Introduction

IBM Consulting Cybersecurity Services is seeking an experienced and strategic Cloud Native Security Services (CNSS) Offering Manager to join our Global CyberDefend Offering Team. This role stands as a vital capability to our Offering Group, focused on shaping, enhancing, and industrializing public cloud native security offerings to ensure they remain highly competitive, scalable, and aligned to evolving enterprise market demands.

As a key leader aligned with the IBM Consulting's Offering & Growth framework, you will be responsible for executing robust business strategies to grow market share, conceptualize differentiating technology assets, position the cloud-native security offering pillar to consistently outperform market competitors, drive the core offering roadmap, and ensure an optimized, highly competitive Bill of Materials (BOM).

IBM's Cloud Native Security capabilities are managed and delivered to global clients across two distinct flavors:

.1. Advisory Offering Capabilities:Delivering comprehensive cloud security posture assessments, cloud compliance readiness, and cloud security strategy definitions - leveraging fronter model capabilities, cloud native tooling, and 3rdparty CNAPP technologies.

.2. Secure-by-Design Embeds:Seamlessly integrating hyperscaler native security controls, guardrails, and zero-trust configurations directly alongside broader IBM Consulting cloud migration, application modernization, and digital transformation engagements.

The successful candidate will demonstrate deep technical expertise across multiple cloud platforms-specifically Microsoft Azure, AWS and Google Cloud Platform (GCP)-combined with sharp consulting acumen to actively drive critical business KPIs, including offering win rates, proactive customer acquisition, accelerated growth vs. market CAGR, pipeline value expansion, and optimized price margins.

Your role and responsibilities

Your roles & Responsibilities encompass:
Offering Development, BOM Management & Standardization

.Collaborate with Global Offering Leaders to define, evolve, and maintain the Cloud Native Security Services (CNSS) offering roadmap in strict alignment with IBM Consulting's strategic vision.

.Create, maintain, and continually optimize a highly competitive, industrialized Bill of Materials (BOM) across AWS, Azure, and GCP native security solution sets.

.Standardize 'Secure-by-Design' embed models, establishing repeatable blueprints and structural assets to inject automated security frameworks directly into large-scale cloud modernization pipelines.

.Conceptualize and productionizereusable technical assets, reference architecture patterns, and automated deployment accelerators to ensure standardized, global delivery adoption.

Innovation & Capability Building

.Monitor emerging hyperscaler and industry security technology trends-such as Cloud-Native Application Protection Platforms (CNAPP), SASE, Cloud Security Posture Management (CSPM), Cloud Workload Protection (CWPP), CIEM, and AI-powered identity/threat analytics-and embed them directly into the offering roadmap.

.Partner closely with public cloud vendor alliance teams (AWS, Microsoft, Google) to integrate upcoming native tool capabilities, features, and roadmaps into IBM offerings.

.Define standard reference architectures for highly complex multi-cloud and hybrid native enterprise deployments.

Operationalization & Growth Management

.Define comprehensive delivery playbooks, maturity models, and governance processes to guide global delivery teams on both Advisory and Embed project frameworks.

.Actively manage and improve offering business health metrics, executing strategies to optimize offering win rates, proactive customer acquisition, business growth vs. market CAGR, pipeline value expansion, and healthy price margins.

.Establish standardized training, enablement, and certification pathways for technical practitioners across global CIC locations to continuously scale delivery capabilities.

.Contribute to global tooling strategies and automation frameworks, emphasizing Security-as-Code principles using Terraform, Ansible, and native API integrations.

Global Collaboration & Sales Support

.Work cross-functionally with regional and global Go-To-Market (GTM) teams, Account Partners, and Service Line leaders to align offerings with emerging client needs and drive account planning.

.Support individual market units to convert client cloud-native security opportunities into wins, leading technical workshops, client presentations, and participating in the preparation of RFPs and Statements of Work (SoWs).

.Engage directly with client executive audiences (such as CISOs, CTOs, CIOs) to communicate technical strategy and articulate IBM's unique offering value differentiators.

Cultivate and lead internal communities of practice to drive knowledge sharing, champion accelerators, and accelerate offering adoption across geographies.

Required education
Bachelor's Degree

Preferred education
Master's Degree

Required technical and professional expertise

Product Management, Commercial & Consulting Skills

.Demonstrated business and financial acumen, with direct experience optimizing product/service Bill of Materials (BOM), analyzing and driving market share, and managing pricing models or price margins.

.Familiarity or experience with portfolio growth frameworks aimed at growing market pipelines and outperforming market CAGR.

.Written and verbal communication skills for cross-functional alignment and relationship management with internal account leaders and external C-level clients (CISO, CTO, CIO).

.Ability to drive process standardization, delivery consistency, and operational excellence in large-scale, global distributed delivery networks.

Core Cloud Native Security Expertise

.Deep architectural and operational experience with Microsoft Azure security controls, including Microsoft Defender for Cloud, Microsoft Sentinel, Defender Portal, Azure Entra ID / Permissions Management, Azure WAF, etc.

.Experience working with AWS native security capabilities, including AWS Security Hub, GuardDuty, AWS IAM, Inspector, Macie, Network Firewall, WAF, Shield, etc.

.Experience with Google Cloud Platform (GCP) security portfolios, including Google Cloud Security Command Center (SCC), GCP IAM, Chronicle Security Analytics, Cloud Armor, Cloud KMS, etc.

.Comprehensive knowledge of Cloud-Native Application Protection Platforms (CNAPP), SASE, CWPP, CSPM, and applicable native vs. third-party security controls across IaaS, PaaS, and SaaS environments.

Architectural, Advisory & Delivery Skills

.Proven track record in designing cloud native security reference architectures for highly complex multi-cloud/hybrid ecosystems.

.Hands-on experience leading consulting-led delivery methods, including security maturity assessments, cloud security strategy formulations, and compliance alignment, leveraging Gen AI capabilities..

.Experience implementing automated cloud security pipelines, utilizing DevOps/DevSecOps approaches, and writing infrastructure-as-code (IaC) templates using Terraform, Ansible, or native cloud templating.

.Track record of delivering or technically leading within large-scale, complex, multi-year cloud migration and application modernization programs.

Security & Compliance Frameworks

.Masterful understanding of industry compliance and security frameworks applied to cloud, including CSA CCM, Zero Trust Architecture principles, NIST SP 800-53, ISO 27001, CIS Benchmarks, GDPR, PCI-DSS, and SOX.

Preferred technical and professional experience

.Active professional or specialty-level security certifications from one or more major hyperscalers, such as AWS Certified Security - Specialty, Microsoft Certified: Azure Security Engineer Associate or Cybersecurity Architect Expert, or Google Cloud Professional Cloud Security Engineer.

.Industry-recognized professional security credentials, such as CISSP, CCSP, CISM, or equivalent Cloud Security certifications.

.Prior experience directly contributing to global offering development teams or product management cycles within a top-tier global consulting organization.

.Knowledge or strategic implementation experience involving AI/ML-driven cloud-native security orchestration, automated remediation, and threat analytics.

Years of Experience:
15-20