Azure Cybersecurity Architect

Capgemini•New York, NY

About The Position

Drive the technical design and full-lifecycle integration of comprehensive security control frameworks. By leveraging a deep, architectural understanding of foundational risk models (e.g., NIST SP 800-53, CSF, ISO 27001), this architect translates rigorous compliance mandates into resilient, scalable cloud infrastructure. Their holistic approach to boundary definition, automated enforcement, and zero-trust principles ensures that security is engineered organically into the environment, continuously satisfying complex third-party assessment criteria.

Requirements

Very hands-on profile — must know how to “do”, not just “review”
Strong blend of architecture knowledge + engineering execution
Experience in regulated or enterprise cloud environments preferred
Full-Lifecycle Engineering: "Demonstrated experience in the end-to-end integration of rigorous control frameworks (e.g., NIST 800-53, ISO 27001, SOC 2, CMMC)—from initial gap analysis and architectural design through deployment, automated enforcement, and continuous monitoring."
Control Translation: "Proven ability to dissect complex regulatory catalogs and translate them into actionable, technical engineering requirements for Azure infrastructure and DevSecOps pipelines."
Boundary & Scoping Expertise: "Expertise in defining complex authorization boundaries, architecting secure enclaves, and implementing microsegmentation to isolate regulated data and reduce the overall audit footprint."
Compensating Controls: "Adept at designing and documenting robust compensating controls and operational workarounds when native technical enforcement of a framework requirement is unfeasible."
Ability to work with multiple teams and drive controls into production

Responsibilities

Implement and enforce FedRAMP controls in cloud platforms
Review existing security frameworks and close gaps between standards and implementation
Deploy and validate security policies and rule sets
Work with data protection and cryptography teams to enforce cloud security controls
Ensure security controls are effective, auditable, and operational
Identify issues like over‑provisioning and under‑utilization from a security and governance perspective

Benefits

Paid time off based on employee grade (A-F), defined by policy: Vacation: 12-25 days, depending on grade, Company paid holidays, Personal Days, Sick Leave
Medical, dental, and vision coverage (or provincial healthcare coordination in Canada)
Retirement savings plans (e.g., 401(k) in the U.S., RRSP in Canada)
Life and disability insurance
Employee assistance programs
Other benefits as provided by local policy and eligibility

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume