General Description
Designs Cloud Security architecture for public clouds and define architecture principles and patterns for cloud service models, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS). The Cloud Security Architecture (Mid-level) role is responsible for the security architecture and solution designs across multiple cloud service providers.
Essential Duties and Responsibilities
- Responsible for securing the organization's assets in the cloud IAW governance laws, regulatory compliance, and Popular's standards.
- Designs and develops the Cloud Security infrastructure and cloud services.
- Responsible for development and validation of Cloud Security policies, standards, and best practices
- Responsible for development of the cloud architecture strategy, establishing governance, facilitating adoption and execution.
- Research emerging Cloud Security solutions assess the relevance and potential value to the organization and presents information to senior management and peers.
- Responsible for the development of the Cloud Security roadmap
- Embeds Cloud Security capabilities into organizational-level business requirements and initiatives.
- Cross-pollinate and works closely with all domain architects to ensure Cloud Security requirements are adopted to all cloud solutions and proposals.
- Design security principle to Application Programming Interface (API) and perform API security reviews.
- Participates in the Center of Excellence Council and ensures Cloud Security requirements are implemented to all cloud solutions and initiatives.
Education
Bachelor's Degree in Computer Science or related fields
Experience
- 6+ years of relevant IT experience
- 4+ years of Security engineering and architecture experience in a complex technology environment
- 2+ years working with public cloud platforms.
- Experience in working in complex public cloud infrastructure, platform, and software services (AWS, GCP, Azure, Salesforce, etc.)
- Experiences in working with home-grown, CSP-native, and third-party technology solutions such as AWS Security Hub, Azure Sentinel, Azure AD, HashiCorp Vault, etc.
- Experience in risk-based authentication and Azure AD MFA
- Experience in AWS/salesforce/Cloud Security tools/solutions such as AWS WAF, AWS Secrets Manager, AWS Config, HashiCorp Vault, Salesforce Shield.
- Experience with software development methodologies and secure coding practices
- Experience with data center operations
- Experience managing the application delivery process is a plus.
- Experience in financial services/banking is a plus.
Certifications / Licenses
Certifications are highly desirable but not required.
- CompTIA Cloud+
- AWS Certified Solutions Architect Associates, or Professional
- Microsoft AZ 303, or 304
- Certified Cloud Security Professional (CCSP)