Cloud Security Director

We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their full potential. Our exceptional people are the key to our unrivaled, inclusive culture and talent experience and our ability to be compelling to our clients. You’ll find an environment that inspires and empowers you to thrive both personally and professionally. There’s no one like you and that’s why there’s nowhere like RSM.

In order to address the most critical needs of our clients, RSM established the Security and Privacy Services group, comprised of more than 150 professionals dedicated exclusively to serving the cybersecurity needs of our clients. This group includes experienced consultants located throughout the country dedicated to helping clients with preventing, detecting, responding and recovering to security threats that may affect their critical systems and data. We serve a diverse client base within a variety of industries, and we are relied upon to provide expertise within areas of security testing, architecture, governance and compliance, digital forensics and security transformation.We are seeking individuals to fill a variety of positions focused on development and implementation of reusable security patterns across on premise and cloud infrastructures. These positions will assist in requirements gathering, threat modeling, and architectural review of DevOps and InfraOps pipelines, as well as client network and application architectures. These individuals will conduct workshops and other support activities to aid clients in establishing and reviewing reusable security patterns in hybrid- and multi cloud- environments. Finally, these individuals contribute to internal code repositories established to deploy and configure client infrastructure based on defined security requirements, primarily leveraging Terraform and Ansible.At RSM, Managers work with large and small companies in variety of industries. They develop strong working relationships with clients built on understanding their businesses and challenges facing the organization. Managers work on multiple team engagements each year, including several facets of any particular project—not just a single area of focus. Working in a mutually respectful team environment helps our Managers perform at their best and integrate their career with their personal life.You will have the opportunity to:

• Lead development of enterprise security architecture solutions spread across on premise and cloud platforms
• Create cloud based programs, performing threat simulations to detect possible risks, and providing security recommendations on topics like micro services design or application development
• Develop security controls and processes for products developed and deployed in cloud environments
• Provide instruction and direction on secure cloud based coding concepts
• Develop in-depth security architecture, design and coding standards across infrastructure, application and data security, to drive a standardized set of security requirements, and align with internal policies and meet external compliance/regulatory requirements
• Perform threat modeling, conduct reviews of security architecture and platform/service designs, and audit source code
• Develop security tools and automation using Ansible and/or Terraform playbooks
• Develop and deliver security training to clients and internal teams
• Support for mentoring, team building and recruiting activities

Basic qualifications for a Director position include:

• Minimum B.A. or B.S. degree or equivalent from an accredited university by the time employment commences
• Computer science, information technology, information systems management, or other similar degrees preferably with a focus on information security
• Strong working knowledge of computer network technologies, protocols and topologies
• Proficiency with a variety of cloud platforms including AWS, Azure and Google
• The ability to interpret and convey technical information through written and oral communications to all levels of technical aptitude, including senior management
• High degree of integrity and confidentiality, as well as ability to adhere to company policies and best practices
• Possess a strong internal drive and motivation for continuous improvement

Beneficial, but not required, qualifications for a Director-level position include:

• Practical hands-on or lab experience with traditional network infrastructure, servers, storage, a network and virtualization software, as well as cloud concepts such as containers, dockers, kubernetes, etc.
• Experience with testing and development frameworks, with regards to their applicability to cloud environments, such as the Open Web Application Security Project (OWASP), Open Source Security Testing Methodology Manual (OSSTMM), the Penetration Testing Execution Standard (PTES), Information Systems Security Assessment Framework (ISSAF), and NIST SP800-115
• Familiarity with security testing techniques such as network discovery, port and service identification, vulnerability scanning, network sniffing, penetration testing, and configuration reviews
• Familiarity with the application of security and privacy provisions to cloud environments across a variety of regulations and standards such as PCI, ISO 27000 series, NIST SP 800 series, etc.

At RSM, we offer a competitive benefits and compensation package for all our people. We offer flexibility in your schedule, empowering you to balance life’s demands, while also maintaining your ability to serve clients. Learn more about our total rewards at https://rsmus.com/careers/working-at-rsm/benefits.

As an Affirmative Action and Equal Opportunity Employer all applicants will receive consideration for employment as RSM does not tolerate discrimination and/or harassment based on race; color; creed; sincerely held religious beliefs, practices or observances; sex (including pregnancy or disabilities related to nursing); gender (including gender identity and/or gender expression); sexual orientation; HIV Status; national origin; ancestry; familial or marital status; age; physical or mental disability; citizenship; political affiliation; medical condition (including family and medical leave); domestic violence victim status; past, current or prospective service in the US uniformed service; US Military/Veteran status; pre-disposing genetic characteristics or any other characteristic protected under applicable federal, state or local law. 

Accommodation for applicants with disabilities is available upon request in connection with the recruitment process and/or employment/partnership. RSM is committed to providing equal opportunity and reasonable accommodation for people with disabilities. If you require a reasonable accommodation to complete an application, interview, or otherwise participate in the recruiting process, please call us at 800-274-3978 or send us an email at careers@rsmus.com.

RSM does not intend to hire entry level candidates who will require sponsorship now OR in the future (i.e. F-1 visa holders). If you are a recent U.S. college / university graduate possessing 1-2 years of progressive and relevant work experience in a same or similar role to the one for which you are applying, excluding internships, you may be eligible for hire as an experienced associate.

RSM will consider for employment qualified applicants with arrest or conviction records in accordance with the requirements of applicable law, including but not limited to, the California Fair Chance Act, the Los Angeles Fair Chance Initiative for Hiring Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the San Francisco Fair Chance Ordinance. For additional information regarding RSM’s background check process, including information about job duties that necessitate the use of one or more types of background checks, click here.

At RSM, an employee’s pay at any point in their career is intended to reflect their experiences, performance, and skills for their current role. The salary range (or starting rate for interns and associates) for this role represents numerous factors considered in the hiring decisions including, but not limited to, education, skills, work experience, certifications, location, etc. As such, pay for the successful candidate(s) could fall anywhere within the stated range.

Compensation Range: $137,200 - $276,100

Individuals selected for this role will be eligible for a discretionary bonus based on firm and individual performance.