Staff Cloud Security Architect

Job Description:

Responsibilities

• Define and implement cloud security architecture frameworks, principles, and guidelines to secure enterprise cloud environments and workloads.
• Collaborate with cross-functional teams to ensure security maturity initiatives are prioritized effectively and addressed in a timely and sustainable manner.
• Partner with cloud security architects, developers, and engineers to design scalable solutions addressing complex infrastructure-related security challenges.
• Design, build proof of concept, tools, and platforms to proactively address and resolve security issues at scale.
• Conduct architecture reviews, security assessments, threat modeling, and risk analysis of cloud-native services and infrastructure.
• Establish secure reference architectures, reusable cloud security patterns, standards, and best practices to ensure consistency in cloud deployments at scale.
• Lead efforts related to strategic planning and continuous improvement of cloud security capabilities, including public cloud native security products and third-party cloud security tools.
• Partner with incident response teams and SOC analysts to ensure effective processes and technology are in place to quickly detect, investigate, and mitigate cloud security incidents.

Qualification & Experience  

• Bachelor’s or Master’s degree in computer science, Information Technology, or related fields.
• 15+ Years of experience securing complex on-prem or cloud deployments with a minimum of 6+ years of dedicated experience in cloud security architecture and design, including significant experience across AWS, GCP, and/or Azure environments.
• Deep technical understanding of core cloud service models, including compute, network, and storage technologies on AWS, GCP, and/or Azure platforms.
• Proficiency in at least one programming language or scripting language such as Python, Go, or Java for automating and managing security tools and processes.
• Extensive working experience with containerized applications (Kubernetes, Docker), CI/CD pipelines, and microservices architectures.
• 5+ years of experience with IAC (Infrastructure as a Code) deployments for complex systems [Terraform, Ansible etc]
• Demonstrated expertise in articulating complex technical issues clearly to both security specialists and non-technical stakeholders.
• Additional skills
• Effective communication skills, both written and verbal, with the ability to convey complex information clearly to technical and non-technical audiences.
• Strong analytical and problem-solving skills, with the ability to lead cross-functional collaborations and drive technical security initiatives.
• Ability to quickly learn, adapt, and lead in fast-paced and dynamic technical environments.