About the role
Location: Open to locations within proximity of a CGI office
Clearance: Have or able to obtain Federal level security Clearance-Enhanced Reliability
The Cloud Security Specialist is responsible for designing, implementing, and maintaining robust security measures to protect cloud-based infrastructure, applications, and data. This role collaborates closely with IT, DevOps, and compliance teams to ensure that cloud environments are secure, compliant, and aligned with industry best practices and regulatory requirements.
Your future duties and responsibilities
Cloud Security Strategy and Implementation:
Develop and implement a comprehensive cloud security strategy in line with industry best practices and regulatory requirements.
Design and deploy security architectures for cloud-based applications and services.
Ensure secure configuration and management of cloud infrastructure (e.g., AWS, Azure, Google Cloud).
Risk Assessment and Management:
Conduct regular risk assessments and vulnerability analyses to identify potential security threats to cloud environments.
Implement and maintain security controls to mitigate identified risks and vulnerabilities.
Develop and enforce policies and procedures for cloud security risk management.
Security Monitoring and Incident Response:
Monitor cloud environments for security breaches, incidents, and anomalies using security information and event management (SIEM) tools.
Respond to and investigate security incidents, providing timely resolution and mitigation.
Conduct post-incident analysis and develop strategies to prevent future incidents.
Compliance and Governance:
Ensure cloud environments comply with relevant security standards, regulations, and frameworks (e.g., ISO 27001, NIST, GDPR, HIPAA).
Develop and maintain documentation for cloud security policies, procedures, and guidelines.
Coordinate with internal and external auditors during security assessments and audits.
Collaboration and Training:
Collaborate with IT, DevOps, and development teams to integrate security best practices into cloud infrastructure and applications.
Provide training and guidance to employees on cloud security practices and awareness.
Stay current with the latest cloud security trends, threats, and technologies.
Automation and DevSecOps:
Implement security automation tools and scripts to streamline security processes and reduce manual effort.
Integrate security controls into CI/CD pipelines to ensure continuous security throughout the software development lifecycle (SDLC).
Identity and Access Management (IAM):
Manage and configure IAM policies and roles to ensure appropriate access controls are in place.
Monitor and audit user access to cloud resources to detect and respond to unauthorized access attempts.
Encryption and Data Protection:
Implement encryption mechanisms to protect sensitive data in transit and at rest in cloud environments.
Ensure proper key management practices are followed for cloud-based encryption.
Required qualifications to be successful in this role
Bachelor's degree in Information Security, Computer Science, or a related field or equivalent experience
Minimum of 3-5 years of experience in cloud security or a related role.
In-depth knowledge of cloud security frameworks and best practices.
Experience with cloud platforms such as AWS, Azure, or Google Cloud.
Strong understanding of network security, encryption, and identity management in cloud environments.
Proficiency with security monitoring and incident response tools.
Relevant certifications (e.g., AWS Certified Security – Specialty, Certified Cloud Security Professional (CCSP), CISSP) are highly desirable.
Excellent problem-solving and analytical skills.
Strong communication and collaboration skills.
Preferred Skills:
Experience with DevSecOps practices and integrating security into CI/CD pipelines.
Familiarity with infrastructure-as-code (IaC) tools (e.g., Terraform, CloudFormation).
Knowledge of container security and orchestration tools (e.g., Kubernetes, Docker).
Understanding of compliance and regulatory requirements related to cloud security.
#LI-AB19
Together, as owners, let’s turn meaningful insights into action.
Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because…
You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction.
Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise.
You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons.
At CGI, we value the strength that diversity brings and are committed to fostering a workplace where everyone belongs. We collaborate with our clients to build more inclusive communities and empower all CGI partners to thrive. As an equal-opportunity employer, being able to perform your best during the recruitment process is important to us. If you require an accommodation, please inform your recruiter.
To learn more about accessibility at CGI, contact us via email. Please note that this email is strictly for accessibility requests and cannot be used for application status inquiries.
Come join our team—one of the largest IT and business consulting services firms in the world.
About CGI
Insights you can act on to achieve trusted outcomes.
We are insights-driven and outcomes-focused to help accelerate returns on your investments. Across 21 industry sectors and 400 locations worldwide, we provide comprehensive, scalable and sustainable IT and business consulting services that are informed globally and delivered locally.
We value your opinions and welcome your comments and questions on our posts here on LinkedIn. Please keep a polite, professional and constructive tone. We remove comments containing objectionable language and derogatory views. We do not allow content that is unrelated to the subject, and we remove discriminatory and racist comments as well as spam and advertising.
