Solutions Architect - Zero Trust

Job Description

The selected candidate will be responsible for supporting Cyber services presales efforts and some small amount of engagement execution across a variety of large commercial organizations.

This individual should be a motivated self-starter and have a strong foundation and understanding in ZERO TRUST Methodology , Information Technology and Security Architecture, with a preference in selling managed security services and managed detection and response ZERO TRUST security services.

This candidate should have excellent communication skills, both written and oral, be willing to learn and execute on any client requests and have the ability to interact with all levels of customer staff from the executive level down to highly technical analysts in structured and unstructured situations.

Key Responsibilities :

• Should be able to create the Solutions in below areas for Client needs, bids and proposals.
• Develop comprehensive solution proposals, including architecture diagrams, technical specifications, and implementation plans, to showcase the benefits and ROI of Zero Trust implementations.
• Solid understanding of cybersecurity principles, risk management practices, and business requirements, enable Zero Trust design, implement, and optimize Zero Trust architectures that enhance security and resilience according the client requirements and proposals.
• Engage with prospective clients to understand their business objectives, security challenges, and IT infrastructure landscape.
• Create and support solutions in cyber security zero trust methodology for client.
• Conduct in-depth discovery sessions to identify pain points, assess current security posture, and gather requirements for implementing Zero Trust solutions.
• Provide technical expertise and guidance to clients during the pre-sales process, offering insights into Zero Trust principles, architectures, and best practices.
• Articulate the value proposition of Zero Trust solutions and demonstrate how they address clients' specific security needs and regulatory compliance requirements.
• Collaborate with clients and internal teams to design customized Zero Trust architectures tailored to their unique requirements.
• Deliver compelling technical presentations and demonstrations to clients, highlighting the features, functionalities, and advantages of Zero Trust solutions.

Effectively communicate complex technical concepts in clear and concise terms, addressing clients' concerns and questions to build confidence in the proposed solutions.

Assist in the preparation of proposals, RFP responses, and technical documentation for client engagements. Ensure that proposals accurately reflect the proposed Zero Trust solution architecture, implementation approach, timeline, and resource requirements to meet clients' expectations and contractual obligations.

Technical Skills required :

• Network Security : A deep understanding of network security principles, including firewalls, intrusion detection and prevention systems (IDPS), network segmentation, and secure network protocols (e.g., TLS, SSH).
• Identity and Access Management (IAM) : Proficiency in IAM technologies and protocols, such as SAML, OAuth, OpenID Connect, and LDAP.

Ability to design and implement secure authentication mechanisms, including multi-factor authentication (MFA) and single sign-on (SSO).

• Micro-segmentation : Experience with micro-segmentation technologies and tools for segmenting network traffic and enforcing granular access controls based on user identity, device posture, and application behavior.
• Encryption : Knowledge of encryption algorithms, key management practices, and encryption protocols for securing data in transit and at rest.

Familiarity with cryptographic techniques and standards (e.g., AES, RSA, SSL / TLS).

• Continuous Authentication : Understanding of continuous authentication methods, such as behavior-based authentication, adaptive authentication, and risk-based authentication, to dynamically assess and verify user identities throughout the session.
• Endpoint Security : Expertise in endpoint security solutions, including endpoint detection and response (EDR), endpoint protection platforms (EPP), and mobile device management (MDM) solutions, to secure devices and enforce Zero Trust policies.
• Security Information and Event Management (SIEM) : Proficiency in SIEM platforms for real-time monitoring, correlation, and analysis of security events and incidents across the network, endpoints, and cloud environments.
• Network Visibility : Knowledge of network visibility tools and techniques for monitoring and analyzing network traffic, detecting anomalies, and identifying potential security threats or policy violations.
• Cloud Security : Understanding of cloud security best practices, including securing cloud infrastructure (IaaS), platform (PaaS), and software (SaaS) services, and integrating Zero Trust principles into cloud environments.
• Vulnerability Management : Experience with vulnerability assessment tools and practices for identifying, prioritizing, and remediating security vulnerabilities across the network and endpoints to reduce the attack surface.
• Compliance and Regulatory Requirements : Familiarity with cybersecurity frameworks (e.g., NIST Cybersecurity Framework, CIS Controls) and regulatory requirements (e.

g., GDPR, HIPAA, PCI DSS) to ensure Zero Trust implementations align with industry standards and compliance mandates.

• Scripting and Automation : Proficiency in scripting languages (e.g., Python, PowerShell) and automation tools to streamline Zero Trust deployment, configuration, and management tasks.
• Troubleshooting and Incident Response : Strong troubleshooting skills to diagnose and resolve security incidents, including rapid incident response, containment, and remediation actions to minimize impact and restore normal operations.
• Collaboration and Communication : Effective communication and collaboration skills to work closely with clients, internal teams, and third-party vendors, translating technical concepts into understandable terms and delivering actionable recommendations.

