• This position will be fully remote and will be located in Vancouver, BC • Establish & maintain productive and respectful relationships with the delivery team, practice management, and client management team. • Deliver timely engagements and works closely with Practice Directors to drive training and education, career development, performance development, and collaboration across the team • Confirm that work is of the highest quality as per Optiv’s quality standards, by reviewing the work provided by other members. • Lead in capacity planning and HW specification recommendation efforts. • Lead in all Technology deployment activities, connector configuration, custom rule development, workflow configuration and development, and third-party system integration. • Lead in business impact analysis, risk analysis, recovery planning efforts. • Lead User Acceptance Testing and bug-related engineering efforts. • Design, implement and educate on specific technology build processes, code migration, and source control use. • Provide knowledge transfer and post production support activities as necessary. • Complete administrative project tasks like time and expense entry, status reporting, and project completion reporting.

• Outline the security architecture strategy for cloud authentication, authorization, workload identity, and agent identity across NVIDIA cloud platforms, AI-enabled systems, enterprise connectors, services, and automation. • Outline processes for establishing, linking, authorizing, delegating, auditing, and retiring human, workload, service, and autonomous agent identities, including attestation-supported identity issuance and certificate-based or temporary credentials. • Develop authorization and delegation frameworks for AI agents and enterprise connectors, encompassing consent, token exchange, prioritized authority, sensitive-action approval, revocation, and protections against confused-deputy behavior. • Lead architecture reviews and threat modeling for high-risk identity and access flows, turning ambiguous scenarios into practical controls that engineering teams can build and verify. • Establish identity lifecycle, telemetry, and emergency-disablement patterns for token issuance, policy decisions, privilege elevation, tool invocation, data access, credential rotation, grant revocation, and compromised or untrusted identities. • Convert emerging AI security risks into authentication, authorization, audit, and execution-boundary requirements. • Partner with identity, cloud, platform, application, AI security, governance, detection, and incident response teams to align architecture decisions with risk strategy and operational reality. • Build reusable architecture patterns, decision records, exception criteria, and implementation mentorship, staying engaged through adoption, validation, and residual-risk closure.

Role Description We are seeking a Lead Security Consultant specializing in SASE/SSE technology to play a role in delivering outcomes across a wide range of global clients. Desired skillsets are centered around core Secure Service Edge (SSE) or Secure Access Service Edge (SASE) capabilities offered in the portfolios of both Netskope and Zscaler technology domains. This Lead Consultant position will require deployment experience of both the core products of these technologies as well as extended parts of the portfolio that customers require assistance deploying. This will be accomplished by engaging with project & practice leadership to plan outcomes for engagements, expanding the capabilities and offerings of the security practice and delivering on consulting engagements in a supporting capacity. Responsibilities - Play a critical role in delivering on projects leveraging Zscaler/Netskope products. - Lead and execute Zscaler/Netskope platform delivery, proxy migration efforts and testing. - Mentor other members of the Global Security Consulting practice on security strategy and architectures as well as consulting approach and skillsets. - Ensure the successful delivery of the most complex engagements involving Zscaler/Netskope technologies that result in meaningful outcomes to large global enterprise and government customers. - Create communication plans with an objective of informing on capabilities, services, and processes to support goals and objectives. - Participate or lead customer facing meetings, workshops, or other events related to cybersecurity lines of business. - Possess the ability to work in a client environment and develop a multitude of relationships, up to the executive level, with excellent communication skills. - Have expert level knowledge in one or more of the following cybersecurity areas: security architecture, cloud security, remote access, SOC operations, compliance, security governance, networks, protocols, threat management, change management, vulnerability management and overall cyber security best practices. - Provide support to multiple engagements across the Zscaler/Netskope portfolio. - Excellent communications skills that need to be demonstrated to internal and external teams. - Oversight and review of engagement collaterals such as presentation and deliverables. Qualifications - 7-plus years of cybersecurity experience with a background as a practitioner, or an industry facing consultant. - Minimum of a Bachelor’s Degree in Computer Science, Computer Information Systems, Information Security, or related field experience. - Technical expert in core Zscaler/Netskope solutions across a variety of deployment scenarios. - Highest level of technical pre-sales & post-sales certification(s) for Zscaler and/or Netskope such as: - Zscaler Certified Professional – Cloud Security (ZCCP-CS) - Zscaler Certified Professional – Zero Trust Network Access (ZCCP-ZPA) - Zscaler Certified Architect – Cloud Security (ZCCA-CS) (highly desired) - Zscaler Certified Deployment Specialist - Netskope Certified Cloud Security Architect (NCCSA-Arch) (highly desired) - Netskope Certified Cloud Security Engineer (NCCSE) - Netskope Certified Deployment Professional - Netskope Certified Cloud Security Integrator (NCCSI) - Demonstratable experience as a project or task lead and working with professionals across organizations. - Experience defining and scoping consulting engagements, including level of effort. - Experience leading multifunctional teams in the execution of complexity security consulting engagements. - Knowledge of the various industry and government strategies and standards in privacy and cybersecurity. - Extensive ability to perform concurrent tasks in complex environments under adjusting priorities. - Ability to communicate and modify approach, language, and style to different audiences. - Extensive experience in organizing resources, establishing priorities, and leading security initiatives. - Must have excellent communication skills, writing skills, and the ability to work with team members at all levels. - Must be a performance-driven team player with a superior attitude. - Working knowledge of other SASE/SSE technologies, such as Palo Prisma SASE or FortiSASE/SD-WAN, is a plus. - CISSP or CISM Preferred. Requirements - Strong leadership ability and proven skills bringing cyber security expertise from a consultant and/or technical background. - Experience in developing and refining service methodologies, as well as positioning them with senior leaders. - Diversified background is a plus and expertise in security domains such as strategy, security architectures, vulnerability management or others is required. Benefits - Health and Wellbeing: Health, Dental, and Vision Care, Onsite Health Centers, Employee Assistance Program, Wellness program. - Financial Benefits: Competitive pay, Profit Sharing, 401k Plan with Company Matching, Life and Disability Insurance, Tuition Reimbursement. - Paid Time Off: PTO and Sick Leave (starting at 20 days per year) & Holidays (10 per year), Parental Leave, Military Leave, Bereavement. - Additional Perks: Nursing Mothers Benefits, Voluntary Legal, Pet Insurance, Employee Discount Program.

