**Introduction** A career in IBM Consulting is built on long-term client relationships and close collaboration worldwide. You’ll work with leading companies across industries, helping them shape their hybrid cloud and AI journeys. With support from our strategic partners, robust IBM technology, and Red Hat, you’ll have the tools to drive meaningful change and accelerate client impact. At IBM Consulting, curiosity fuels success. You’ll be encouraged to challenge the norm, explore new ideas, and create innovative solutions that deliver real results. Our culture of growth and empathy focuses on your long-term career development while valuing your unique skills and experiences. **Your role and responsibilities** As a Security Consultant specializing in Infrastructure Security, you play a crucial role in helping client IT and business executives comprehend Cloud & Infrastructure Security challenges, risks, and vulnerabilities. You apply security and zero trust principles and in-depth knowledge of secure infrastructure and applications of hybrid cloud to develop tailored solutions for clients. Your primary responsibilities will include: * Administer and operate Cloud Security Posture Management (CSPM) tools such as Prisma Cloud, Google Security Command Center (SCC), Microsoft Defender for Cloud, and Orca Security. * Configure and manage native cloud security services, including: AWS Config, Security Hub, CloudTrail, Azure Policy, Defender for Cloud, GCP Security Command Center, Cloud Asset Inventory. * Implement and enforce cloud security best practices, including IAM, Zero Trust principles, and least-privilege access models. * Manage and maintain identity and access policies across AWS IAM, Azure AD, and GCP IAM. * Analyze and interpret security findings and misconfigurations, prioritizing remediation based on risk and exposure. * Support cloud compliance initiatives, aligning controls with frameworks such as CIS, NIST 800-53, ISO 27001, and PCI-DSS. * Design and maintain secure cloud network configurations, including VPCs/VNets, firewalls, security groups, and ACLs. * Produce compliance reports and maintain security documentation for audits and governance purposes. * Collaborate with cloud, security, and compliance teams to drive continuous posture improvement. **Required technical and professional expertise** * Solid understanding of CSPM concepts, IAM, Zero Trust, and cloud security best practices. * Hands-on experience administering CSPM platforms (Prisma, SCC, Microsoft Defender for Cloud, Orca). * Experience working with native cloud security tools across AWS, Azure, and GCP. * Strong knowledge of compliance and security standards, including CIS, NIST 800-53, ISO 27001, and PCI-DSS. * Practical experience managing identity and access policies in AWS IAM, Azure AD, and GCP IAM. * Ability to interpret and prioritize cloud security findings and remediation actions. * Solid understanding of cloud networking, including VPC/VNet design, firewalls, security groups, and ACLs. * Experience generating compliance reports and maintaining security documentation. * Strong analytical and communication skills to translate technical findings into actionable recommendations. **Preferred technical and professional experience** * Experience using Infrastructure as Code (IaC) tools such as CloudFormation, Terraform, or similar, to standardize and enforce security configurations. * Experience with CI/CD tools to integrate security controls into deployment pipelines. * Familiarity with hybrid and multi-cloud architectures and cloud security reference models. * Certifications related to CSPM platforms, such as Prisma Cloud or Orca Security. * Cloud security certifications such as: * AWS Certified Security - Specialty * Azure Security Engineer Associate * Google Cloud Security Engineer IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.