Architect, Cloud Security

About The Position

Requirements

• Bachelor's degree in computer science, information systems, or information technology, or equivalent work experience.
• Minimum 10 years of IT Security experience, with 5 years focused on AWS architecture.
• AWS Solutions Architect - Associate Certification.
• CISSP Certification.
• Deep expertise in AWS-native and third-party security tools.
• Strong understanding of cloud governance, infrastructure as code (IaC), encryption, networking, and identity management.
• Strong experience with Snowflake and S/4HANA.
• Hands-on scripting and automation (Python, Terraform).
• Strong experience with Splunk.
• Experience with multi-cloud environments (AWS, Azure, M635).
• Strong writing and communication skills across technical and executive audiences.
• Ability to multi-task, work independently and/or within a team, pay attention to detail and meet deadlines.
• Utilize sound judgement, business acumen and problem-solving skills and ability to work in fast-paced, high-volume, team environment.

Nice To Haves

• AWS Solutions Architect - Professional Certification.
• CCSP Certification.
• Master's degree.

Responsibilities

• Design, engineer, and enhance the security architecture of the organization's cloud environment as well as networking, local infrastructure, applications, and operational technologies.
• Implement and leverage AWS-native security architectures including IAM, KMS, ACM, VPC, CloudTrail, Security Hub, GuardDuty, Macie, Detective, Security Lake, and Control Tower.
• Support the re-architecture and migration of Azure workloads to AWS.
• Design and enforce Zero Trust security models to ensure protection of cloud and hybrid environments.
• Integrate AWS with enterprise security solutions including Zscaler, Splunk, and BeyondTrust.
• Collaborate with DevOps and cloud infrastructure teams to integrate security into DevOps pipelines with automation for exposure management, code scanning, and compliance validation.
• Define and implement identity and access management (IAM) strategies, including federation, least privilege, just in time access, identity governance, and Zero Trust principles.
• Integrate with multiple IdPs including Entra ID and SAP IAS.
• Establish governance, risk, and compliance (GRC) frameworks for cloud adoption, including policy-as-code and automated compliance monitoring following industry best practices and standards.
• Develop templates, accelerators, and reusable security artifacts that improve time-to-value and support consistent governance processes for IT and the business.
• Stay current with AWS service releases, regulatory changes, and emerging cyber risks to provide risk management guidance.
• Support incident response and forensics in cloud environments with both native logging and detection capabilities and SIEM.
• Provide thought leadership via security workshops, executive briefings, and architecture reviews.
• Other duties, as assigned by the jobholder's supervisor.

Benefits

• Health care benefits.
• Life insurance.
• Time off benefits.
• Participation in the Company's 401(k) plan.