Position Overview
Key Skills Required:
- A minimum of 5 years' experience in at least three of the following areas: security and risk management, asset security, security architecture and engineering, network security and communication, identity and access management, security assessment and testing, security operations, and software development security.
- 1-3 years of hands-on experience in cloud information security, preferably with major cloud service providers such as AWS, Microsoft Azure, or Google Cloud.
- Familiarity with a wide range of cybersecurity frameworks and threat modeling methodologies, including STRIDE, MITRE ATT&CK, and NIST standards (particularly 800-53 and 800-30).
Secondary Skills - Nice To Have
- Vulnerability management
- Cybersecurity expertise
- AWS knowledge
Job Description
The candidate will be responsible for evaluating and assessing risk across different deployment environments (on-premises, cloud, and hybrid), services, models, and technologies to ensure they meet security and compliance requirements throughout the organization.
This role is both versatile and technical, requiring comprehensive experience across several domains, including security and risk management, asset security, security architecture and engineering, communications and network security, identity and access management, security assessment and testing, security operations, and software development security.
Candidates must demonstrate critical thinking and a holistic approach to assessing cybersecurity risk, beyond just relying on security tools and their outputs.
An ideal candidate should be able to effectively communicate the risks associated with an application or service by evaluating its design and configuration, data classification and flow, security control alignment, current and emerging threats, and practical experience.
Key Responsibilities
- Provide situational support by leveraging industry technology, controls, and policies to ensure system designs align with security requirements and best practices.
- Create, review, and present security architecture reviews and risk assessments to peers, senior management, and other stakeholders.
- Conduct advanced risk and threat analysis using insights from internal and external cyber trends and incidents.
- Develop and document technical solutions, including process flows, requirements documentation, data flows, and control mappings.
- Identify, develop, and document architecture artifacts such as reference architectures, standards, policies, reusable designs, and best practices.
- Research, learn, and evaluate new technologies.
- Lead discussions, assessments, and overall reporting of technology security risks.
- Document issues, solutions, and status updates for assigned work.
- Understand business objectives and processes to assess risks and recommend balanced solutions.
- Promote awareness of applicable security policies and standards.
- Support the maintenance of metrics and scorecards for the information security program.
Required Qualifications
- 5-8 years of experience in IT, cybersecurity, or risk management.
- 5 years of experience in at least three of the following areas: security and risk management, asset security, security architecture and engineering, communications and network security, identity and access management, security assessment and testing, security operations, and software development security.
- 1-3 years of practical experience in cloud information security, preferably with AWS, Microsoft Azure, or Google Cloud.
- Proven experience in creating conceptual, logical, and physical security diagrams, along with a strong understanding of vulnerabilities and countermeasures.
- Solid familiarity with information security compliance programs and regulations.
- In-depth understanding of identity, access, and authentication mechanisms (e.g., Kerberos, NTLM, AD), networking technologies, software-defined computing, containerization, routing and switching, big data, elastic computing, and risk management methodologies.
- Experience in designing and implementing information management, protection, and security controls.
Founded in 2014,
ConglomerateIT is a global leader in delivering innovative IT solutions and services. Headquartered in the USA with a presence in the UK, Canada, and India, we specialize in offering industry-leading expertise and cutting-edge products that help our clients maximize their technological investments. Our focus on best-in-class solutions, a highly knowledgeable team, and proactive talent mapping ensure we remain at the forefront of the IT industry.
ConglomerateIT is driven by our Center for Excellence and Innovation, an initiative dedicated to keeping us ahead in a rapidly evolving technology landscape. We understand that building strong relationships is key to our success, and this commitment has enabled us to partner with Fortune 500 companies and leading system integrators worldwide. Our ability to provide local talent on a global scale ensures that we can meet the contingent project requirements of our clients efficiently and effectively.
As a strategic extension of ConglomerateIT,
Conglomerate Healthcare specializes in international healthcare recruitment. Leveraging our global reach and deep industry expertise, we connect healthcare organizations with top-tier talent, including Physicians, Nurses, and Medical Technicians. Our carefully curated talent pool includes Western-qualified Physicians, licensed Nurses, and highly skilled Medical Technicians who bring excellence and expertise to healthcare facilities worldwide.
Key Healthcare Services
- Physicians Recruitment: We connect healthcare facilities with Western-qualified physicians who deliver exceptional expertise and care.
- Nurses Recruitment: We identify and place highly qualified licensed nurses who meet the highest standards of care.
- Medical Technician Recruitment: We provide healthcare institutions with access to certified and skilled medical technicians who support critical healthcare operations.
Conglomerate Healthcare operates as an integral part of ConglomerateIT's mission to deliver excellence across multiple sectors, further solidifying our position as a global leader in recruitment and IT solutions.