Cloud Security Architect

About the job

WHAT WE’RE LOOKING FOR

The Cloud Security Architect will drive the development of a modern application security development. Operating in a DevSecOps model in partnership with our development and technology teams, this individual will focus on a multi-year holistic transformation utilizing the Microsoft Azure technology stack.

• Collaborates to establish application security framework with a focus on educating and enabling development teams.
• Collaborates with enterprise and domain architects to develop secure application solutions and a AppSec Strategy.
• Develops and actively participates as a subject matter expert in a cyber center of excellence, including security, infrastructure, and application architects.
• Develops strategy and roadmaps for the enterprise security portfolio.
• Actively mentors/coaches junior teammates to deliver technological solutions that provide value and meet departmental objectives. Fosters a spirit of teamwork and unity among teammates that allows for disagreement over ideas with expeditious resolution and appreciation for diversity, sparking cohesiveness and an effective working dynamic.
• Champions the implementation of industry leading application security standards and best practices across the enterprise.
• Provides advice, analysis and recommendation on the security products in the application and DevOps security space.
• Identifies and recommends new solutions for research and participates in proof-of-concept initiatives to explore new security strategies.
• Assists in building enterprise governance standards to guide in secure and efficient applications implementations, while engaging in an agile DevOps culture capable of delivering technical excellence.
• Collaborates with applications development teams and architects to promote the adoption of the Secure Software Development Lifecycle (SSDLC) to raise security awareness in application development and implementation.
• Maintains application security standards, processes and governance models.
• Performs security reviews and assessments together with Application Development, Data Governance Board and other business units across the organization.
• Stays informed on current DevSecOps technology trends and the changing technology landscape.

WHAT WE’RE LOOKING FOR

• EDUCATION: Bachelor’s degree in Information/Cyber Security, Information Systems, or Computer Science, strongly preferred.
• EXPERIENCE: Minimum of ten (10) years of experience in supporting Infrastructure and Security for software engineering and application development teams required.
• Minimum of five (5) years of experience in Application development and/or Engineering, with a focus on security.
• Minimum of five (5) years of experience working in a Cloud and/or hybrid environment; specifically in Azure (with a solid familiarity of the offerings within Azure).
• Experience with automation platforms and technologies.
• Experience with applying Security Standards and Practices within an enterprise.
• Experience integrating security into CI/CD systems.
• CERTIFICATIONS: AWS Architect and/or Microsoft Azure Architect certification preferred. One of the following preferred – CISSP, CCSP, CISA, CISM, CRISC, CEH.
• TECHNICAL SKILLS: Knowledgeable in .Net and Javascript/Node
• MATH AND REASONING ABILITY: Able to solve practical problems and deal with a variety of concrete variables in situations where some limited standardization exists. Able to interpret instructions furnished in a written, oral, diagram, or schedule form. Relies on extensive experience and judgment to plan and accomplish goals.