Senior Lead Cyber Security Architect- Cloud Security

• The Senior Lead Cyber Security Architect (Cloud Security) works on highly complex projects that require in-depth domain knowledge in all dimensions of cloud security
• You are responsible for driving the architect, build out, and implementation efforts related to architecture, scalability, availability and performance alignment w/ the product roadmap with a focus on application development automation
• They may interact w/functional leaders to support these technical initiatives

As Senior Lead Cybersecurity Architect, you will be responsible for:

• Developing and implementing comprehensive security architectures for Azure AWS, ensuring the confidentiality, integrity, and availability of information.
• Designing and implementing IAM solutions in Azure AWS, managing access controls, authentication, and authorization.
• Ensuring least privilege principles are applied to all Azure AWS resources.
• Conducting regular security assessments and vulnerability management for Azure AWS networks.
• Utilizing Azure AWS native security services threat detection, monitoring, and compliance.
• Implementing and enforce Azure - AWS native security controls for governance and compliance.
• Staying current with Azure security features and recommend their adoption based on organizational needs.
• Utilizing Azure Policy, Azure Resource Manager (ARM) templates, and other automation tools to implement security controls and streamline security processes.
• Working closely with other IT teams to ensure security considerations are integrated into the overall Azure cloud strategy.
• Creating and maintain comprehensive documentation for security architectures, configurations, and procedures specific to Azure AWS.
• Identity custom Azure Policy definitions and initiatives to address specific organizational needs.
• Ensuring consistent application of policies across all Azure subscriptions and resource groups.
• Creating comprehensive documentation for Azure Policy definitions, initiatives, and compliance procedures.
• Communicating policies and compliance requirements clearly to technical and non-technical stakeholders
• Working closely with Azure administrators, DevOps teams, and other stakeholders to ensure alignment with organizational policies.
• Providing guidance and support on implementing best practices for Azure Policy usage.
• Conducting regular reviews of existing Azure Policies to ensure relevance and effectiveness.
• Updating policies as needed based on changes in organizational requirements or Azure service updates.
• Conducting thorough assessments and evaluations of emerging security products and services to enhance the organizations cyber defense capabilities
• Offering comprehensive security feedback during project reviews to ensure robust cybersecurity measures
• Conducting thorough reviews of cloud security exemptions to ensure adherence to established security policies and standards
• Offering expert support throughout migrations, integrations, and new product deployments, with a specialized focus on analyzing and optimizing integrations with SaaS providers
• Crafting security guidelines, address emerging threats, and offer architectural support for new projects and initiative.
• Familiar with CICD and DevSecOps for setting up and handling Azure Policies and automations.
• Extensive proficiency in scripting and automation languages (e.g., Python, PowerShell, Azure CLI, JSON)
• Providing training sessions and documentation to educate teams on Azure Policy usage and compliance standards.
• Fostering a culture of continuous improvement in governance and compliance practices.

To be successful in this role you will have:

• Have bachelor s degree in computer engineering or STEM field (Science, Technology, Engineering, Math) from an accredited college or university Minimum.
• Have 10 years overall technology experience.
• Have Minimum 5 years of relevant consulting and/or industry experience.
• Have Minimum 3 years of hands-on technical experience designing and implementing security solutions for AWS across IaaS and PaaS models and environments (Public, Private, Hybrid)
• Have Minimum 2 years working experience designing cloud security architectures and strategies for enterprises.
• Have Minimum 2 years in a technical and/or functional lead role.
• Have Minimum 2 years working with Cloud security industry standards such as Cloud Security Alliance (CSA), ISO / IEC 27017 and NIST 500 291.
• Have Minimum 2 years working experience with Cloud security technologies / vendors (e.g., IAM, SIEM, IDS) and/or providers (e.g., Okta, CipherCloud, AlertLogic), a big plus.
• Have Minimum 1 years working with Cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI / CD) in single and multi-tenant environments.
• Have Minimum 1 years working with CASB technologies or planning for large-scale deployments of these technologies.