Security Consultant for Zero Trust Segmentation

Job Description

  • Job Title Security Consultant for Zero Trust Segmentation

Required Skills




Your Role and Responsibilities

Zero Trust is a critical service within Kyndryl, and this Security Consultant role will be reporting to the Global lead for Zero Trust within the A&IS Security & Resiliency Business in a hands-on and customer focused role focused on assess, advise and implement Network Security Segmentation solutions that will support clients Zero Trust initiatives.

Your Role and Key Responsibilities:

The security consultant support clients in assessing, improving, and maintaining the cybersecurity posture of their Network Segmentation Architecture and to mitigate security risks (e.g., insider and external threats, intentional and accidental). Position is for an experienced security professional with demonstrated experience within Network Security Segmentation and Zero Trust architecture.
Advise clients on Zero Trust architecture, development of high-level and low-level architecture designs, including recommended security controls including:
Reviewing network architectures and determining if good practices are being followed (e.g., the zones & conduits concept, proper network segmentation, use of Industrial DMZ, etc.); and providing recommendations to comply with applicable cybersecurity framework.
Reviewing security products utilized (e.g., Admission Control, Micro-Segmentation, firewalls, IDS, IPS) and determining if they are configured properly.
Deploying network and micro-segmentation solutions.
Help clients implement segmentation controls necessary for Zero Trust architecture.
Take ownership of end-end technical delivery of Network Security Segmentation work for client and ensure what's sold is getting delivered to satisfaction of client.
A willingness to go beyond the ordinary to meet and exceed client expectations.
Support Network Security Segmentation opportunity creation and development of client presentations and SOWs.
Establish strong client relationships in key accounts to help progress the Security Services portfolio.
Contribute content and advice to the offering development process.

Required Technical and Professional Expertise

A minimum of 10 years of experience in Cyber Security.
Proven Network Security Segmentation knowledge gained from a Network Security Segmentation specific job role.
Candidates should possess proven record in advising on Network Security Segmentation at the Chief Information Security Officer (CISO) and/or Senior Security Manager levels and be recognized for business as well as technical acumen.
A minimum of 5 years hands on experience assessing, designing, and implementing Network Security Segmentation architectures for both IT and OT environment.
Experience in delivering Network Security Segmentation maturity assessments including roadmaps to bridge existing security gaps.
As a technical lead/architect, successfully transforming flat and open network environment to a Zero Trust architecture.
Deep knowledge in Zero Trust Network Access architecture and associated frameworks (E.g., NIST SP 800-207, CISAs Zero Trust Maturity Model)
Must have a good networking background and understanding of networking topologies and protocols (e.g., BGP, OSPF, EIGRP, SPT, TRUNKS, VLANs, Port-Channel, MPLS, VRF, SIP, Traffic Shaping / QoS etc.)
The candidate must have exceptional communication and presentation skills as well as must be a self-starter and always exhibit professional business conduct.
Stakeholder management and interpersonal skills at both a technical and non-technical level.
Must be willing to travel up to 50 PERCENT , depending on client requirements.
Excellent customer service and communication (oral / written) skills required.
Strong critical thinking and analytical skills and ability to think out of the box required.

Preferred Technical and Professional Experience

At least 2-year experience in information security consulting working for International Recognized consulting firms.
A minimum of 5 years hands on experience with one or more of the following areas:
Assess, Advise, and Implementation of Illumio solutions including:
Thorough knowledge of Illumio Core, CloudSecure, and Edge,
Illumio Core Expert Certification
Assess, Advise, and Implementation of Cisco Identity Service Engine (ISE) solutions including:
Thorough knowledge of ISE Segmentation.
Cisco Certified Specialist - Security Identity Management Implementation

Required Education

Bachelor's Degree

Preferred Education

Master's Degree

There is something wrong with this job ad? Report the error