VP, Cloud Security Architecture

About The Position

Requirements

• Bachelor’s degree in computer science, engineering, or related field (or equivalent practical experience); OR in lieu of a degree, 12+ years of experience in related field
• 4+ years of dedicated, hands-on experience designing, implementing, and securing large-scale production solutions on Amazon Web Services (AWS), Azure, or Google Cloud.
• Proven expertise in supporting on-premises to cloud migration efforts, specifically securing the data transfer and hybrid connectivity phases.
• Deep practical mastery of core AWS security services (IAM, KMS, VPC, Security Hub).
• High proficiency with Infrastructure as Code (IaC) tools such as Terraform or CloudFormation for security automation.
• Experience operating within a highly regulated industry (e.g., Financial Services) with practical knowledge of compliance frameworks such as PCI DSS, GDPR, or SOC 2.
• Ability and flexibility to travel for business as required
• You must be 18 years or older
• You must have a high school diploma or equivalent
• You must be willing to take a drug test, submit to a background investigation and submit fingerprints as part of the onboarding process
• You must be able to satisfy the requirements of Section 19 of the Federal Deposit Insurance Act.
• Legal authorization to work in the U.S. is required.
• We will not sponsor individuals for employment visas, now or in the future, for this job opening.

Nice To Haves

• AWS Certified Security – Specialty certification (or commitment to achieve within 6 months).
• Experience with DevSecOps tools such as Checkmarx, Veracode, OWASP ZAP, or Burp Suite.
• Exceptional communication skills, with the ability to set authoritative security standards while fostering collaboration across cross-functional teams.

Responsibilities

• Design secure pathways for migrating critical on-premises workloads and sensitive data to the AWS cloud environment.
• Architect and enforce robust security controls for hybrid cloud networking (e.g., Direct Connect, Transit Gateway) and virtual data center connectivity.
• Ensure data integrity and confidentiality during transfer by leveraging AWS services like DataSync or Transfer Family and implementing mandatory encryption via AWS KMS.
• Collaborate with Cloud IAM architects to engineer and proliferate stringent policies and roles that strictly enforce the Principle of Least Privilege (PoLP) across all AWS accounts.
• Use Infrastructure as Code (IaC) tools (e.g., Terraform or CloudFormation) to embed security guardrails and governance policies directly into all cloud infrastructure provisioning.
• Provide architectural guidance to SecOps for the configuration and integration of core security functions, including continuous monitoring, logging, SIEM ingestion, and automated alerting across the AWS footprint.
• Define and govern the strategy and standards for integrating security testing (SAST, DAST, and SCA) into CI/CD pipelines, advising and supporting AppSec, DevOps, and application development teams on "Shift Left" best practices.
• Act as a trusted partner to application owners, infrastructure teams, and oversight functions to translate regulatory requirements (PCI-DSS, GDPR, SOC 2) into clear, actionable technical security designs.
• Perform security architecture reviews and provide hands-on guidance to developers on vulnerability remediation and secure coding practices.
• Perform other duties and/or special projects as assigned.

Benefits

• annual bonus based on individual and company performance
• option to work from home near one of our Hubs or come into one of our offices
• support and encouragement at all levels of the organization
• tools and technology to grow your career