Senior Cloud Security Architect

Key responsibilities:-
• Design, build, and maintain secure AWS cloud architectures, incorporating best practices for identity and access management, data encryption, network security, and secure software development lifecycle.
• Lead the development and execution of security strategies to protect AWS environments. Provide thought leadership and guidance to technical teams on security-related matters.
• Perform cloud security risk assessments and vulnerability assessments. Propose mitigation strategies and work closely with stakeholders to ensure the security of applications, data, and infrastructure.
• Leverage AWS security tools (e.g., AWS Shield, AWS WAF, AWS Guard Duty, AWS Security Hub, AWS IAM) to enforce security policies and detect potential security incidents.
• Design and implement incident response plans specific to AWS environments. Act as a lead in security incidents, conduct root cause analysis, and guide teams on post-incident remediation and recovery.
• Ensure compliance with industry regulations and standards such as NIST, HIPPA, IRS and SSA in AWS cloud environments. Drive audit readiness and support security certifications.
• Collaborate with DevOps teams to incorporate security into CI/CD pipelines, automate security testing, and ensure secure coding practices are followed throughout the software development lifecycle.
• Provide mentorship and training to security engineers, developers, and other technical staff on AWS security best practices. Promote a security-first culture within the organization.
• Stay up to date with emerging threats, vulnerabilities, and new AWS security features. Continuously improving security processes, tools, and practices to meet evolving security challenges.

Required / Desired Skills:-
• Bachelor’s or master’s degree in computer science, Information Security, Engineering, or related field.
• 15+ years of experience in IT security, with at least 10 years of hands-on experience securing AWS cloud infrastructures.
• Proven track record in designing and implementing secure AWS cloud architectures.
• Expertise in security best practices for AWS, including encryption, access control, networking, monitoring, and auditing.
• AWS Certified Security – Specialty (Required)
• CISSP, CISM, or other recognized security certifications (Required)
• Expertise in AWS architecture, security services, and compliance tools.
• Strong knowledge of network security, cloud infrastructure, IAM (Identity and Access Management), and encryption methodologies.
• Hands-on experience with infrastructure as code (e.g., Terraform, AWS CloudFormation).
• Proficiency in scripting languages (e.g., Python, Bash, PowerShell) for automation and security tools.
• Experience in threat hunting, penetration testing, or security vulnerability assessments in AWS environments.
• Knowledge of containerization and serverless architectures in AWS (e.g., Docker, Kubernetes, AWS Lambda).