Job Specifications
Title: GCS Cloud Cybersecurity Consultant
Location: Hybrid in Doral, FL
Duration: 12 Months Contract
Job Descriptions:
The GCS – Cloud Cybersecurity Architect function is responsible for the development of technical security design specifications, integration specifications, standards, requirements, and implementation of appropriate technology architectures to mitigate risks to Cloud Environments.
This position will work with all global brands under guidance from GCS Principal Cloud Security Architect to drive Cloud Security Strategy.
ESSENTIAL FUNCTIONS:
Support IT teams and/or Business stakeholders on optimizing usage of Cloud Security Posture Management Tool.
Research, test, and implement Cloud Security Guardrails.
Document and transition Cloud Security Posture reporting to operations teams.
Help define and maintain cloud security policies, standards, and procedures. 5
Provide security architecture and consulting services to business units and IT organizations. Support threat modeling, risk assessment, and security design reviews for cloud-based systems (AWS, Azure, GCP, OCI or hybrid).
Review network designs, applications data flows, system integrations and for Cloud environments to ensure adherence to policies, standards, and industry best practices.
Assist in creating high level network designs for security tools and reference architectures documentation.
Help design strategy for multi-cloud security
Support and mature security review intake processes for Cloud environments.
QUALIFICATIONS (including competencies, skills, knowledge, certifications)
Bachelor’s Degree
Master’s Degree a Plus
Discipline/Major Cyber Security, Computer Science, or similar
Professional Experience
5+ Cloud Cyber Security in Large Enterprise setting. Strong understanding of cloud platforms (AWS, Azure, GCP, etc.) and their core services.
Familiarity with industry and vendor Cloud security principles including: network, IAM, data security, infrastructure security, and logging / monitoring
Strong grasp of DevOps principles and experience with infrastructure as code (IaC) tooling (e.g., Terraform, CloudFormation)
Working knowledge of Python
Solid understanding of Cybersecurity risks in architectural designs and recommending mitigating controls.
Preferred Experience and Type
CSPM tooling (Orca) is a plus
Knowledge, Skills & Abilities:
Experience in Security Architecture, designing secure systems and architectures that can withstand cyber threats. Ability to communicate Cyber security architecture in non-technical terms to business stakeholders. Understanding of AI related Cybersecurity risks.
Decisions affect the long-term direction and policy of the entire company. These decisions affect the short-term and long-term performance of Carnival Corporation. Strategic decisions are high-risk because their outcomes are largely unknown and have a huge impact. These types of decisions are usually made at the top level of a company. Examples are: New services, acquisitions.
Examples: Global Cyber Security tool selection and implementation.
Decisions focus on intermediate-term issues. The purpose of decisions made at this level are to help move CCL closer to reaching strategic goals. Outcomes are predictable. After a decision is made by Top Executive Leadership, the next phase is to take the needed steps to implement it.