• Lead client engagements and project execution providing information security consultation and assessment services, helping our clients meet their compliance obligations by evaluating their business, technology, and operations against industry security standards • Educate, mentor, advise, and share your expertise with clients and colleagues to aid in making decisions on topics like Artificial Intelligence, organizational security strategy and services scope as well provide consultative guidance on complex projects • Providing clear, organized findings and recommendations to clients and tracking progress towards resolution and compliance • Consult/advise with C-level Security Leaders (CISO, CSO, CIO, etc.) and the Board of Directors with our most valued and strategic clients • Develop strategic, operational, and tactical recommendations tailored to each client with the intent to improve a client’s security posture and compliance position • Create detailed strategic security roadmaps with short-term, mid-term, and long-term goals that prioritize remediation recommendations and address all instances of non-compliance with applicable regulatory, statutory, contractual, and organizational obligations • Lead large security engagements in concert with other cybersecurity practices and Presidio teams • Develop security policies, standards, and procedures that are custom-tailored to each client’s unique culture, security goals, and organizational objectives using industry best practices and compliance requirements • Review, analyze, and assess key factors, including inherent risk, mitigating controls, business impact, likelihood and other key elements to determine organizational security risk • Ensure and assess client alignment to, and/or compliance with, applicable regulatory, federal, state, local, contractual, and organizational requirements and best practices standards such as ISO 27001, NIST Cyber Security Framework (CSF), PCI DSS, HIPAA, FERPA, NIST 800-171, CMMC, etc. • Work closely with organizations to conduct security program development by establishing the foundation for a best of breed security program architecture reference model using industry frameworks and standards such as ISO 27001, NIST 800-53, NIST CSF, etc. • Work with other seasoned Principal Security Consultants in a collaborative setting to support and assist on the execution and delivery of key services such as Cloud Governance, Advisory Services, security program development, documentation review, and security consulting services • Execute tabletop exercises after collaborating with client stakeholders to select the scenario then create an After-Action Report • Deliver PCI Advisory Services, including PCI Gap Analysis, SAQs, ROCs and AOCs • Deliver CMMC Advisory Services, including CMMC Readiness Assessments • Assist leadership in cybersecurity administrative functions, such as documentation maintenance, documentation creation, peer review, and other internal cybersecurity activities