Principal Consultant

  • London, United Kingdom
  • Employees can work remotely
  • Full-time

Company Description

Since 2004, Mandiant has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.

Job Description

Mandiant’s Global Consulting team helps agencies build effective security operations programs that minimizes organizational risk and reduces the impact of security breaches. With a focus for securing cloud-based architectures, our consultants work from initial assessment and configuration review of security controls to detail technical recommendations that can be practically implemented to harden environments, enhance visibility and detection, and improve processes to reduce the risk of compromise. 

As a cloud security architect, you are responsible for developing and overseeing a cloud computing strategy for our clients.  This includes working with clients to understand their Google Cloud Platform (GCP), Microsoft Azure or Amazon Web Services (AWS) adoption plans, hosted application designs, and cloud management and monitoring methods.  The cloud security architect will provide clients with industry best practices and insights regarding application architecture and deployment in cloud environments.  

You will also need to apply your GCP, Azure and/or AWS security, network architecture, hardening, and logging enforcement skills to assist clients with containment and remediation workstreams related to cloud security incidents. The successful candidate will possess strong consulting skills, be adept in leading multiple projects under tight deadlines, and possess in-depth experience in cloud architecture, best-practices, and security hardening and monitoring.  
We encourage giveback to the community and strongly support sharing of expertise by authoring whitepapers and speaking at conferences.


  • Demonstrate a deep understanding of GCP, Azure or AWS concepts and architectures – with a focus for  how security controls are applied to cloud-based technologies. Example concepts include, but are not limited to:  
    • Architecture & Networking  
    • Identity & Access Management  
    • Securing the CI/CD Pipeline  
    • Secrets and Data Protection
    • Logging, Detection, and Response  
      • Security Controls for Containers (e.g., Docker, Kubernetes)  
  • Experience managing GCP projects.   
  • Deep understanding and implementation of industry-leading practices for cloud security risks using frameworks and standards such as CIS Benchmarks, Cloud Security Alliance, NIST SP 800-144, 800-145, 800-291, and 800-322.  
  • Experience advising customers on GCP architecture and design concepts based on compliance and regulatory standards (e.g., PII, PCI-DSS, PHI, GDPR, HIPAA).  
  • Understanding of a programming or scripting language and strong knowledge of scripting, programming or application programming interface (API) interaction methods. 
  • Governance and conveyance of security principles relevant to GCP or Azure architectures. 
  • Experience with Incident Response within GCP or Azure environments and hosted applications. 

Additional Qualifications:  

  • Prior training and/or public speaking engagement experience. 
  • Willingness, and ability, to attain TS clearance
  • Bachelor’s degree in a technical discipline (or equivalent work experience). 
  • Willingness to travel up to 50%. 
  • Experience in preparing architecture diagrams and writing whitepapers or reference guides., 
  • Certifications related to GCP or industry-standard cloud certifications. 
  • Proven ability and understanding of the components that comprise a successful cloud information security program. 
  • Knowledge of security best-practices for Google Workspace, Azure and AWS SaaS components. 
  • Ability to think critically and properly qualify analytic assessments
  • Ability to recognize and appropriately handle sensitive data
  • Ability to interface and establish rapport with internal operations
  • Ability to work with little direct oversight
  • Ability to document and explain technical details in a concise, understandable manner

Additional Information


At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

Privacy Policy