Cloud Security Architect

Key Responsibilities:
Ensures Information Technology systems meet enterprise standards, adhere to applicable rules, laws, and regulations, and comply with appropriate treatment of risk
Assess against and evaluate security controls for cloud infrastructure (IaaS, PaaS, SaaS) based on industry best practices, compliance requirements, and bank security policies.
Ensure appropriate security measures are in place to protect against threats, vulnerabilities, and breaches in Azure and AWS environments.
Develop and maintain documentation for cloud security controls, policies, and procedures.
Monitor and evaluate the effectiveness of existing cloud security controls and recommend enhancements.
Conduct regular security assessments and audits of cloud environments to identify and mitigate potential security threats and vulnerabilities in cloud environments.
Participate in internal and external audits to demonstrate compliance with cloud security requirements.
Collaborate with DevOps, IT, and business teams to integrate security controls into cloud deployments and CI/CD pipelines.
Stay current with emerging cloud security trends, technologies, and best practices.
Required Skills:
Experience in Cloud security, compliance and risk management, privacy, governance, internal audit, etc.
Experience building enterprise security strategy for cloud adoption or driving the program's evolution to meet new requirements
Hands-on technical expertise in Security Architecture, automation, integration, and deployment (DevOps)
Knowledge and understanding of key differences between most popular cloud provider solutions and cloud orchestration tools (e.g. Azure, AWS, GCP, Pivotal Cloud Foundry, BOSH, Kubernetes, Docker, etc.)
Experience architecting solutions within AWS, Azure and GCP
Strong domain expertise of cloud infrastructure compute, network and storage as well as the cloud control plane
Experience working with cloud security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies.
Experience building security reference architecture for all-in cloud deployments and hybrid scenarios