**Introduction** A career in IBM Consulting is built on long-term client relationships and close collaboration worldwide. You’ll work with leading companies across industries, helping them shape their hybrid cloud and AI journeys. With support from our strategic partners, robust IBM technology, and Red Hat, you’ll have the tools to drive meaningful change and accelerate client impact. At IBM Consulting, curiosity fuels success. You’ll be encouraged to challenge the norm, explore new ideas, and create innovative solutions that deliver real results. Our culture of growth and empathy focuses on your long-term career development while valuing your unique skills and experiences. **Your role and responsibilities** As a Cloud Security Consultant, you will help client IT and business executives understand and strategize security across hybrid and multi-cloud platforms. You will design and implement associated security services across various domains, including risk and compliance, application, data, endpoint, and network. Your primary responsibilities will include: * Design, operate, and continuously improve Cloud Security Posture Management (CSPM) across AWS, Azure, and GCP environments. * Administer and optimize cloud security posture tools such as Prisma Cloud, Google Security Command Center (SCC), Microsoft Defender for Cloud, and Orca Security. * Implement and enforce cloud security best practices, including IAM, Zero Trust principles, and least privilege models. * Design and secure cloud network architectures, including VPCs/VNets, routing, segmentation, and connectivity. * Configure and manage cloud network security controls, such as firewalls, security groups, ACLs, VPNs, and peering. * Detect and prevent unauthorized or anomalous network traffic in cloud environments. * Support and manage security controls across multiple domains, including email security, cloud security, EDR, and network security. * Contribute to security governance by aligning cloud controls with organizational policies and risk management practices. **Required technical and professional expertise** * Strong hands-on experience with CSPM and cloud security models for AWS, Azure, and GCP. * Solid understanding of CSPM concepts, IAM, Zero Trust, and cloud security best practices. * Experience operating cloud security posture tools (Prisma, SCC, Microsoft Defender for Cloud, Orca). * Strong knowledge of cloud networking concepts, including VPC/VNet design and segmentation. * Practical experience with firewalls, security groups, ACLs, routing, VPNs, and peering. * Ability to identify and mitigate unauthorized traffic and misconfigurations. * Knowledge of secure email concepts, including SPF, DKIM, DMARC, and common phishing techniques. * Experience managing and integrating security controls across multiple domains (email, cloud, EDR, network security). * Strong analytical skills and ability to translate cloud risks into actionable remediation plans. * Intermediate English level (technical communication). **Preferred technical and professional experience** * Knowledge of additional network security tools, such as NIDS/NIPS, web proxies, CASB, and next-generation firewalls. * Experience using Infrastructure as Code (IaC) tools, such as Terraform, to standardize and enforce security configurations. * Proven ability to produce executive-level reports and present security findings to management and leadership teams. * Advanced skills in risk analysis, security control design, and strategic prioritization. * Strong technical focal point capabilities, coordinating effectively with network, security, SOC, architecture, and compliance teams. IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.