Overview
Senior Cloud Security Architect at Ekco. Ekco is a leading cloud solution provider founded in 2016, with a security-first managed service approach and a growing international team. We help organisations modernise with confidence by securing systems, optimising cloud environments, and keeping them resilient in a rapidly changing world. Today, we’re a thriving team of 1,000+ colleagues across the UK, Ireland, Benelux, South Africa, and Malaysia.
The Role
Day-to-day At Ekco: Ekco is seeking a highly skilled Cloud Security Architect with extensive expertise in Information & Cyber Security, IT/OT, and large-scale cloud and on-premises enterprise environments. In this pivotal role, you will collaborate directly with Enterprise Clients to provide expert advice, conduct thorough assessments, and deliver comprehensive programmes focused on Enterprise Cyber & Cloud Security. You will play a crucial role in Ekco's mission to deliver cutting-edge technologies and cyber assurance services to our clients, ensuring minimal disruption while enabling highly effective operational cyber programmes. By leveraging your expertise, you will help forge strong relationships with some of the largest organisations in Ireland and globally, including numerous Fortune 500 companies across industries such as Financial, Life-Sciences, Insurance, Telecommunications, Construction, State, and Semi-State.
What You’ll Be Responsible For
* Conduct Cloud Security Audits and Assessments: Regularly perform cloud (Azure and/or AWS) cloud security audits and assessments to identify vulnerabilities and ensure compliance with industry standards.
* Develop and Maintain Cloud Security Strategies: Create and update comprehensive cloud security strategies that align with the organisation's goals and regulatory requirements.
* Develop and Implement Cloud Security Policies: Create and enforce cloud security policies and procedures to protect the organisation's assets and data.
* Evaluate and Recommend Cloud Security Solutions: Assess new cloud security technologies and solutions and recommend their adoption to enhance the organisation's security posture.
* Zero Trust Architecture: Architect and champion Zero Trust security models across Azure and hybrid environments, including identity, device, and network segmentation strategies.
* Deploy secure by design cloud environments: Develop and deploy new CAF Landing Zone environments through automation. Implement and manage CSPM tools to continuously monitor, assess, and remediate misconfigurations and vulnerabilities in Azure environments.
* Security Automation and DevSecOps Integration: Lead the integration of security controls into CI/CD pipelines, ensuring automated security testing and compliance checks are part of the deployment lifecycle (DevSecOps).
* Collaborate with Cross-Functional Teams: Work closely with IT, Legal, and Compliance to ensure cohesive security measures across the organisation.
* Stakeholder Engagement & Security Evangelism: Act as a security evangelist, providing guidance to development, operations, and business teams on secure cloud design and deployment practices.
* Mentor and Train Team Members: Provide guidance and training to junior team members and other staff on security best practices and emerging threats.
* Engage in Continuous Learning: Stay informed about the latest security trends, technologies, and threats, and continuously improve your skills and knowledge.
Requirements
* Education: Bachelor's or Master’s degree in Information Security, Computer Science, or a related field, or equivalent professional work experience.
* Azure Platform: Proven experience architecting and deploying secure solutions using Azure services (e.g., Azure AD, Key Vault, Sentinel, Defender, Policy, Blueprints).
* DevOps & IaC Mastery: Advanced proficiency in Infrastructure-as-Code (Terraform, Bicep, ARM templates) and automation within Azure DevOps pipelines. Hashicorp Terraform associate (003/4).
* Cloud Security Technologies: Comprehensive understanding of cloud security technologies across Azure, M365, AWS, and Zero Trust concepts.
* Cloud Security Architecture: Extensive experience in cloud security architecture and management with knowledge of security best practices – preferably with Azure.
* Compliance & Regulatory Knowledge: In-depth understanding of regulatory requirements (GDPR, NIS2, DORA, SOC 2, HIPAA) and experience implementing controls in Azure environments.
* Security Frameworks & Best Practices: Strong knowledge of cloud security frameworks (CIS, NIST, CSA, OWASP) and application of controls and guardrails in cloud environments.
* Interpersonal Skills: Strong leadership, communication, and stakeholder management skills, with the ability to translate technical risks into business language.
* Cloud Security Certifications: Cloud architect certifications at Professional/Expert Level (e.g., Microsoft Azure Solutions Architect AZ-305, Microsoft Cybersecurity Architect SC-100, Azure Security Engineer AZ-500). Optional AWS Cloud Security Architect qualifications.
* Cybersecurity Qualifications: Possession or progress towards cybersecurity qualifications such as CISSP, CCSP, and CISM.
* Professional Accreditation: Professional accreditation from bodies like ISC2, ISACA, CiiSec or BCS.
Nice To Have
* Experience in managing and securing multi-cloud environments (Azure, AWS, GCP).
* Broad knowledge of information security, risk management, and governance.
* Excellent skills in Infrastructure-as-Code tools (Terraform, Bicep, CloudFormation).
* Proficient in CASB, CSPM, IAM, SIEM, MDR, XDR and related areas.
* Additional certifications at Microsoft or AWS Associate level.
* Experience with AWS Management and Governance, Identity and Security services.
* Relevant cyber security certifications such as GSEC or CASP+ are beneficial.
* Experience with other cloud providers including Google Cloud Platform (GCP).
Benefits / Perks
* ☀️ Time Off: 25 days annual leave + public holidays
* 🎂 Birthday Leave: One extra day off to celebrate
* 💰 Company Pension Scheme
* 📞 Employee Assistance Programme (EAP) for wellbeing support
* 🏃♀️ EkcOlympics: Global team activity challenges
* 📚 Unlimited access to Pluralsight for continuous development
* 🌱 Real opportunities to grow, including international progression
Why Ekco
* ⭐️ Microsoft’s 2023 Rising Star Security Partner of the Year
* 🚀 First Irish Microsoft MSP to achieve all four Microsoft Security Specializations
* 🏅 Ranked 4th fastest-growing technology company in Deloitte Fast50 Awards
* 🌈 A culture rooted in diversity, equality, inclusion & belonging
* 🎉 Commitment to internal mobility and career progression
* ✨ Flexible, family-friendly working at the heart of our culture
* 🔐 Proud to be your trusted security-first MSP chosen by IT leaders to drive operational efficiency, scale smarter and stay ahead of risk.
#J-18808-Ljbffr