Role description: Cloud Security Architect
Our Cloud Centre of Excellence (CCoE) is seeking a Senior Cloud Security Architect (Azure/GCP) to lead the design and delivery of cloud services across our Cloud Platform environment. This role involves accountability for security build and operational deliverables.
The ideal candidate will possess in-depth technical expertise in public cloud, API, and micro-service architectures. They will provide hands-on technical engineering for Cloud Builds, Cloud control frameworks, and continuous compliance services. The Cloud Security Architect will own the engineering of secure cloud solutions, ensuring that security designs and controls are effectively implemented to safeguard cloud services while supporting business projects to meet their deadlines and outcomes.
This senior role requires engagement with business stakeholders and accountability for project delivery, governance representation, and providing technical leadership and consultancy within the team and to external partners.
Key responsibilities:
1. Technical ownership of CCoE deliverables, including Cloud Security Designs, HLD/LLD.
2. Participate in architecture discussions to align service strategies with existing technologies.
3. Collaborate with architects and engineers to define security requirements and translate them into design and engineering activities.
4. Identify and mitigate security risks proactively during design and engineering phases.
5. Manage end-to-end security for specific platform components and integrations.
6. Perform threat modelling on architectures and solutions.
7. Align security activities with the broader security strategy.
8. Work within a multi-disciplinary team to deliver security value.
9. Interpret technical details, perform security analysis, and ensure security requirements and assurance.
10. Demonstrate experience in security risk management and compliance.
Key skills and experience:
1. Supporting major programmes and project activities.
2. Supporting IT/Security infrastructure with a strong technical background.
3. Hands-on experience with Cloud Security (Azure/GCP/DevSecOps).
4. Knowledge of cloud security tools like Azure Security Centre is advantageous.
5. Cloud certifications such as Microsoft Certified: Azure Security Engineer Associate, Google Certified Security Engineer, or CSSP.
6. Experience working within an agile framework and with cloud native security tools.
7. Familiarity with programming or scripting languages.
Person specifications:
* Ability to learn new technologies rapidly and decide on the best application for security enhancement.
* Excellent communication skills, confident and professional interaction with teams and stakeholders.
* Strong attention to detail and analytical skills.
* Effective workload management to meet business and departmental requirements.
#J-18808-Ljbffr