Cloud Security Architect/Engineer
Job Description
Role Purpose
Security Architect & Engineer is responsible for leading the development of security architecture and ensuring technology initiatives are implemented, aligning with our frameworks to ensure that our cloud environment is secured. She/He will be accountable for securing enterprise information by identifying network and application security requirements, planning, implementing, and testing security controls and procedures.
Key Responsibilities:
- Designs and develops security architectures for cloud and cloud/hybrid-based systems and non-cloud environments.
- Responsible for implementing security solutions while identifying improvements and automation initiatives.
- Propose, design, plan and execute strategic and tactical operational security objectives.
- Represents Security in development and implementation of the overall enterprise cloud architecture.
- Identify and mitigate risks, perform security reviews, design top tier security practices, and deliver strategic, innovative cloud-based security offerings.
- Work alongside Infrastructure and Application Development teams to develop an appropriate technological solutions and standards, as well as facilitating the integration with our existing services.
- Identifies, recommends, coordinates and deliver timely security knowledge to support teams regarding technologies, processes or tools.
- Perform deep analysis and develop metrics that measure current risk and effectively evaluate and manage security threats.
- Identify appropriate technology/data sources and drive the collection of data necessary to effectively evaluate such threats.
Job Requirement
Education Qualifications
- Bachelor’s Degree in Computer Science, Computer/Electronics Engineering or Information Technology or equivalent.
- 6+ years of cloud security architecture experience with a demonstrated ability as a trusted advisor in understanding business needs and security risks as well as having a deep understanding in cloud infrastructure and components.
- Industry certifications such as CISSP, CISM, CISA, SANS certifications, and Amazon Web Services (AWS) certifications.
- Advanced security qualifications such as SABSA (Sherwood Applied Business Security Architecture) or CISSP (Certified Information Systems Security Professional) certifications/ or TOGAF
Required Capability
- Possess a deep understanding of offerings within AWS, Azure and SaaS and popular cloud.
- Experience architecting solutions within AWS.
- Experience with security assessment, security design, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes, data security, cryptography, identity and access management (IAM), network security in cloud and container environments.
- Sound knowledge of common industry standard cloud-native/cloud-friendly security controls and protocol (SAML, OAuth, OpenID etc.).
- Strong understanding of Information Security control areas such as Authentication/Authorization, Access Controls, Entitlement, Cryptography, Encryption, Network, Application/System Security, Key Management, Vulnerability Management (OWASP, SANS).
- Excellent written and verbal communication skills well as business acumen and a commercial outlook
- Exhibit strong influencing/negotiating skills with attention to details.
- Ability to multi-task, prioritize and work with minimum supervision.
- Extensive experience in information security and/or IT risk management with a focus on security, performance and reliability.
- Solid understanding of security protocols, cryptography, authentication, authorization and security.
- Ability to interact with a broad cross-section of personnel to explain and enforce security measure.