Basic Qualifications :

• Self-Starter with ability to spin up quickly on technologies, issues, topics, and advances in the cyber security field
• Prior experience in a customer-facing sales engineering or solutions architect role.
• Prior experience in presenting results to clientele leadership in person or remote.
• Can do attitude willing to take on challenging opportunities and deliver with excellence for all customer projects and programs
• Minimum of 10 years of working in cyber security, Information Technology / Information Security industry
• Experience / knowledge in multiple Information Security domains : Managed security and MDR services, Cyber Intelligence Analysis, Threat Monitoring, Incident Response, Endpoint Protection, Computer Forensics, Cyber Architecture, Endpoint Protection, Network Security, Infrastructure Security, Application Security, Platform Security, Policy & Governance, Cloud Security, End User Education & Awareness, Penetration Testing, Vulnerability Scanning & Management, and Compliance & Risk Management
• Experience with cyber security processes, tools, and technologies
• Cyber security certifications such as, CEH, GCIA, GCIH, GCFE, and / or Security+, CISSP
• Strong interpersonal, verbal, and written communication skills to successfully accomplish client-facing interactions
• Ability and willingness to travel 20%+, including potential travel outside of the US. Currently, travel frequency is significantly reduced due to COVID-19, but has the potential to eventually ramp back up as the US and global COVID-19 situation improves
• Bachelor’s degree from an accredited college in a related discipline, or equivalent experience / combined education, with 5 years of professional experience;

or 3 years of professional experience with a related Master’s degree. Considered an emerging authority.

Knowledge of Large Fortune organizations security programs and their related functions to include the SOC function, vulnerability assessment, penetration testing, security policy and procedure, security infrastructure management, network and host-based defense, cyber security metrics, security engineering, etc.

Consulting and Assessment : Conduct comprehensive assessments of clients' existing IT infrastructure, network architecture, and security protocols to identify vulnerabilities and areas for improvement.

Zero Trust Strategy Development : Collaborate with clients to develop tailored Zero Trust security strategies aligned with their business objectives, regulatory requirements, and risk tolerance.

Architecture Design : Design and architect Zero Trust network and security solutions, including micro-segmentation, identity and access management (IAM), encryption, continuous authentication, and network visibility tools.

Implementation and Integration : Lead the implementation and integration of Zero Trust solutions within clients' environments, working closely with their IT teams and third-party vendors to ensure seamless deployment and configuration.

Technical Expertise : Serve as a subject matter expert on Zero Trust principles, technologies, and best practices, providing guidance and training to clients and internal teams as needed.

Risk Management : Assess and mitigate security risks associated with Zero Trust implementations, proactively identifying potential threats and developing mitigation strategies to safeguard clients' assets.

Documentation and Reporting : Prepare detailed documentation, including architecture diagrams, technical specifications, and project reports, to communicate project status, findings, and recommendations to clients and internal stakeholders.

About Capgemini

Capgemini is a global leader in partnering with companies to transform and manage their business by harnessing the power of technology.

The Group is guided everyday by its purpose of unleashing human energy through technology for an inclusive and sustainable future.

It is a responsible and diverse organization of nearly , team members in more than 50 countries. As we leverage cloud, data, AI, connectivity, software, digital engineering, and platforms to address the entire breadth of business needs, this passion drives a powerful commitment.

To unlock the true value of technology for your business, our planet, and society for a more inclusive, sustainable future.

Get The Future You Want About Cloud Infrastructure Services (CIS) :

CIS powers enterprises’ business and technology digital transformation by accelerating change, reinforcing cybersecurity, empowering employees, managing complexity, and fostering adaptability.

Working across sectors in 50+ countries, our 30, cloud professionals apply our world-class expertise with cloud leaders to offer bespoke, ongoing cloud, infrastructure, cybersecurity, digital workplace, and enterprise service management support.

Leveraging our close partnerships with leading cloud vendors and advanced intelligence from our global operations centers, our CIS teams are trusted by clients to securely navigate in today’s dynamic business environments, driving forward business value so they get the future they want.

Our unique approach to infrastructure connects solutions, services, and suppliers to implement integrated solutions across the IT supply chain, public and private clouds, and legacy environments, helping clients optimize their digital transformation journeys.

Our five key service areas are :

• Cloud Services : Exploiting the cloud at speed and scale
• Employee Experience Services : Making the future of work work for our clients
• Cybersecurity Services : Securing Foundations to Create Open Futures
• Enterprise Service Management : Taking charge of complexity to drive business value
• Infrastructure Services : Managing and modernizing IT estates

Applicants for employment in the US must have valid work authorization that does not now and / or will not in the future require sponsorship of a visa for employment authorization in the US by Capgemini.

Please be aware that Capgemini may capture your image (video or screenshot) during the interview process. That image may be used for verification, including during the hiring and onboarding.

Technology Strategy

Schedule

Full-time

Primary Location

US-Georgia

Organization

CIS US P&C