22nd January, 2024
About the job:
Title - CyberSecurity Cloud Security Architect
Start date: Immediate
Position Type: Contract
Work Time Zone: Eastern/ Central Time Zone
Location: New York, NY (Minimum four days a month onsite and rest is remote).
Note from Manager:
This will be a hands-on role and experience requirement for Azure specifically.
Candidate will focus on security deployment and review of what is required, and according to what we want to implement as secure controls in the cloud.
Description
We are seeking an experienced Cyber Security Cloud Security Architect to design, implement, and maintain our Cloud Security infrastructure. The ideal candidate will have a strong background in Cloud Security Architecture, as well as experience with securing large-scale cloud environments.
This position reports to the Chief Information Security Officer.
Key Responsibilities
• Develop and implement Cloud Security Architecture that aligns with business objectives and regulatory requirements.
• Identify and assess potential security risks and vulnerabilities in cloud infrastructure and develop mitigation strategies.
• Provide guidance and support to development teams in the secure design and implementation of cloud applications.
• Collaborate with cross-functional teams to integrate security controls and processes into cloud infrastructure and applications.
• Develop terraforms or IaC to maintain Cloud Security policies, standards, and procedures.
• Conduct regular security assessments and audits of cloud infrastructure and applications.
• Stay up-to-date with emerging threats, vulnerabilities, and best practices in Cloud Security.
Position Requirements
Formal Education & Certification
• Bachelor's or Master's degree in Computer Science, Information Security, or related field.
• 5+ years of experience in Cloud Security Architecture and implementation.
• 10+ years of experience in IT Security
• Strong understanding of cloud platforms such as AWS, Azure, or Google Cloud Platform. Indepth Azure security knowledge preferred.
• Experience with security technologies and tools such as firewalls, intrusion detection and prevention systems, and vulnerability scanners.
• Knowledge of security frameworks such as ISO 27001, NIST Cybersecurity Framework, and Cloud Security Alliance.
• Excellent communication and collaboration skills.
• Relevant industry certifications such as Certified Cloud Security Professional (CCSP), Certified Information Systems Security Professional (CISSP), or Certified Ethical Hacker (CEH).
Knowledge & Experience
• Minimum six years of progressive experience in leading security and compliance management programs; interactions with and support of clients; risk management and other GRC responsibilities within a large IT organization, preferably within a professional services firm or similar.
• Demonstrated experience with managing information security functions, including governance, frameworks, processes, tools, scorecards, and dashboards under aggressive deadlines and with competing priorities.
• Knowledge of industry regulations and standards (e.g., HIPAA, Meaningful Use, FISMA, PCI) as well as core technology infrastructure (e.g., firewalls, servers, databases, Internet technologies).
• Proven experience interacting with regulators, internal auditors and/or external auditors.
• Demonstrated knowledge of industry authoritative sources such as COBIT, NIST, ISO standards, and Cloud Security Alliance
• Working knowledge of GRC tools.
• Certification requirements: CISSP, CISM, CISA, ISO 27001 Auditor, LSS Green Belt, CRISC, CIPP, CGEIT or ITIL
About the job:
Title - CyberSecurity Cloud Security Architect
Start date: Immediate
Position Type: Contract
Work Time Zone: Eastern/ Central Time Zone
Location: New York, NY (Minimum four days a month onsite and rest is remote).
Note from Manager:
This will be a hands-on role and experience requirement for Azure specifically.
Candidate will focus on security deployment and review of what is required, and according to what we want to implement as secure controls in the cloud.
Description
We are seeking an experienced Cyber Security Cloud Security Architect to design, implement, and maintain our Cloud Security infrastructure. The ideal candidate will have a strong background in Cloud Security Architecture, as well as experience with securing large-scale cloud environments.
This position reports to the Chief Information Security Officer.
Key Responsibilities
• Develop and implement Cloud Security Architecture that aligns with business objectives and regulatory requirements.
• Identify and assess potential security risks and vulnerabilities in cloud infrastructure and develop mitigation strategies.
• Provide guidance and support to development teams in the secure design and implementation of cloud applications.
• Collaborate with cross-functional teams to integrate security controls and processes into cloud infrastructure and applications.
• Develop terraforms or IaC to maintain Cloud Security policies, standards, and procedures.
• Conduct regular security assessments and audits of cloud infrastructure and applications.
• Stay up-to-date with emerging threats, vulnerabilities, and best practices in Cloud Security.
Position Requirements
Formal Education & Certification
• Bachelor's or Master's degree in Computer Science, Information Security, or related field.
• 5+ years of experience in Cloud Security Architecture and implementation.
• 10+ years of experience in IT Security
• Strong understanding of cloud platforms such as AWS, Azure, or Google Cloud Platform. Indepth Azure security knowledge preferred.
• Experience with security technologies and tools such as firewalls, intrusion detection and prevention systems, and vulnerability scanners.
• Knowledge of security frameworks such as ISO 27001, NIST Cybersecurity Framework, and Cloud Security Alliance.
• Excellent communication and collaboration skills.
• Relevant industry certifications such as Certified Cloud Security Professional (CCSP), Certified Information Systems Security Professional (CISSP), or Certified Ethical Hacker (CEH).
Knowledge & Experience
• Minimum six years of progressive experience in leading security and compliance management programs; interactions with and support of clients; risk management and other GRC responsibilities within a large IT organization, preferably within a professional services firm or similar.
• Demonstrated experience with managing information security functions, including governance, frameworks, processes, tools, scorecards, and dashboards under aggressive deadlines and with competing priorities.
• Knowledge of industry regulations and standards (e.g., HIPAA, Meaningful Use, FISMA, PCI) as well as core technology infrastructure (e.g., firewalls, servers, databases, Internet technologies).
• Proven experience interacting with regulators, internal auditors and/or external auditors.
• Demonstrated knowledge of industry authoritative sources such as COBIT, NIST, ISO standards, and Cloud Security Alliance
• Working knowledge of GRC tools.
• Certification requirements: CISSP, CISM, CISA, ISO 27001 Auditor, LSS Green Belt, CRISC, CIPP, CGEIT or ITIL