/monitoring, platform hardening, resiliency and redundancy architecture
• Assess and understand our client's current cloud security posture and future architecture, providing a viable solution path to bridge the gap, both strategical and tactical
• Review new cloud technologies and products for security implications and risks for our clients
• Provide architectural security guidance building cloud infrastructure in compliance with industry standards (i.e., CSA-CCM, FedRAMP, NIST, PCI-DSS, ISO, SSAE/SOC, etc.)
• Conduct security assessments and risk analysis to identify vulnerabilities and propose mitigation strategies
• Design and implement network segmentation strategies and secure access controls
• Collaborate with network and infrastructure teams to integrate security measures including virtual private networks (VPNs), firewalls, and intrusion detection/prevention systems (IDS/IPS)
• Manage and/or lead a team of cloud security engineers
• Maintaining awareness of trends and changes in the cybersecurity industry and threat landscape

JOB REQUIREMENTS

• 8+ years hands-on experience in development, deployment, and automation of security solutions in large enterprise environments capabilities with AWS, GCP, and/ or Azure
• Experience using security frameworks to perform gap assessments between different cloud providers, cloud type, and level of certifications in the context of compliance efforts
• Experience with secure development and vulnerability scanning with automation configuration tools (e.g., Tenable, SCCM, SolarWinds, Puppet, Jenkins, Ansible, etc.)
• Experience with image life cycle management and integrating into vulnerability management solutions
• Experience with log management and/or correlation systems (e.g., Splunk, Datadog, Sumo Logic, etc.)
• Experience creating a cloud security roadmap with estimates for complexity and cost; including people, process, & technology inputs
• Hands-on experience with cloud network security, including virtual private cloud (VPC) design, subnetting, routing, and secure communication protocols
• Familiarity with cloud-native security services and features, such as AWS Security Groups, Azure Network Security Groups (NSGs), and GCP Firewall Rules
• Experience managing a backlog and delivery team of technical and non-technical professionals
• Experience with container-based environments (e.g., VMware, Hyper-V, Docker, Kubernetes, etc.)
• Experience working with ticketing and tracking systems (e.g., ServiceNow, JIRA, etc.)
• Familiar with distributed systems, networking, and database fundamentals
• Excellent written and verbal communications skills and an ability to maintain a high degree of professionalism in all client communications
• Ability to influence others, build relationships, and manage conflicts
• Leadership experience and executive level communication and facilitation skills across technical and non-technical stakeholders
• Management of a team of junior level cloud security engineers
• Brief management, as needed, on the status of action items and/or results of these activities
• Bachelor's degree in Information Security, Information Technology, Information Systems Management, Computer Science, Engineering, or related field
• Technical and non-technical cloud related certifications (e.g., AWS, Azure, GCP, CCSK, CCSP, CISSP, etc.) Knowledge of data classification solutions
• Technical knowledge of cloud access management, CASB architecture, system policies, and rules
• In-depth knowledge of cloud access security, including Identity and Access Management (IAM) policies, Role-Based Access Control (RBAC), and Multi-Factor Authentication (MFA) in cloud environments
• Experience with cloud infrastructure security tools such as AWS GuardDuty, Azure Security Center, and/or GCP Security Command Center
• Understanding of network security concepts and technologies, such as network firewalls, IDS/IPS, and secure remote access solutions (e.g., VPNs)
• Experience with defense in depth, WAF, Zero trust architecture models and technologies, privileges, and permissions
• Familiar with data protection controls as well as modern security tools and controls
• Excellent communication skills, including demonstrated proficiency in clearly communicating technical concepts to non-technical audiences in business terminology
• Familiar with DevSecOps and Agile methodologies

OUR AWESOME BENEFITS:

• Competitive salary
• Health, Dental and Vision Insurance
• Long and Short-Term Disability
• Life Insurance
• Vacation and Holiday Pay
• 401k Retirement Plan
• Training and Advancement opportunities
• Tuition Reimbursement
• Birthdays Off
• Philanthropic Opportunities
• Referral Program
• Partial Gym Membership Paid
• Team Building Events

Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact [email protected] .

EEO Employer

Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at [email protected] or 844-463-6178 .

Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing® in Talent Satisfaction in the United States and Great Place to Work® in the United Kingdom and Mexico.