Your role

• Design and own cloud security architecture for AWS and/or Azure environments at an enterprise scale.
• Define and enforce cloud security guardrails, reference architectures, and security patterns across teams.
• Architect and implement IAM models including least-privilege access, role-based access control, and conditional access.
• Design secure network architectures including VPC/VNet segmentation, private endpoints, security groups, and firewall rules.
• Implement and govern encryption and key management using AWS KMS and/or Azure Key Vault.
• Establish logging, monitoring, and threat detection using cloud-native tools such as CloudTrail, Azure Monitor, and Defender for Cloud.
• Conduct cloud-specific risk assessments and threat modeling and translate risks into technical security controls.
• Ensure cloud environments comply with ISO 27001, GDPR, HIPAA, and internal security standards.
• Collaborate closely with Cloud, DevOps, Platform, and Application teams to embed security-by-design.
• Define cloud security incident response playbooks and improve security posture continuously.

Your profile

• Bachelors degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• 9-12 years of overall IT experience with minimum 3-5 years in a Cloud Security Architect role.
• Proven hands-on ownership of cloud security architecture (not limited to SOC, VA, or compliance roles).
• Strong expertise in AWS and/or Azure cloud security services.
• Deep understanding of:
• Cloud IAM and identity governance
• Network security architecture in cloud environments
• Encryption, key management, and data protection
• Secure cloud application and platform design
• Experience integrating security into DevOps / CI-CD pipelines.

Certifications (Mandatory At least one)

• CISSP or CCSP
• AWS Certified Security ? Specialty
• Azure Security Engineer Associate (or equivalent)