Job Description
Job Summary
We are seeking a Senior Cloud Security Architect to support and contribute to the design, implementation, and continuous governance of our multi-cloud security posture. This role is a subject matter expert for cloud security across Azure, AWS, Oracle Cloud Infrastructure (OCI), and Google Cloud Platform (GCP). The ideal candidate brings deep CSPM expertise, proven architecture experience across multiple platforms, and the ability to contribute to security strategy within an enterprise environment.
Cloud security is a critical organizational initiative. This position requires strong execution, collaboration, and accountability. The Senior Cloud Security Architect will design controls and support implementation-contributing to the direction of cloud programs across business units.
The ideal candidate proactively identifies gaps in cloud security posture and recommends improvements. They are equally comfortable writing Terraform policy-as-code as they are supporting communication of cloud risk to leadership. They bring experience contributing to CSPM program maturity, developing policy frameworks, and partnering with engineering teams to improve secure design practices
Cloud Security Posture Management (CSPM) - Core Focus
* Support execution of the enterprise CSPM strategy across cloud platforms, with primary depth in Azure and AWS
* Contribute to the design and implementation of CSPM policy frameworks aligned to CIS Benchmarks, NIST 800-53, and internal standards
* Participate in continuous posture assessment, scoring, and remediation across Azure and AWS environments
* Extend CSPM coverage to OCI and GCP as secondary platforms
* Implement and tune CSPM tooling
* Assist in development of policy-as-code guardrails at the account and subscription level
* Support development of dashboards and reporting for cloud security posture and risk trends
* Support Cloud Detection and Response (CDR) capabilities and integrate CSPM signals into SIEM/SOAR workflows
* Configure alert routing and contribute to detection rules and playbooks
* Coordinate remediation activities with cloud, DevOps, and application teams
* Support prioritization of findings based on risk and business impact
* Track remediation activities and support escalation of aging issues
* Contribute to exception and risk acceptance workflows
* Support development of benchmarks, scoring methodologies, and posture reporting
* Contribute to maturity assessments and improvement tracking
Cloud Security Architecture - Azure & AWS (Primary)
* Contribute to cloud security architecture for Azure and AWS environments
* Support architecture reviews, threat modeling, and security design sessions
* Support implementation of zero-trust principles across cloud and hybrid environments
* Support development and implementation of cloud security standards across identity, network, data, and monitoring domains
* Contribute to hybrid connectivity security design (ExpressRoute, Direct Connect, VPN)
* Support secure Infrastructure-as-Code (IaC) patterns using Terraform, Bicep, ARM, and CloudFormation
* Contribute to governance of multi-account and multi-subscription environments
OCI & GCP (Secondary / Tertiary)
* Support security architecture activities for OCI and GCP environments
* Contribute to baseline standards, posture assessments, and remediation efforts
Support integration of security telemetry into centralized platforms
Governance, Risk & Compliance
* Support development of a multi-cloud security governance framework
* Map cloud controls to co
Apply here: https://www.aplitrak.com/?adid=YmJnZW5lcmljLjQ4MDA0LjEwNTA4QHZlcnRpdmNvbXAuYXBsaXRyYWsuY29t
