Cybersecurity Consultant

Who We Are

At Kyndryl, we run and reimagine the mission-critical technology systems that drive advantage for the world's leading businesses. We are at the heart of progress; with proven expertise and a continuous flow of AI-powered insight, enabling smarter decisions, faster innovation, and a lasting competitive edge. For our people-Kyndryls-that means doing purposeful work that powers human progress. Join us and experience a flexible, supportive environment where your well-being is prioritized and your potential can thrive.

The Role

Cybersecurity Consultant with a strong technical background in defining, assessing, and evolving security controls across diverse technology environments, including cloud and hybrid architectures. The ideal candidate has solid knowledge of security best practices, hardening techniques, and industry frameworks such as CIS, NIST, ISO 27001, or equivalent, and is comfortable translating security requirements and standards into actionable technical controls. They bring hands-on experience working with cloud platforms (AWS, Azure, and/or GCP), identity and access management, workload and infrastructure security, and security posture assessment, while also demonstrating the ability to operate at an architectural and governance level. This profile combines analytical rigor, autonomy, and strong collaboration skills, enabling effective engagement with infrastructure, cloud, platform, and engineering teams, as well as contributing to scalable, reusable security frameworks and the protection of environments supporting data, analytics, and AI workloads.

Who You Are

KEY RESPONSABILITIES:

Participate in initiatives aimed at the definition, implementation, and continuous evolution of security controls across corporate technology environments.
Collaborate in the design, review, and validation of secure architectures for cloud, hybrid, and multicloud environments.
Define and maintain security standards, technical patterns, and architectural criteria applicable to a wide range of platforms and services.
Assess system configurations and architectures to identify security gaps, deviations from standards, and areas for improvement, proposing remediation actions accordingly.
Contribute to the adaptation and enforcement of security frameworks and hardening guidelines (e.g., CIS Benchmarks or equivalent references) across different technology domains.
Support and advise technical teams during the adoption and implementation of security controls, ensuring an appropriate balance between security robustness, scalability, and operational feasibility.
Support the security of platforms and components underpinning advanced analytics and artificial intelligence use cases, with a focus on infrastructure security, access control, secure configuration, and runtime protection.
Contribute to the development and consolidation of reusable, scalable security frameworks applicable across diverse technology environments.
Participate in initiatives related to technical governance, multicloud frameworks, and the evolution of security office capabilities.
Produce and maintain technical documentation, architectural guidelines, security recommendations, and supporting materials for security-related initiatives.

EDUCATION AND CERTIFICATIONS:

Bachelor's or Master's degree in Computer Engineering, Cybersecurity, or Telecommunications.

EXPERIENCE:
3+ year in cybersecurity services

LANGUAGES:
Spanish and English (B2 level or higher)

SKILLS AND KNOWLEDGE:

Experience in the analysis, design, and evolution of security controls across different technology environments and platforms.
Solid knowledge of security best practices, hardening techniques, and the definition of technical security baselines or standards.
Experience or familiarity with security frameworks and references such as CIS Controls, CIS Benchmarks, NIST, ISO/IEC 27001, CCN‑STIC, or other security hardening guidelines applicable to corporate environments.
Familiarity with cloud environments and hybrid architectures, particularly AWS, Azure, and/or Google Cloud Platform (GCP).

Knowledge or experience in areas such as:

• Security architecture and secure design principles.
• Cloud security and technical governance of security controls.
• Identity and access management, including privileges and secrets management.
• Logging, monitoring, and security posture assessment.
• Workload security, containers, and Kubernetes.
• Network security and segmentation principles.
• Configuration reviews and validation of technical security controls.
• Protection of infrastructures supporting advanced analytics and AI workloads, including environment hardening, access control, isolation, data protection, secrets management, and technical monitoring.
• Ability to translate security requirements, policies, and standards into actionable and applicable technical criteria.
• Experience collaborating with infrastructure, cloud, platform, engineering, and operations teams.
• Strong analytical skills, autonomy, and the ability to engage effectively with technical and architecture teams.
• Experience in defining technical standards and security controls across multiple technology domains.
• Participation in initiatives related to system hardening, configuration reviews, benchmark alignment, or deployment of technical security controls.
• Experience or strong interest in securing environments that support data, analytics, or AI workloads from an infrastructure and technical security perspective.
• Ability to operate effectively between a hands‑on, implementation‑focused approach and a broader architectural and technical governance perspective.