Senior Cloud & Zero-Trust Security Architect

The Senior Cloud & Zero-Trust Security Architect will be the primary technical authority for our Client’s cloud infrastructure and identity ecosystem. This is a high-level engineering and design role focused on eliminating implicit trust and securing workloads across a multi-cloud environment (AWS, Azure, and GCP).

You will architect the future of secure access, moving the organization toward a Zero Trust architecture while ensuring that every cloud deployment—from Kubernetes clusters to Serverless functions—is hardened, compliant, and automated through code.

What you will do:

Zero Trust & Identity Architecture

• Design and implement Zero Trust models and micro-segmentation policies to protect critical data and applications.
• Lead Identity Federation and Conditional Access strategies using platforms like Azure AD (Entra ID), Okta, or Ping Identity.
• Enforce "Least Privilege" access across all cloud workloads and administrative interfaces.

Multi-Cloud & Container Security

• Securely configure and audit workloads across AWS, Azure, and GCP, ensuring alignment with industry best practices (CIS Benchmarks).
• Implement and manage Cloud Native Security tools, including CSPM, CWPP, and CNAPP platforms.
• Architect security for Kubernetes (EKS/AKS/GKE) and Service Meshes like Istio, focusing on pod security and network policies.

DevSecOps & Infrastructure as Code (IaC)

• Harden IaC deployments (Terraform, Ansible, CloudFormation) to ensure security is embedded at the provisioning stage.
• Secure CI/CD pipelines (GitHub Actions, GitLab, Jenkins) by integrating automated scanning, secret management, and compliance checks.
• Advocate for "Security as Code" to automate the remediation of cloud misconfigurations.

Tools & Technologies:

• Cloud Platforms: Deep expertise in AWS, Azure, and Google Cloud Platform.
• Identity: Azure AD/Entra ID, Okta, Ping, and OAuth/SAML protocols.
• Security Tooling: Prisma Cloud, Wiz, Orca, or native tools like AWS Security Hub and Azure Defender.
• Orchestration: Kubernetes (K8s), Docker, and Istio.
• Automation: Terraform, Ansible, Python, and Git.

What you bring:

• 5+ years in Cybersecurity, specifically focused on Cloud Security Architecture.
• Design Authority: Proven experience rolling out Zero Trust frameworks in large-scale, distributed organizations.
• Automation Mastery: Strong background in DevSecOps and the ability to treat security as an engineering discipline.
• Compliance Knowledge: Familiarity with SOC2, PCI, and HIPAA within cloud environments.
• Strategic Mindset: Ability to translate complex business needs into secure technical architectures.