USA_Agile Architect

About The Position

Requirements

• 7+ years of experience in Cloud Security Management.
• Strong understanding of cloud security architectures across AWS, GCP, or Azure.
• Familiarity with application security and security control frameworks such as MITRE CAPEC and CWE, NIST 800-53, ISO 27001, or CIS Controls.
• Practical experience in threat modeling.

Responsibilities

• Evaluate cloud services against internal and external security requirements and control frameworks.
• Identify relevant threats, mitigations, and assurance evidence.
• Support the formal certification of services by producing assessment documentation.
• Develop security patterns for approved cloud services and configurations.
• Ensure each pattern includes defined threats, mitigations, and implementation guidance.
• Structure patterns for consistency, clarity, and ease of consumption.
• Model patterns in the threat modeling tool, maintaining data quality and traceability.
• Align threat and control mappings within the tool to the organization's assurance framework.
• Work with architecture, security, and compliance teams to streamline service certification.
• Review updates from cloud providers and revise patterns as required.
• Provide knowledge transfer and guidance on using patterns effectively.