Cybersecurity Architect - Cloud

NouryonHouston, TX
Onsite

About The Position

Shape our global cloud security landscape: Drive Zero Trust architecture, CNAPP strategy, and proactive threat resilience. At Nouryon, our global team takes positive action every day, to reach higher collectively and individually. We create innovative and sustainable solutions for our customers to answer society’s needs – today and in the future. We are looking for a Cybersecurity Cloud Architect to join our OCISO team in Houston. You will be a key technical leader responsible for our enterprise cloud security strategy, serving as the global owner of our CNAPP platform and architecting secure-by-design solutions across our global environment. As a Cybersecurity Cloud Architect, you will develop and maintain enterprise security architecture aligned with SABSA, NIST, and TOGAF, ensuring consistency and scalability while driving security integration across the entire delivery lifecycle.

Requirements

  • Bachelor’s degree in Cybersecurity, Information Security, or Computer Science.
  • 10+ years in Cybersecurity Architecture, with a proven track record in cloud environments.
  • Solid foundation in enterprise frameworks such as SABSA, NIST, and TOGAF.
  • Deep hands-on experience with CNAPP platforms (e.g., Orca), CSPM, CIEM, and CWPP.
  • Expertise in Azure AD / Entra ID, Conditional Access, and Zero Trust access controls.

Nice To Haves

  • Professional certifications such as SABSA, SANS Cloud Security, or Microsoft SC-100 (Cybersecurity Architect Expert).
  • Experience with Infrastructure-as-Code (Terraform, Bicep) and container/Kubernetes security.

Responsibilities

  • Own the ORCA CNAPP Platform: Serve as the global technical owner, accountable for strategy, policy development, alert governance, and risk findings management across CSPM, CIEM, and CWPP.
  • Drive Enterprise Cloud Architecture: Design secure reference architectures for cloud and hybrid environments, ensuring they embed Zero Trust principles and automated guardrails.
  • Lead Cloud Risk & Threat Modeling: Conduct cloud-centric threat modeling and attack-path analysis to proactively identify and mitigate risks using frameworks like MITRE ATT&CK.
  • Architect Cloud Identity (IAM): Govern Cloud IAM solutions, including Entra ID, Hybrid Identity, federation patterns, and modern identity standards like RBAC/ABAC and SCIM provisioning.
  • Enable DevSecOps: Partner with engineering teams to embed security into CI/CD pipelines, container workloads, and Infrastructure-as-Code (IaC) to champion shift-left practices.
  • Ensure Compliance: Lead efforts to maintain compliance with NIST, SOX, NIS2, and ISO 27001, providing clear guidance on regulatory and contractual security requirements.

Benefits

  • Great job and friendly coworkers
  • Benefits in addition to salary
  • Autonomy to shape the future of our cloud-native security posture
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service