Job Description

About the Role

We are seeking a highly experienced Cloud Security Architect with IT experience to lead the design, implementation, and governance of secure cloud architectures. The role will be responsible for embedding security best practices across cloud platforms, enabling secure digital transformation, and ensuring compliance with organizational and regulatory requirements.

Key Responsibilities

• Design and implement secure cloud architectures across public, private, and hybrid cloud environments (AWS, Azure, GCP).
• Define cloud security standards, reference architectures, and security blueprints aligned with business objectives.
• Assess cloud applications and infrastructure for security risks and recommend mitigation strategies.
• Lead threat modeling, security architecture reviews, and risk assessments for cloud workloads.
• Implement identity and access management (IAM), encryption, key management, and network security controls.
• Ensure compliance with security frameworks and regulations such as ISO 27001, SOC 2, GDPR, HIPAA, and PCI-DSS.
• Collaborate with DevOps, engineering, and infrastructure teams to integrate security into CI/CD pipelines (DevSecOps).
• Evaluate and implement cloud-native and third-party security tools (CSPM, CASB, CWPP, SIEM, SOAR).
• Provide security guidance for containerization, Kubernetes, and serverless architectures.
• Mentor and guide security engineers and contribute to security awareness across teams.
• Stay up to date with emerging cloud security threats, vulnerabilities, and best practices.

Basic Qualifications

• Bachelor’s degree in computer science, Information Technology, or a related field.
• 10–12 years of overall IT experience with at least 4–6 years in cloud security or cloud architecture roles.
• Hands-on experience with at least one major cloud platform (AWS, Azure, or GCP).
• Strong understanding of cloud security concepts including IAM, network security, encryption, and logging/monitoring.
• Experience in designing secure architectures for cloud-native applications.
• Knowledge of security frameworks, standards, and regulatory requirements.
• Experience with scripting or automation using Python, PowerShell, or similar languages.
• Excellent communication skills with the ability to work with technical and non-technical stakeholders.

Preferred Qualifications

• Cloud security certifications such as AWS Certified Security – Specialty, Azure Security Engineer, or GCP Professional Cloud Security Engineer.
• Security certifications such as CISSP, CISM, or CCSP.
• Experience with DevSecOps tools and CI/CD security integration.
• Hands-on experience with containers, Kubernetes security, and service mesh technologies.
• Experience implementing Zero Trust security architectures.
• Familiarity with Infrastructure as Code (Terraform, ARM, CloudFormation) and securing IaC pipelines.
• Prior experience in regulated industries such as BFSI, healthcare, or telecommunications.