Title: Cloud Security Architect - Contract Location: Rolling Meadows, IL United States - Information Technology - 54196 - $117,000 - $228,000 - Fully Remote Worker Job Description: Introduction Welcome to Gallagher - a global community of people who bring bold ideas, deep expertise, and a shared commitment to doing what's right. We help clients navigate complexity with confidence by empowering businesses, communities, and individuals to thrive. At Gallagher, you'll find more than a job; you'll find a culture built on trust, driven by collaboration, and sustained by the belief that we're better together. Whether you join us in a client-facing role or as part of our brokerage division, our benefits and HR consulting division, or our corporate team, you'll have the opportunity to grow your career, make an impact, and be part of something bigger. Experience a workplace where you're encouraged to be yourself, supported to succeed, and inspired to keep learning. That's what it means to live The Gallagher Way. Overview Gallagher is a global leader in insurance, risk management and consulting services. We help businesses grow, communities thrive and people prosper. We live a culture defined by The Gallagher Way, our set of shared values and guiding tenets. A culture driven by our people, over 30,000 strong, serving our clients with customized solutions that will protect them and fuel their futures. Please note additional position details below: - This is a Temp-To-Hire, W-2 position. We are not able to do 1099 or C2C. - It is a fully remote role that will need to be based in the U.S. - You must meet our U.S. Eligibility requirements for work authorization as noted under "Additional Information" at the bottom of the job description. Position Summary: Cloud Security Architect will serve as a key technical resource in Global Cyber and Information Security (GCIS) organization. This role will be responsible for developing and/or maturing Cloud security architecture approach, recommended standards, reference architecture designs and narratives. The role will keep current on Cloud best practices and provide direction for Cloud technical specifications. This role will work closely with other Information Security colleagues, IT & Infrastructure organization, and Business teams globally to provide security architecture guidance and recommendations. Take a leadership role and influence Cloud security architecture by example and clearly articulating objectives. How you'll make an impact Key Responsibilities: - Assess, review and design secure Cloud solutions working with various business teams and groups. - Promote Cloud security awareness in interactions with other teams. - Use a data centric risk-based approach to cloud security and solutions. - Define and create Cloud Security architectural standards, artifacts, design patterns and technical specification documents for the enterprise. - Assess, monitor and recommend Cloud security improvements and best practices to improve security posture, mitigate risks and balance costs. - Work with direction from the Director of Cloud Security Governance and closely with the Cloud enterprise architecture and Cloud security engineering team member(s) to ensure Cloud platforms are matured and securely configured. - Oversee and consult with project teams in business units to ensure adherence to Cloud security design patterns and best practices. - Engage with M&A teams to integrate acquired resources into the Gallagher cloud. - Design, collaborate and provide Cloud options for solutions that balance business requirements with information security requirements. - Proactively identify technical and architectural risks for current or proposed state, commenting and/or providing Cloud alternatives for consideration that will improve on capabilities, champion to present for approval and change. - Participate in security technology evaluations, proof of concept testing and provide in-depth analysis of the proposed solution. - Collaborate and partner with various key stakeholders across the enterprise to ensure alignment with the overall intended design. - Partner with architects and engineers within infrastructure, network, application and business teams to ensure that solutions are developed and managed as per GCIS policies and standards. - Assists with risk mitigation and governance activities aligned with Cloud security architecture compliance. - Enable architectural leadership within engaged and assigned forums and projects, acting as a guide by example for collaboration, thought leadership and expertise in Cloud security architecture. About You Required: - Bachelor's degree or equivalent in Computer Science or related field - Minimum 3+ years working with Microsoft Azure - Minimum 3+ years of cybersecurity experience - 2+ years of experience working with other cloud platforms (AWS, GCP, Oracle) - Minimum 1+ years of experience reviewing detailed solution architectures and providing feedback to the application and infrastructure teams. - Experience with reviewing and developing Cloud solution enabled models and security monitoring tooling. - Minimum 1+ years of experience with multi cloud security and aligning polices across platforms. - Demonstrated working experience in a regulated and globally distributed environment. - Knowledge and experience in enterprise architecture frameworks such as TOGAF. - Knowledge and experience implementing security standards frameworks (NIST - CSF, ISO 27001, CSA CCM, PCI-DSS, GDPR) - Proven success recommending and implementing Cloud security architecture best practices and standards for large projects or programs delivering or migrating to Cloud solutions and services. Preferred: - At least one certification related to information security such as; CISSP, CCSP, CCSK, AWS Solutions Architect, Azure Security. - Demonstrated knowledge of multi-Cloud environment security. - 2+ years experience in a global organization - Insurance and risk management domain knowledge desirable. - Architecture tasks associated with a Cloud Security Posture Monitoring tool such as WIZ. Key Characteristics: - Strong communications skills - oral and written. - Self-starter with strong work ethic. - Flexible and resilient, handle various demands planned and unplanned. - Proven ability to handle multiple tasks and projects simultaneously. - Problem solver and desire to close issues, pragmatic and realistic with solutions. - Resilient and collaborative, motivated to pro-actively drive issues to successful mutually agreed upon resolutions. #LI-NJ1 #Contingent Compensation and benefits We offer a competitive and comprehensive compensation package. The base salary range represents the anticipated low end and high end of the range for this position. The actual compensation will be influenced by a wide range of factors including, but not limited to previous experience, education, pay market/geography, complexity or scope, specialized skill set, lines of business/practice area, supply/demand, and scheduled hours. On top of a competitive salary, great teams and exciting career opportunities, we also offer a wide range of benefits. Below are the minimum core benefits you'll get, depending on your job level these benefits may improve: - Medical/dental/vision plans, which start from day one! - Life and accident insurance - 401(K) and Roth options - Tax-advantaged accounts (HSA, FSA) - Educational expense reimbursement - Paid parental leave Other benefits include: - Digital mental health services (Talkspace) - Flexible work hours (availability varies by office and job function) - Training programs - Gallagher Thrive program - elevating your health through challenges, workshops and digital fitness programs for your overall wellbeing - Charitable matching gift program - And more... The benefits summary above applies to fulltime positions. If you are not applying for a fulltime position, details about benefits will be provided during the selection process. We value inclusion and diversity Click Here to review our U.S. Eligibility Requirements Inclusion and diversity (I&D) is a core part of our business, and it's embedded into the fabric of our organization. For more than 95 years, Gallagher has led with a commitment to sustainability and to support the communities where we live and work. Gallagher embraces our employees' diverse identities, experiences and talents, allowing us to better serve our clients and communities. We see inclusion as a conscious commitment and diversity as a vital strength. By embracing diversity in all its forms, we live out The Gallagher Way to its fullest. Gallagher believes that all persons are entitled to equal employment opportunity and prohibits any form of discrimination by its managers, employees, vendors or customers based on race, color, religion, creed, gender (including pregnancy status), sexual orientation, gender identity (which includes transgender and other gender non-conforming individuals), gender expression, hair expression, marital status, parental status, age, national origin, ancestry, disability, medical condition, genetic information, veteran or military status, citizenship status, or any other characteristic protected (herein referred to as "protected characteristics") by applicable federal, state, or local laws. Equal employment opportunity will be extended in all aspects of the employer-employee relationship, including, but not limited to, recruitment, hiring, training, promotion, transfer, demotion, compensation, benefits, layoff, and termination. In addition, Gallagher will make reasonable accommodations to known physical or mental limitations of an otherwise qualified person with a disability, unless the accommodation would impose an undue hardship on the operation of our business.

