Cybersecurity Architect

The Position

The Security Architect will be responsible for defining and implementing comprehensive security architecture across our cloud infrastructure and enterprise applications. You will drive security-by-design practices across both infrastructure and software development, embedding security from the initial architecture phase through deployment. This role will require deep technical expertise in cloud platforms, enterprise application security, and modern threat modeling practices, as well as the ability to influence and guide engineering teams toward secure, scalable solutions.

What You Will Be Doing

• Lead the architectural redesign of cloud security controls, focusing on scalable, automated solutions.
• Develop and implement a multi-cloud security strategy that emphasizes "security by design" for AWS and Azure.
• Design and enforce secure access controls, network segmentation, and zero trust models.
• Evaluate, select, and implement cloud security technologies (e.g., CSPM, CNAPP, CWPP, IAM, SIEM).
• Conduct security architecture reviews for enterprise and customer-facing applications, ensuring compliance with secure design principles, OWASP standards, and applicable regulatory requirements.
• Define application security guidelines for engineering teams, covering authentication, authorization, encryption, API security, and secure coding practices.
• Partner with product and development teams to embed security controls in CI/CD pipelines and integrate application security testing (SAST, DAST, SCA) into the SDLC.
• Lead threat modeling sessions for new and existing applications, workflows, and infrastructure deployments, identifying attack vectors, risks, and mitigations.
• Perform security risk assessments for both infrastructure and applications, translating findings into actionable remediation plans.
• Collaborate with product managers and engineers to incorporate security requirements during design phases.
• Provide training and mentorship to engineers and staff on secure architecture design, threat modeling, and cloud security best practices.
• Performing other tasks as assigned by Direct Supervisor.

What We Need From You

• Bachelor's degree in computer science, Information Security, or related field.
• 7+ years in information security, with 4+ years in cloud security architecture and significant exposure to application security.
• Expert-level knowledge of AWS security services (e.g., IAM, KMS, CloudTrail, Config, GuardDuty, Lambda security).
• Proficient with Azure security capabilities (e.g., Defender for Cloud, Azure AD, NSG, Key Vault).
• Demonstrated experience designing secure architecture for large-scale, multi-account cloud environments and enterprise applications.
• Strong understanding of CSPM, zero trust frameworks, Infrastructure-as-Code (Terraform, CloudFormation), and DevSecOps.
• Familiarity with application security frameworks (e.g., OWASP ASVS, NIST SP 800-53, CIS Benchmarks, ISO27001, SOC2/3).
• Proven ability to lead cross-functional teams and influence security practices across engineering organizations.

Preferred certifications: AWS Certified Security Specialty, Azure Security Engineer Associate, CISSP, CCSP, CSSLP.