Consultant

Job Purpose and Impact

Implement, operate, and collaborate on the design of cybersecurity protective technologies within Cargill. This role focuses on maintaining robust threat protection while supporting operational efficiency with minimal supervision.

Key Accountabilities

• Cybersecurity Technologies: Implement, operate, and contribute to the design of cybersecurity protective measures, including endpoint detection and response (EDR), cloud infrastructure controls, and network security.
• Technology Management: Manage and operate a range of technologies such as Wide Area Networks (WAN), partner gateways, Internet of Things (IoT) security, email and collaboration tools, Local Area Networks (LAN), wireless networks, network segmentation, Virtual Private Networks (VPN), proxies, Demilitarized Zones (DMZ), middle-tier systems, databases, and web servers.
• Co-creation with IT Operations: Act as a co-creator and operating partner with internal cross-functional teams on shared infrastructure initiatives.
• IT Service Management Interfaces: Operate all information technology service management interfaces, including asset, change, configuration, problem, and request management.
• Researches Security Needs: Research moderately complex system security requirements for operations development, including defining security requirements, conducting risk assessments, and performing systems analysis.
• Security Policies: Draft and provide analytical support for the development and analysis of security policies in compliance with industry standards.
• Incident Response: Prepare for and execute moderately complex incident response, disaster recovery, and business continuity planning to ensure readiness for potential security breaches.

Qualifications

• A minimum of 2 years of relevant work experience is required, typically reflecting 3 or more years of related experience.
• Experience with policy orchestration and firewall management tools, such as Tufin.
• Proficiency working with proxy, Secure Web Gateway (SWG), Zero Trust Network Access (ZTNA), Cloud Access Security Broker (CASB), and Firewall-as-a-Service (FWaaS) solutions.
• Practical experience in deploying or integrating Secure Access Service Edge (SASE) / Security Service Edge (SSE) technologies from vendors like Zscaler, Palo Alto, or Netskope.
• Broad exposure across LAN, WAN, WLAN, cloud networking, and various security domains.
• A strong understanding of Zero Trust principles and modern network security architectures.