| Hiring for Cloud Security Architect at Remote, Remote, USA |
| Email: [email protected] |
| From: Abhishek Kumar, SPAR INFORMATION SYSTEMS [email protected] Reply to: [email protected] Hi, Please find the job description below and let me know your interest. Title: Cloud Security Architect Duration: Contract Work Location: Hybrid - Racine WI ( Once in a week or 1 week in a month ) Location: 25% onsite in Racine Hours: 40/week 8:00 5:00 PM (with flexibility due to collaboration with global teams) Interview Format: 1 Panel Interview/Video REQUIRED EDUCATION: Bachelors Degree in any field Microsoft Certified: Azure Security TOP 5 REQUIRED ATTRIBUTES: 5+ years of experience in cloud security architecture or similar roles in Azure and GCP Strong knowledge of security architecture, design patterns, and best practices in cloud environments Demonstrated experience in designing and implementing secure solutions for Azure cloud environments, encompassing IaaS and PaaS components and services Demonstrated experience in designing and deploying the following services: Azure Policy Azure WAF and App Gateway MDfC Entra and Purview Excellent communication skills to articulate complex security concepts to technical and non-technical stakeholders TECHNOLOGY PROFICIENCIES: Microsoft Azure GCP (Google Cloud Platform) KEY WORDS: Preferred Attributes: STRONG PREFERENCE - Experience with DevSecOps practices, integrating security into the infrastructure as code (IaC) CI/CD pipeline This role will assist the security architecture leader in ensuring the secure design, implementation, and operation of our business solutions within the cloud environments. The successful candidate will collaborate with application and infrastructure teams to provide expert guidance on security best practices, develop security standards and design patterns, and conduct thorough technical security assessments to uphold the confidentiality, integrity, and availability of our cloud-based systems and data. Project or Solution Security Consulting Responsibilities Collaborate with cross-functional teams to understand business requirements and provide security recommendations for cloud-based projects Assist application and infrastructure solution teams in architecting and implementing secure business solutions utilizing IaaS and PaaS components and services Conduct security design reviews for proposed cloud solutions, identifying and addressing potential vulnerabilities and threats Document formal project artifacts business requirements, high-level architecture and design documentation, low-level architecture and design documentation Consult solution team on vulnerability and penetration test assessment findings Provide general security support and consulting throughout the engagement Security Governance Responsibilities: Develop, enhance, and maintain security standards, policies, and procedures for cloud-based systems, ensuring alignment with best practices and regulatory requirements, while focusing on cloud-specific security controls Create and update security design patterns for various business scenarios in the cloud, ensuring consistent and effective security practices across projects Provide expert advice on regulatory compliance (e.g., GDPR, HIPAA) and industry best practices related to cloud security Utilize the NIST CSF, CIS, CSA CCM to guide and enhance company security posture General Responsibilities: Conduct technical security assessments and create minimum security baselines for both on-premises and cloud applications and services, identifying vulnerabilities and providing remediation requirements and recommendations Lead security attestation efforts for cloud PaaS services, working closely with internal teams and external vendors to ensure compliance with security requirements Collaborate with the wider security team to support response and remediation of security incidents, as well as proactively identify potential security risks Apply threat modeling frameworks (e.g., STRIDE, PASTA, MITRE ATT&CK) to assess and address security threats and vulnerabilities for new and existing applications and services Provide technical and project leadership for IT security solutions Full cycle engagement and leadership - analysis, requirements development, solution request-for-proposal (RFP) support, design, documentation, implementation, operationalization, and maintenance Definition of control effectiveness metrics and establishment of on-going visibility and reporting Integration into product-related lifecycle activities Development of operational plan for transition of the security solution to run Evangelize agile culture and DevSecOps shift-left mentality within and outside of information security department Actively participate in team scrum activities in a hybrid productized and projectized environment Properly document and manage scrum stories from sprint to sprint, ensuring timely updates Provide input for development of domain/product-related roadmaps, tactical execution plans with SMART OKRs (objectives and key results), and assist in related activities (e.g. current state documentation, gap analysis, resource estimations) Focus on self-service, automation opportunities and quality of supporting documentation Keywords: continuous integration continuous deployment information technology Wisconsin |
| [email protected] View all |
| Thu Dec 07 21:51:00 UTC 2023 |