Senior Security Consultant (Cloud Security Architect)

Rackspace Technology is a leading provider of expertise and managed services across all the major public and private cloud technologies. We’ve evolved Fanatical Support to encompass the entire customer journey — providing Fanatical Experience™ from first consultation to daily operations. Our passionate experts combine the power of proactive, always-on service and expertise with best-in-class tools and automation to deliver technology when and how our customers need it.  Our EMEA Security team is looking for a UK-based ‘Senior Security Consultant' (Cloud Security Architect). This role is particularly well-suited to a self-starting, highly experienced and motivated security architect, who has a proven track record in the security consulting field.  You will be engaging with customers and the wider Rackspace organization to advise, develop and deliver innovative security solutions leveraging a wide range of public cloud services. The primary focus will be on helping customers to assess their cloud security posture and to ensure any subsequent cloud design and build is appropriately secured. This may be applicable to a customer’s single cloud, or multi-cloud environment, or when a customer wishes to move its environment from on-premise to the cloud. 
Extensive knowledge of a) security related legislation, regulations, and standards, b) Azure, AWS and GCP, and c) cloud native and non-native security tools is critical.
Architecture and Engineering knowledge is highly advantageous. 

Key Accountabilities

• As part of a small, but fast-growing team, you will be the Subject Matter Expert (SME) to advise and guide customers on their cloud security journey and establish a long-term trusted advisor role 
• Provide guidance to customers on their cloud security roadmap and assist on defining the right-size cloud security controls   
• Liaise closely with the customer’s architects and engineers and advise, design and deliver innovative cloud security Proof of Concepts 
• Deliver high-quality work to customers as part of consulting engagements that can be delivered through workshops, presentations or security solutions architecture designs 
• Liaise closely with other architects and engineers to understand relevant legislation, industry regulations and industry standards such as EU GDPR, HIPAA, ISO27001, NIST, PCI DSS, Cloud Security Alliance CCM, CIS and Cyber Essentials etc.
• Evolve existing Rackspace security services, as well as implement new ones, under the ‘Cloud Security Service’ banner. 
• Establish best-practices for the consultancy resulting in standardized engagement models and repeatable ways-of-working 
• Mentor and train other security architects within the wider Rackspace Security Solutions Architecture community on modern multi-cloud security domains and topics 
• Evangelize the security cloud-native paradigm through the delivery of blogs, customer presentations and public speaking engagements 
• Actively identify opportunities for new engagements 
• Contribute to RFI/RFP requests 

Technical Skills & Experience

• The ideal candidate has a proven track record in designing and delivering innovative technology security solutions built on the cloud. 
• As a Senior Security Consultant, the person should have the ability to act as a thought-leader. The right candidate can concisely and articulately present to both technical and non-technical audiences. 
• Experience of designing secure platforms on any one or more of the major hyperscalers, AWS, Azure or GCP.  
• Demonstrable experience in designing secure cloud-native systems and/or rebuilding an existing system on the cloud with a suitable security posture. 
• Demonstrable experience in the relevant legislation, industry regulations and industry standards such as ISR, EU GDPR, HIPAA, ISO27001, ISO 22301, ISO/IEC 20000-1, ISO 22301, NCEMA, NIST CSF, PCI DSS, Cloud Security Alliance CCM, CIS, OWASP and Cyber Essentials etc. 
• In-depth knowledge of the Well-Architected Frameworks and best practices of the major cloud providers 
• Must have the ability to lead engagements, either directly or as part of a larger programme of work and take ownership for the successful delivery of customer value within budget, time and scope. 
• You have built specialist and demonstrable cloud security architectural knowledge in the following areas; Account governance, Identity and Access Management (IAM), Asset management and data protection, Infrastructure and platform security, Application security including threat modelling and secure CI/CD, Change management practice and detection capabilities, Boundary defence, Cloud Logging and Monitoring, Continues vulnerability and patch management systems, Incident response and threat mitigation, Cloud backup/recovery and disaster recovery (DR) 
• You have an articulate opinion on the advantages of using public cloud platforms in a secure manner from a business perspective 
• You can identify and plan to resolve the challenges, both technical and organizational, facing organizations who are moving their applications to the cloud 
• Security related certifications such as CISSP, CCSP and CISM are advantageous

Personal Specification

• Ability to operate within complex operating environments
• Capability to think both strategically and tactically
• Excellent technical knowledge of security and how it can be commercialised
• Flawless execution; an impeccable attention to detail and timely delivery
• Provides objective and valuable advisory that builds long-term relationships with our customers
• Evidence of developing business relationships with ‘heads of business or function’ or ‘C level’ leaders
• Client-facing consultancy experience within large enterprises, but happy to deliver to SMBs
• Excellent communication and stakeholder management skills are required 
• Goes above and beyond to get the job done
• Proactive, takes ownership and is accountable
• Identifies problems, and provides solutions to these problems

#LI-LP2#LI-Remote