Engagement Manager, IT Strategy, Cyber

Engagement Manager Cybersecurity

Join Gartner Consulting, where insights meet execution. We partner with leaders across industries to address their most critical priorities and achieve measurable results. As a Cybersecurity Consultant, you will leverage Gartner's comprehensive research and tools to design, implement, and optimize cutting‑edge security solutions for a rapidly evolving digital landscape.

• Design Security Architectures: Architect and document secure solutions for enterprise environments, including applications, networks, and hybrid cloud systems, ensuring alignment with industry best practices.
• Develop Comprehensive Strategies: Create security strategies tailored to organizational objectives, with a focus on scalability, resilience, and adaptability to emerging threats.
• Secure Cloud Architectures: Design robust cloud architectures for AWS, Azure, and Google Cloud, incorporating secure access, encryption, and compliance measures.
• Optimize Enterprise Security: Recommend tools and processes to enhance incident response capabilities, data protection, and threat detection.
• Provide Deployment Oversight: Offer guidance during the implementation of architectural designs, ensuring adherence to security frameworks and strategic objectives.
• Collaborate with Stakeholders: Work with cross‑functional teams, including IT, compliance, and business units, to ensure alignment with regulatory and business requirements.
• Assess and Advise: Conduct detailed cloud security assessments, ensuring alignment with industry frameworks such as NIST CSF, ISO 27001, COBIT, GDPR, HIPAA, and CMMC. Provide actionable recommendations to address gaps and enhance security postures.
• Design Secure Cloud Environments: Develop and implement cloud‑native security architectures for platforms like AWS, Azure, and Google Cloud, incorporating zero‑trust principles, identity and access management (IAM), and data encryption strategies.
• Optimize Cybersecurity Programs: Lead initiatives to improve incident response plans, vulnerability management, and compliance strategies, driving resilience against emerging threats.
• Harness Emerging Technologies: Evaluate the implications of AI, machine learning, IoT, and blockchain for cloud security, incorporating these innovations into client strategies.
• Deliver Client Value: Collaborate with stakeholders to identify risks, implement remediation strategies, and ensure compliance with evolving regulatory landscapes.
• Develop Best Practices: Create and implement cloud security policies, IT controls, and governance frameworks tailored to organizational needs.
• Educate and Empower: Train client teams on cloud security best practices, fostering a culture of proactive risk management and awareness.

• Bachelor’s degree in Cybersecurity, Management Information Systems, Computer Science, Engineering, or Finance, with a proper technical focus.
• 5+ years of progressive cybersecurity experience
  , including specializations in security architecture, governance, and operations.
• Hands‑on experience with security solutions including cloud security, endpoint security, vulnerability management, network security technologies such as firewalls and IPS/IPS, content filtering, authentication systems, log management, encryption a plus.
• Hands‑on experience designing and implementing secure architectures for leading cloud platforms, including:
  • AWS (Secure Hub, IAM, Config, Cloud Trail, Guard Duty).
  • Azure (Security Center, Policy, Defender for Cloud).
  • Google Cloud (Security Command Center, Identity‑Aware Proxy, Chronicle).
• Expertise in security frameworks such as NIST CSF, ISO 27001, and COBIT.
• Experience with analyzing and recommending practical guidance for how AI should be used to transform cyber security offense and defense capabilities.
• Experience with IT/OT security architectures and strategies.
• Experience with SIEM tools like Splunk, Elastic Stack, or cloud‑native solutions for threat detection and response.
• Experience implementing zero‑trust architectures, with a deep understanding of network segmentation, identity‑centric security models, and real‑time monitoring.

• Inform…