As a Cloud Security Architect, you will serve as the subject matter expert (SME) on all cloud security-related topics. You will collaborate with enterprise architects and security teams to design, develop, and document secure cloud architectures for business applications, ensuring compliance with regulatory standards and security best practices.

Responsibilities include

Cloud Security Architecture Design

• Work with enterprise architects to design and document cloud security architectures for applications across various cloud platforms.
• Create, review, and maintain security checklists and best practices for cloud security.

Cloud Security Posture Assessment

• Assess the organization’s cloud security posture, identifying potential vulnerabilities and recommending improvements.
• Design secure cloud architectures that meet both business and security needs.

Policy & Procedure Development

• Develop security policies, procedures, and standards for cloud-based services and applications.
• Ensure that all cloud-based services comply with industry regulations and standards.

Risk Assessment & Management

• Conduct risk assessments and develop risk management strategies for cloud-based systems and data.
• Collaborate on reviewing and approving security-related projects and initiatives.

Security Controls Implementation

• Design and implement cloud security controls, such as encryption, identity and access management (IAM), and network security.
• Work with IT teams to ensure security is integrated into all cloud infrastructure components.

Cross-Functional Collaboration

• Collaborate with cross-functional teams to align security efforts with overall IT strategy and ensure seamless cloud security integration.

Experience Required

• 3+ years of experience in cloud security.
• 3+ years of combined experience in Google Cloud Platform (GCP) and Amazon Web Services (AWS).
• 5-7 years of relevant experience in security, with a focus on cloud environments.

Key Skills & Expertise

1. Cloud Computing Knowledge. Expertise in cloud computing technologies and concepts, including virtualization, containers, storage, and networking.
2. Cloud Security Frameworks. Familiarity with cloud security frameworks and best practices, including.
   1. Cloud Security Alliance (CSA) Cloud Controls Matrix
   2. Center for Internet Security (CIS) AWS Foundations Benchmark
3. Cloud Security Tools. Hands-on experience with cloud security services and tools, such as.
   1. AWS Security Hub
   2. Google Cloud Security Command Center
4. Regulatory Compliance. Understanding of compliance requirements, such as PCI DSS and GDPR, and their implications for cloud-deployed workloads.
5. Cloud Risk Assessment & Strategy. Ability to perform cloud risk assessments and develop security strategies tailored to cloud environments.
6. Cloud-Native Security. Knowledge of cloud-native security solutions, including serverless computing and DevSecOps principles.
7. Hybrid Cloud Security. Experience designing and securing hybrid cloud architectures.
8. Cloud Security Solutions Design. Expertise in designing and implementing security solutions that align with both security requirements and business goals.
9. Cloud Migration Security. Strong understanding of cloud migration processes and the ability to manage associated security risks.

Key Competencies

• Expertise in cloud-native and hybrid cloud security solutions.
• Ability to balance security requirements with business objectives.
• Proficiency in regulatory compliance for cloud workloads.
• Strong understanding of cloud infrastructure and security tools across AWS and GCP.
• Excellent risk management and mitigation skills for cloud environments.

This role offers a unique opportunity to shape and secure the organization's cloud infrastructure while staying at the forefront of evolving cloud security practices.