Cloud Security Architect (337)

About The Position

Requirements

• 5 + years of experience, including experience specializing in information security roles.
• Strong analytical skills with a keen eye for detail and accuracy.
• Experience designing security architecture for Azure-hosted platforms.
• Experience with Azure Landing Zones (CAF-aligned) / enterprise-scale reference architecture.
• Proven ability to translate regulatory and compliance requirements into enforceable technical architecture.
• Familiarity with zero-trust architecture principles applied to Azure deployments.
• Knowledge and experience using Microsoft security platforms, other vendor security systems are highly desirable.
• Knowledge about advanced security capabilities, including integrations with other systems.
• Prior participation in architecture review or governance forums.
• Strong written communication: you will author and review ADRs, security architecture documents, and pattern guides that vendor teams and corporate governance rely on.
• If you don’t meet every qualification, we still encourage you to apply.

Nice To Haves

• Experience working in a regulated SaaS environment with multi-region data residency requirements.
• Hands-on Infrastructure-as-Code experience.
• Experience working with third-party vendor development teams.
• Skills / Competency / Other requirements Excellent written and spoken English.
• Ability to work independently with low-level supervision and in a global team distributed geographically.
• Strong organization skills (set priorities, meets deadlines, multiple simultaneous projects) and excellent documentation skills.
• Excellent analytical and diagnostic problem-solving skills with the ability of providing solutions to identified problems.
• Demonstrated experience in understanding, designing, delivering, and demonstrating compliance with information security requirements.
• Knowledge and experience in performing information security practices in the management and delivery of infrastructure and operations.

Responsibilities

• Security Architecture Design Design and maintain the security architecture for the Digital Services Azure platform across all regions, including network segmentation, Private Endpoint strategy, and zero-trust network posture.
• Architect the controls that align with enterprise security, compliance, and operational standards.
• Define security patterns for vendor application teams: authentication flows, secrets management, API security, data-at-rest and data-in-transit encryption standards.
• Identify gaps, risks, and opportunities for improvement across Azure environments.
• Contribute to standards, patterns, and reference architectures.
• Detection Engineering Design and govern detection engineering.
• Define the security telemetry strategy: what gets collected, where it’s stored, how long it’s retained, and how it aligns with regional data residency constraints (noting that security telemetry is centralised by design).
• Governance & Compliance Architecture Implement corporate security and compliance requirements within the Digital Services platform using policy-as-code (Azure Policy, custom initiatives) and automated evidence capture.
• Design the compliance evidence architecture so that audit readiness is a continuous state.
• Own security exception governance: assess exception requests, document risk acceptance, and ensure appropriate approval chains.
• Contribute to architecture decision records (ADRs) for all security-impacting design decisions.
• Cross-Team Security Standards Define security architecture standards that apply horizontally across all Digital Services teams — platform engineering, vendor application development, and vendor DevOps.
• Review and approve vendor security patterns and access models.
• Work with the Development teams to embed security practices and controls.
• Serve as security escalation point for the platform engineering team during incidents.

Benefits

• WSP provides a comprehensive suite of benefits focused on a providing health and financial stability throughout the employee’s career.
• These benefits include coverage related to medical, dental, vision, disability, and life; retirement savings; paid sick leave; paid vacation (or other personal time); paid parental leave; and paid time off for purposes of bereavement, voting, and/or attendance at naturalization proceedings.