Note that content on this page contains general information regarding CGI’s services and initiatives and should not be considered direct business advice. To engage in a discussion with one of our experts, please make a request through https://www.cgi.com/en/contact-us
About the role
Location: Open to locations within proximity of a CGI office
Clearance: Have or able to obtain Federal level security Clearance-Enhanced Reliability
The Cloud Security Specialist is responsible for designing, implementing, and maintaining robust security measures to protect cloud-based infrastructure, applications, and data. This role collaborates closely with IT, DevOps, and compliance teams to ensure that cloud environments are secure, compliant, and aligned with industry best practices and regulatory requirements.
Your future duties and responsibilities
Cloud Security Strategy and Implementation:
Develop and implement a comprehensive cloud security strategy in line with industry best practices and regulatory requirements.
Design and deploy security architectures for cloud-based applications and services.
Ensure secure configuration and management of cloud infrastructure (e.g., AWS, Azure, Google Cloud).
Risk Assessment and Management:
Conduct regular risk assessments and vulnerability analyses to identify potential security threats to cloud environments.
Implement and maintain security controls to mitigate identified risks and vulnerabilities.
Develop and enforce policies and procedures for cloud security risk management.
Security Monitoring and Incident Response:
Monitor cloud environments for security breaches, incidents, and anomalies using security information and event management (SIEM) tools.
Respond to and investigate security incidents, providing timely resolution and mitigation.
Conduct post-incident analysis and develop strategies to prevent future incidents.
Compliance and Governance:
Ensure cloud environments comply with relevant security standards, regulations, and frameworks (e.g., ISO 27001, NIST, GDPR, HIPAA).
Develop and maintain documentation for cloud security policies, procedures, and guidelines.
Coordinate with internal and external auditors during security assessments and audits.
Collaboration and Training:
Collaborate with IT, DevOps, and development teams to integrate security best practices into cloud infrastructure and applications.
Provide training and guidance to employees on cloud security practices and awareness.
Stay current with the latest cloud security trends, threats, and technologies.
Automation and DevSecOps:
Implement security automation tools and scripts to streamline security processes and reduce manual effort.
Integrate security controls into CI/CD pipelines to ensure continuous security throughout the software development lifecycle (SDLC).
Identity and Access Management (IAM):
Manage and configure IAM policies and roles to ensure appropriate access controls are in place.
Monitor and audit user access to cloud resources to detect and respond to unauthorized access attempts.
Encryption and Data Protection:
Implement encryption mechanisms to protect sensitive data in transit and at rest in cloud environments.
Ensure proper key management practices are followed for cloud-based encryption.
Required qualifications to be successful in this role
Bachelor's degree in Information Security, Computer Science, or a related field or equivalent experience
Minimum of 3-5 years of experience in cloud security or a related role.
In-depth knowledge of cloud security frameworks and best practices.
Experience with cloud platforms such as AWS, Azure, or Google Cloud.
Strong understanding of network security, encryption, and identity management in cloud environments.
Proficiency with security monitoring and incident response tools.
Relevant certifications (e.g., AWS Certified Security – Specialty, Certified Cloud Security Professional (CCSP), CISSP) are highly desirable.
Excellent problem-solving and analytical skills.
Strong communication and collaboration skills.
Preferred Skills:
Experience with DevSecOps practices and integrating security into CI/CD pipelines.
Familiarity with infrastructure-as-code (IaC) tools (e.g., Terraform, CloudFormation).
Knowledge of container security and orchestration tools (e.g., Kubernetes, Docker).
Understanding of compliance and regulatory requirements related to cloud security.
#LI-AB19
Together, as owners, let’s turn meaningful insights into action.
Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because…
You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction.
Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise.
You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons.
At CGI, we value the strength that diversity brings and are committed to fostering a workplace where everyone belongs. We collaborate with our clients to build more inclusive communities and empower all CGI partners to thrive. As an equal-opportunity employer, being able to perform your best during the recruitment process is important to us. If you require an accommodation, please inform your recruiter.
To learn more about accessibility at CGI, contact us via email. Please note that this email is strictly for accessibility requests and cannot be used for application status inquiries.
Come join our team—one of the largest IT and business consulting services firms in the world.
About CGI
Insights you can act on to achieve trusted outcomes.
We are insights-driven and outcomes-focused to help accelerate returns on your investments. Across 21 industry sectors and 400 locations worldwide, we provide comprehensive, scalable and sustainable IT and business consulting services that are informed globally and delivered locally.
We value your opinions and welcome your comments and questions on our posts here on LinkedIn. Please keep a polite, professional and constructive tone. We remove comments containing objectionable language and derogatory views. We do not allow content that is unrelated to the subject, and we remove discriminatory and racist comments as well as spam and advertising.
Note that content on this page contains general information regarding CGI’s services and initiatives and should not be considered direct business advice. To engage in a discussion with one of our experts, please make a request through https://www.cgi.com/en/contact-us