Voor onze eindklant KPN is Harvey Nash op zoek naar een Cloud Security consultant
Start: 15-05-2026
Eind: 31-08-2026
Uren: 40
Standplaats: Amersfoort
About the Role
Team ProTect is the security and privacy unit within KPN's Technology division, responsible for safeguarding both B2C and Enterprise IT. The team oversees security and privacy for more than 500 applications, supported by over 100 DevOps teams in the Netherlands and offshore. Our scope includes cloud platforms, container platforms, and modern DevOps environments.
We are looking for a Senior Cloud Security Consultant to strengthen Team ProTect.
This role is primarily advisory and consultative in nature, with a strong focus on cloud security. It is not a full-time hands-on engineering role, but a senior position focused on guiding, advising, and enabling teams to design and run secure cloud workloads.
Role & Responsibilities
As a Cloud Security Consultant, you advise IT and business teams on the secure implementation of their cloud workloads. You work closely with the CISO organization to ensure that security policies are properly applied and that policy and implementation are aligned in practice.
You collaborate with multiple DevOps teams across domains such as:
- Cloud platforms (AWS / Azure)
- API platforms
- Kubernetes and container platforms
The role is cloud-centric and does not focus on traditional on‑prem infrastructure.
Key responsibilities include:
- Advising DevOps and IT teams on secure cloud workload design and implementation
- Acting as a sparring partner on security architecture and cloud security challenges
- Ensuring security policies are followed and correctly translated into implementations
- Performing threat modeling and assessing system architectures
- Analyzing cloud security non-compliance, identifying root causes, and proposing solutions
- Validating security controls and implementations
- Collaborating with cloud platform engineering teams to operationalize new security features
- Contributing to DevSecOps practices, including CI/CD security checks, paved roads, templates, and automation
Hands-on work (e.g. policies, IAM, WAF, or security tooling) may occur, but is supportive and not the core of the role.
Assignment Characteristics
- Work is typically organized around specific security topics or assignments
- Average duration per assignment: approximately 3 months
- Assignments are expected to be delivered end-to-end
- You are expected to bring additional expertise and direction, not just execution
Experience & Background
We are looking for a highly experienced consultant who is comfortable operating in complex enterprise environments.
Required:
- Proven experience in a security consultancy role
- Strong, demonstrable experience with cloud security (AWS and/or Azure)
- Experience with Kubernetes and containerized environments
- Excellent communication and stakeholder management skills
- Experience advising and influencing DevOps teams and IT management
- Background within large corporate environments
(experience exclusively in start-ups is not sufficient)
Preferred:
- Security certifications such as CISSP, CCSP, AWS Security Specialty
- Experience with DevSecOps, IAM, and Infrastructure as Code
- Affinity with AI workloads and AI security
Skills & Profile Level
- Strong analytical and advisory capabilities
- Able to work independently and collaboratively
- Comfortable adding value at mid to senior level
- Motivated to help teams grow and move forward
Practical Information
- Language: English is sufficient (Dutch is a plus)