• Responsible for the configuration and tuning of the Palo Alto Secure Web Gateway to ensure a secure and high-performance internet connection for IT workstations • Ensure that threats such as malware, exploits or phishing in internet traffic are reliably detected and blocked, and optimize the relevant security policies • Responsible for protecting sensitive data using Data Loss Prevention mechanisms as well as content and file controls to prevent unwanted data exfiltration • Ensure the secure use of applications by defining, maintaining and continuously adapting application control rules to current security requirements

• Azure Infrastructure Management – Design, deploy, and manage Azure cloud infrastructure including virtual machines, networking, storage, identity, and security services. • Microsoft 365 Administration – Serve as a senior administrator for the M365 tenant, including licensing, security policies, compliance configurations, and service health monitoring. • Office 365 Services – Manage and optimize O365 services including Exchange Online, SharePoint Online, OneDrive for Business, and related productivity tools. • Microsoft Teams Administration – Administer and optimize Microsoft Teams environments including Teams Calling, Teams Rooms, meeting policies, governance, and integrations. • Identity & Access Management – Manage Azure Active Directory (Entra ID), conditional access policies, MFA, SSO, and role-based access control (RBAC). • Security & Compliance – Implement and maintain Microsoft Defender, Purview, and Intune policies to ensure a secure and compliant cloud environment. • Automation & Scripting – Develop and maintain PowerShell scripts and automation workflows to streamline operations and reduce manual effort. • Architecture & Strategy – Participate in cloud architecture decisions, roadmap planning, and technology assessments to align cloud services with business objectives. • Monitoring & Optimization – Monitor Azure resource performance and costs, identify optimization opportunities, and implement best practices for cloud efficiency. • Incident Management – Lead troubleshooting and resolution of complex cloud and M365 issues, including root cause analysis and post-incident reviews. • Mentorship – Provide guidance, knowledge sharing, and technical mentorship to junior and mid-level IT staff. • Documentation – Develop and maintain thorough documentation of cloud architecture, configurations, runbooks, and standard operating procedures.

• Design, implement, and manage cloud infrastructure to support business and engineering applications. • Deploy, configure, and manage Kubernetes clusters in cloud environments. • Monitor and optimize performance, scalability, and availability of cloud environments. • Ensure cloud environments meet RTX security and compliance standards. • Automate infrastructure and cluster provisioning, upgrades, and maintenance using tools such as Helm and Terraform. • Implement and manage Kubernetes networking, including ingress controllers, service meshes, and network policies. • Collaborate with cross-functional teams to assess cloud requirements and provide solutions aligned with business objectives. • Troubleshoot and resolve infrastructure issues while maintaining high reliability and uptime. • Stay current with cloud platform updates and best practices and provide recommendations for improvements. • Document processes, policies, and procedures for cloud operations.