Cloud Security architect
- Network/Security
- Remote
- Contract
Title – Cloud Security Architect (Azure)
Start date: Immediate
Position Type: Full Time/ Contract
Location: Remote across USA (Must be open to travel to customer location when needed)
Work Time: Eastern or Central Time Zone.
Summary
We are seeking an experienced Cyber Security Cloud Security Architect to design, implement, and maintain our cloud security infrastructure, with a strong focus on application, infrastructure, and data security. The ideal candidate will have a comprehensive background in cloud security architecture and extensive experience in securing large-scale cloud environments across multiple layers of security.
Key Responsibilities
- Develop and implement cloud security architecture that aligns with business objectives and regulatory requirements, emphasizing application, infrastructure, and data security.
- Identify and assess potential security risks and vulnerabilities in cloud infrastructure, applications, and data storage; develop mitigation strategies to safeguard all areas.
- Provide guidance and support to development teams in the secure design and implementation of cloud applications, ensuring adherence to application security best practices.
- Collaborate with cross-functional teams to integrate security controls and processes into cloud infrastructure, applications, and data management.
- Develop Infrastructure as Code (IaC) solutions (e.g., Terraform) to maintain robust security policies, standards, and procedures across application, infrastructure, and data layers.
- Conduct regular security assessments and audits of cloud infrastructure, applications, and data processes.
- Stay up-to-date with emerging threats, vulnerabilities, and best practices in cloud security, application security, and data protection.
Position Requirements
Formal Education & Certification
- Bachelor’s or master’s degree in computer science, Information Security, or a related field.
- 5+ years of experience in cloud security architecture and implementation.
- 10+ years of experience in IT Security.
- Strong understanding of cloud platforms such as Azure, with in-depth Azure security knowledge preferred.
- Experience with security technologies and tools, including those focused on application, infrastructure, and data protection (e.g., firewalls, intrusion detection/prevention systems, vulnerability scanners).
- Knowledge of security frameworks such as ISO 27001, NIST Cybersecurity Framework, and Cloud Security Alliance.
- Relevant industry certifications such as Certified Cloud Security Professional (CCSP), Certified Information Systems Security Professional (CISSP), or Certified Ethical Hacker (CEH).
Knowledge & Experience
- Minimum six years of progressive experience in leading security and compliance management programs; interactions with and support of clients; risk management and other GRC responsibilities within a large IT organization, preferably within a professional services firm or similar.
- Demonstrated experience in managing information security functions, including governance, frameworks, processes, tools, scorecards, and dashboards with a focus on application, infrastructure, and data security under aggressive deadlines.
- Knowledge of industry regulations and standards (e.g., HIPAA, Meaningful Use, FISMA, PCI) as well as core technology infrastructure (e.g., firewalls, servers, databases, Internet technologies).
- Proven experience interacting with regulators, internal auditors, and/or external auditors.
- Demonstrated knowledge of industry-authoritative sources such as COBIT, NIST, ISO standards, and Cloud Security Alliance.
- Working knowledge of GRC tools.