Leads CrossCountry's growing Cloud Cybersecurity Practice, including the execution of cloud cybersecurity engagements for clients, and building relationships with new vendors, clients and partners. Responsibilities include:- leading the delivery of large client engagements. This typically involves leading teams of people, guiding team members in delivering the work by providing specialist input and coaching those team members. Also responsible for various engagement management tasks including invoicing, reporting, resource management, and backlog management.- providing specialist cloud cybersecurity input into various other engagements being run by CrossCountry, and working with other service lines to understand where our knowledge and skills can be used in their engagements.- developing cloud go-to-market strategies, identifying and quantifying opportunities at clients, and building methodologies and approaches for these opportunities.- team recruiting and working closely with recruiting team to identify and target people who can bring strong skills and the right culture to our team.- developing training plans for team members who don't necessarily have cloud experience, but want to get involved and learn.Experience includes:- designed and built AWS environments including implementing best-practice monitoring, logging, and new AWS account management techniques. - hands-on experience in deploying AWS security configurations and environments using tools including Terraform, CloudFormation, and DevOps methodologies.- designed security architectures for and built customer-facing applications, using a variety of new technologies including containers, OpenID Connect, serverless computing and DevOps deployment models. - designed and built authentication mechanisms for cloud-hosted applications, implemented logging and monitoring capabilities, and built and implemented AWS-specific security assessment controls.

Responsible for leading and building client relationships, and leading teams to build pragmatic and practical solutions for our clients.Previous client engagements have included:- Developed logical & technical architectures, requirements, and API designs for a multi-national Financial Services organisation attempting to automate and streamline their virtual machine deployment and configuration process. - Developed a Cloud Security Framework for a global Financial Services organisation. Using an industry standard framework as a baseline. Mapped the organisation’s internal IT and security policies against the framework to perform a high-level gap analysis. - Assessed the maturity of Cybersecurity capabilities at a global Financial Services organisation. Using an existing Enterprise Security Architecture framework as a baseline, assessed the maturity of the tools, people and processes in place supporting each capability, identified gaps and overlaps across capabilities, and developed a set of recommendations.- Worked with a major hospitality provider to assess internal control environment against NIST 800-53, including providing recommendations for remediation. Developed IT Risk Management and Vendor Management policies.

Previous client engagements have included:- Worked with the IT team of a major Australian consulting firm to develop an IT strategy, operating model, and support & operating team structure for a hybrid on-premise/cloud IT infrastructure setup.- Developed a cloud strategy and transition plan for a large Australian university. Identified and accounted for key business drivers for a move from on-premise infrastructure to a cloud-based environment, including impact on key specialist services such as HPC and big-data analysis capabilities. - Served as the Technical Lead of a key workstream on a large IT implementation program for an Australian Government Agency. Included the production of a business case seeking government funding for the program, the production and execution of a Request for Tender for the market, and planning for implementation within the organization. - Worked in a team to provide a managed service conducting Information and Technology risk assessments for a Financial Institution. Led a work-stream with upwards of 50 projects over a period of 15 months to understand the risks that the projects exposed the organization to, the potential impact of those risks, and any controls in place to help mitigate those risks.- Developed a Cloud Access Model for a multi-national Health Insurance Provider. Worked with stakeholders from network, platform, application, security and project teams to understand requirements of an access control model for a new cloud environment. - Performed numerous configuration and security reviews over a variety of technologies, and made recommendations for remediation based on risk appetite and controls environment. Included reviews of Windows Server 2003-2012, RHEL, and Solaris platforms, Oracle and MSSQL databases, Cisco firewalls, and various network architectures.