Job Description

Senior Cloud Security Consultant
Job Number: 21-10055
Use your skills where innovative technology solutions begin. Eclaro is looking for an Senior Cloud Security Consultant for our client.
Eclaro’s client is a leading technology solutions provider, collaborating with customers to manage their needs and achieve success in their business goals. If you’re up to the challenge, then take a chance at this rewarding opportunity!

  • Work with internal and external stakeholders to independently perform security assessments with potential for Cloud-level security assessments.
  • Conduct security architecture review of Third-Party SaaS applications built on cloud and emerging technologies.
  • Provide clear and detailed risk assessment and remediation guidelines for Third-Party Suppliers and owners.
  • Report underlying security issues and propose enhanced security protections and/or counter-measures.
  • Develop and innovate the Supplier Security Strategy to ensure we work with the most mature and secure Suppliers available.
  • Consult on future program enhancements including automation, assessment tooling, penetration testing, and security standards and controls.
  • Provide guidance to prospective Suppliers on our security requirements including remediation and potential feature enhancements.
  • Support security design and implementation review of onboarded SaaS Applications and web-services.
Required Experience:
  • 10+ years of work experience with Web Application/SaaS Security and Public Cloud (i.e. AWS, GCP, Azure) Security.
  • 10+ years' experience evaluating system architectural designs, data flows, technical security implementations, especially for SaaS Applications and Systems hosted on cloud platforms.
  • 7+ years of work experience conducting information security consulting engagements.
  • In-depth knowledge of the security assessment processes and lifecycle with the ability to identify potential improvement areas and gaps in existing processes.
  • In-depth knowledge identifying and protecting against web application and web service security vulnerabilities including those found in the OWASP Top 10 and CWE Top 25.
  • Threat Modeling and Design Reviews.
  • Strong knowledge of Application Security, Network Security, Crypto, and Identity Management, Threat Management, GRC (NIST controls)
  • In depth knowledge on Application and Cloud Security industry standards, trends, threats, vulnerabilities, and technology frameworks.
  • This is not a "check-the-box " or Compliance focused role, this role requires a broad mix of technical expertise and business acumen coupled with polished communication to ensure we are adopting and implementing SaaS and Cloud-based services which meet unique security requirements and standards.
  • Excellent written and oral communication skills, including experience communicating to both technical and nontechnical audiences.
  • Hands-on experience with Penetration Testing Web applications, SaaS products, and/or Cloud environments.
  • Contributions to the security community such a research, published CVEs, bug-bounty recognitions, open-source projects, blogs or publications.
  • Industry Certifications such as GWAPT, GPEN, GCPN, OSWE.
  • Independently perform risk-based security assessment of the Third-Party SaaS providers.
If hired, you will enjoy the following Eclaro Benefits:
  • 401k Retirement Savings Plan administered by Merrill Lynch
  • Commuter Check Pretax Commuter Benefits
  • Eligibility to purchase Medical, Dental & Vision Insurance through Eclaro

If interested, you may contact:
Sheila Garcia

Equal Opportunity Employer: Eclaro values diversity and does not discriminate based on Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.                                                                      

Application Instructions

Please click on the link below to apply for this position. A new window will open and direct you to apply at our corporate careers page. We look forward to hearing from you!

Apply Online