AWS Cloud Security Architect

Greetings from Maneva!

Job Description

Job Title - AWS Cloud Security Architect

Experience - 10 - 15 Years

Location - Thane / Ghansoli

Notice - Immediate Joiner

Requirement:-

• 10 years of experience in cloud security architecture with a strong focus on AWS at enterprise scale.
• AWS Certified Solutions Associate - Professional certification (mandatory).
• AWS Certified Security - Specialty certification (mandatory).
• Demonstrated experience architecting security solutions for enterprise cloud
• Expert-level knowledge of AWS security services: IAM Organizations Control Tower GuardDuty Security Hub Cloud Trail AWS Config KMS CloudHSM WAF Shield Macie Inspector and Detective.
• Deep understanding of regulatory and compliance frameworks relevant to banking including PCI-DSS SOC 2 ISO 27001 RBI IT guidelines and NIST CSF.
• Proven experience designing multi-account landing zones security baselines and governance frameworks on AWS.
• Strong expertise in zero-trust architecture network security design (VPC Transit Gateway Private Link) and identity federation (SAML OIDC AWS SSO).
• Experience with policy-as-code and security automation tools
• Hands-on experience with threat modeling security architecture reviews and risk assessment methodologies.
• Define and own the enterprise cloud security architecture strategy roadmap and reference architectures for AWS environments across the organization.
• Establish and govern security architecture standards patterns and guardrails that development and infrastructure teams must follow for all AWS deployments.
• Architect zero-trust security frameworks including identity-centric access controls micro-segmentation and continuous verification models for cloud workloads.
• Lead the design of multi-account security strategies using AWS Organizations AWS Control Tower Service Control Policies (SCPs) and landing zone architectures.
• Define encryption and key management architectures using AWS KMS CloudHSM and certificate lifecycle management for data protection at rest and in transit.
• Design and oversee the implementation of cloud security monitoring and observability architectures integrating GuardDuty Security Hub Cloud Trail Macie Detective and SIEM platforms.
• Architect threat detection and incident response frameworks including automated remediation workflows using Lambda Step Functions and Event Bridge.
• Ensure all cloud security architectures meet regulatory compliance requirements including RBI IT guidelines PCI-DSS SOC 2 ISO 27001 NIST CSF and GDPR where applicable.
• Conduct architecture risk assessments and threat modeling (STRIDE MITRE ATT&CK for Cloud) for new and existing cloud solutions.
• Provide architectural oversight and security review for cloud migration programs ensuring security is embedded from design through deployment.
• Bachelors or masters degree in computer science Cybersecurity Information Security or a related field.

If you are excited to grab this opportunity please apply directly or share your CV atand