The Cloud Security Architect leads cloud security initiatives across multi-cloud environments, responsible for architecting, implementing, and governing enterprise-grade security solutions. This strategic role defines security strategy, establishes standards, and provides technical leadership to ensure the protection of critical assets while enabling business agility and innovation.
Responsibilities:
- Strategy & Architecture: Define and execute the enterprise cloud security architecture strategy, establishing security standards and design patterns across AWS, Azure, and hybrid cloud environments
- Identity & Network Security: Lead the architecture of identity platforms (IAM, PAM, SSO) and implement Zero-Trust network access (ZTNA) solutions, including micro-segmentation and secure connectivity
- Data Protection: Design and implement comprehensive data protection strategies, including data classification, encryption frameworks, and database security controls
- Threat Detection & Response: Architect security operations center (SOC) frameworks, integrating SIEM platforms, threat intelligence, and security orchestration/automation (SOAR) capabilities
- Compliance & Governance: Oversee compliance frameworks (ISO 27001, SOC 2, PCI-DSS, GDPR) and drive cloud governance using policy-as-code and automated validation
- DevSecOps: Lead the integration of security into DevOps pipelines, including container security, vulnerability management, and automated secrets management
- Leadership & Collaboration: Mentor security teams, conduct architecture reviews, and serve as a security subject matter expert to senior leadership
Requirements
- 10+ years of experience in information security, with at least 5 years focused specifically on cloud security across AWS and Azure
- Mandatory certifications: Current and valid AWS Certified Security Specialty and Azure Security Engineer Associate (AZ-500)
- Deep technical expertise in cloud security services, including IAM, network security, data protection, and encryption controls
- Proven experience in designing enterprise-scale security architectures and implementing compliance frameworks such as NIST, CIS, and SOC 2
- Strong Linux system administration and security expertise (hardening, kernel security, and system tools)
- Exceptional leadership, communication, and strategic problem-solving skills, with the ability to articulate risk to executive audiences
- Bachelor's or Master's degree in Computer Science, Information Security, or a related technical discipline
