Cloud Security Architect

Job description

Cloud Security Architect

My clientseeking a highly motivated, intellectually curious Cloud Security Architect to join our expanding information security program. This is a unique opportunity to work in a heterogenous cloud environment securing big data environments, cloud native applications, and several other use cases.

Your impact as a Cloud Security Architect
The Cloud Security Architect, reporting to the Senior Director (Cybersecurity Architecture), will lead cloud security in a heterogenous cloud environment. This role will serve as the central resource for defining and evolving protection of cloud infrastructure and services across IT and business lines globally.

With a focus on cloud security and security architecture, you will serve in a key role of leading technical discussions, guiding the development of strategic and tactical security architecture efforts, security standards, designing and driving implementations to completion, and function overall as a technical security leader for fast evolving cloud-based security architectures.


  1. Lead the creation and updating of Cloud Security Standards, Security Patterns, and Reference Architectures.
  2. Participate in and collaborate in security reviews of architectures/designs of cloud infrastructure, cloud-native and legacy applications in heterogenous cloud environments
  3. Lead cloud security assessments and assist in planning the remediation of assessment, audit, and regulatory findings.
  4. Collaborate with Cyber Architecture team, Enterprise Architecture team, Business Unit IT teams, and Enterprise Analytics (EAP) team in reviewing needs, proposing/building cloud architecture and roadmaps
  5. Review existing cloud security configurations in AWS and Azure to identify and propose steps to improve security posture
  6. Define standard reference architectures and roadmap for IaaS, PaaS, and SaaS deployment models
  7. Provide mentoring, education, and leadership on Cloud Security

Technical qualifications:

  1. Knowledge of the current security environment and industry trends especially related to cloud
  2. Knowledge of cloud delivery, security and deployment models for Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS) offerings
  3. Knowledge of key cloud security standards (e.g., NIST, CIS, ISO, CSA STAR)
  4. Knowledge of good industry practice in tiered security architecture design
  5. Work closely with other security architects and enterprise architects in ensuring application of security standards and patterns.
  6. Ability to document reference architectures, network schematics, blueprints, patterns, and other types of architectural documentation
  7. To qualify for the role you must have A bachelor's degree in a related field and approximately 6+ years of related work experience
  8. Experience in one or more of the following
  9. Amazon Web Services (AWS), Microsoft Azure, Pivotal Cloud Foundry, and Google Cloud Platform (GCP)
  10. Providing security review of network and system architecture designs
  11. Operating as an IT architect or security architect within complex projects
  12. Technical knowledge in some of the following domains in a cloud context:  routing/switching, stateful or next gen firewalls (NGFW), distributed denial of service (DDoS) mitigation, web application firewalls, intrusion detection / prevention systems (IDS/IPS), network segregation, security information and event management (SIEM), Cloud Brokers (CASB), Cloud Workload Protection (CWP), deceptive technologies, and other threat and vulnerability management capabilities
  13. Creating or securing cloud solutions for some of the following cloud / cloud security technologies identity and access management (IAM), two-factor authentication (2FA), SIEM, public key infrastructure (PKI), network security, firewalls, IDS/IPS, anti-malware, email security, web content filtering, DDoS mitigation, endpoint detection & response, patch management, configuration management, data loss protection (DLP), application security, and other relevant cloud / cloud security technologies
  14. Strong presentation and communication skills
  15. Relevant security certifications (e.g., CISSP, CISM) • Relevant cloud certifications (e.g., AWS, GCP, Azure)
  1. Experience with container solutions such as Cloud Foundry and Docker.
  2. Experience with securing DevOps processes.
  3. Experience with hybrid cloud deployments.


  1. Demonstrated experience communicating technical information to business clients.
  2. Project management, systems implementation and requirements documentation experience a plus.
  3. Ability to translate business requirements into architectural deliverables and technical specifications.
  4. Extensive knowledge and understanding of security issues, techniques, and implications across multiple computer platforms.
  5. Solid knowledge and understanding of security regulations and best practices such as PCI, SOX, HIPAA, or the ISO 27000 family of standards.
  6. Solid knowledge and understanding of systems development life cycle (SDLC).
  7. Demonstrated experience with Security Architecture and/or Enterprise Architectural Frameworks (e.g. SABSA, TOGAF, O-ESA).
  8. Cloud security implementation experience (AWS, Azure).
  9. Experience generating policies in code.

10. Knowledge and understanding of core credential stores including; LDAP repositories, operating systems, and databases.

11. Security design methodologies, patterns, best practices and corresponding defensive strategies.

Fore more info contact Eoin on 01 474 4613 or apply for this role online

Following your application for this specific role, Sigmar may contact you regarding other positions that we feel you may be suitable for. If you do not wish to be contacted about other opportunities please let us know. For further information please refer to the Privacy Statement on our website.