Key Responsibilities
Migration Security Planning
- Participate in migration strategy and design discussions to embed security by design
- Assess security posture of source and target environments
- Identify security risks related to migration activities and define mitigation plans
- Review migration waves and cutover strategies from a security perspective
________________________________________
Infrastructure & Platform Security
- Validate security controls for:
o Servers (physical/virtual)
o Network devices (firewalls, IPS/IDS, load balancers)
o Storage systems and backup platforms
- Ensure segmentation, firewall rules, and access controls are correctly implemented
- Review hardened OS images and baseline configurations
- Validate patching and vulnerability management processes
________________________________________
Identity & Access Management (IAM)
- Review and validate source and target are like to like:
o User access models
o Privileged access controls
o Service accounts and key management
- Ensure least privilege access across migrated systems
- Support identity transitions (AD, LDAP, IAM integrations)
- Validate authentication, authorization, and MFA enforcement
________________________________________
Migration Execution & Validation
- Support pre migration, cutover, and post migration validation
- Perform or review:
o Security testing
o Vulnerability scans
o Configuration audits
- Validate logging, monitoring, and alerting post migration
- Ensure rollback and contingency plans meet security expectations
________________________________________
Incident & Risk Management
- Support security incident response during migration activities
- Track, document, and remediate security findings
- Provide risk assessments and sign offs for migration go/no go decisions
- Maintain migration security documentation and evidence
Required Skills & Experience
Technical Skills
- Strong knowledge of data center security architectures
- Experience securing:
o Windows, AIX and Linux environments
o Virtualization platforms (VMware, Hyper V)
o Network security devices (firewalls, IPS/IDS)
- Familiarity with migration tools and methods
- Experience with vulnerability scanning tools (e.g., Qualys, Tenable, Rapid7)
- Strong understanding of encryption, certificates, and key management
- Knowledge of logging and SIEM tools
________________________________________
Experience
- 5+ years in security engineering or infrastructure security
- Proven experience supporting:
o Data center migrations
o Large infrastructure transformations
o Hybrid or transitional environments
- Experience working in regulated enterprise environments preferred
