Cloud Security Engineer

An employer in the Galleria area of Houston, Texas is looking for a Cloud Security Architect to join the Cyber Security Team. This person will be responsible for staying abreast of the internal and external threat landscape while providing input into the development and maintenance of the cybersecurity platform roadmaps based on of the current threat landscape and Company's risk appetite. They will deliver effective and efficient cyber security platforms and services that protect the company's US and International operations; optimize suite of cyber security platform and rationalize trade offs between suite of controls, solutions and risks; and identify, assess, design and perform assurance activities on cyber security platforms and services.



Other responsibilities include:







- Performing architectural review of cloud native digital solutions from a cyber security perspective, determining risk and secure solutions







- Re-designing the security architecture blueprints for IT groups to reference during the design phase of any infrastructure project





- Assist in continuous improvement and optimization of cybersecurity tools and platforms



- Assist in ensuring all current cybersecurity tools and platforms are optimized and effective



- Develop cybersecurity assurance, control testing and platform maintenance strategy and plans.



- Work closely with CSOC and other cybersecurity platform consumers to ensure platforms and tools are configured to deliver effective monitoring and mitigation of Woodside US/Intl IT and OT systems and environment risks.



- Maintain knowledge and awareness of current and emerging threats and attack vectors of the Woodside environment and help recommend and develop effective controls to detect and protect against those risks.



- Keep up to date with the changing threat landscape and suite of defender techniques and solutions that exist on the market, proving input into regional cybersecurity roadmap.



- Assist in the proactive management of vulnerabilities and attack surface of the US/Intl landscape and that it is continuously managed to as low as reasonably practicable.



We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.

To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .

7+ years' cybersecurity experience



2+ years' experience of designing and delivering large enterprise scale solutions with demonstrated security expertise



Strong knowledge of current and emerging cybersecurity threats and attacker TTPs.







Experience with security architectural review and policy creation







Experience creating security architecture blueprints for IT teams to reference



Good understanding of zero trust architecture design principles



Ability to technically assess solution designs, cybersecurity risks and controls







Communication, organizational skills with good stakeholder management skills



Technical writing skills



Maintain (and gain) Knowledge of IAM, AAA, PKI, Encryption, MFA, TCP/IP, SIEM, IDS/IPS, EDR, proxy, Firewalls, VPNs, DLP, operating systems, networking, Active Directory, Scripting languages, OSI Model, monitoring, logging, PAM







Maintain (and gain) subject matter expertise across a variety of cybersecurity related tools and platforms --(Cisco, Palo Alto, Cloud Flare, Microsoft E5 security suite, Microsoft Sentinel, zScaler, Illumio, AWS, Azure, Saviynt, Microsoft Azure AD, Microsoft Defender ATP, Microsoft IAM (AAD, Hybrid), Silverfort, Passwordless, Azure Datalake, Windows 10/11, Windows Server , RHEL, Microsoft Defender for X, Cribbl, Azure Key Vault, AWS API Gateway, Workato, Service Now, Tenable Nessus).

Experience in OT and critical infrastructure environments highly desirable



Experience in Microsoft Security Stack is highly desirable



Knowledge of frameworks including NIST CSF, ACSC Essential Eight Maturity Model, CIS, OWASP, and ISO27001 desirable



Preferred: one or more of the following certifications --CISSP, GCDA, GPEN, ITIL, MS Azure Security Engineer, MS Security Operations Analyst, MS Identity and Access Administrator, OSCP, CCIE, CCDE



Bachelor's degree -- BS Desirable -- Computer Science, Cyber, or adjacent degrees

Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.