Senior Cloud Security Architect (Zero Trust | DevSecOps | AWSAzureGCP)

At Lifescale Analytics we help achieve data-driven decisions by leveraging strategic technologies to create innovative solutions that ultimately help our clients to navigate their ever-changing data landscape. We have an opportunity for an Senior Cloud Security Architect in Morrisville NC; Falls Church VA; or Eagan MN areas (Remote support will be considered for highly qualified candidates.) Note: Relocation expenses are not covered by the employer/client. Note: Relocation expenses are not covered by the employer/client.

Applicants responding to this position must be a US Citizen and will be subject to a government security investigation and must meet eligibility requirements by currently possessing the ability to view classified government information. The candidate must have lived in the United States for the past 5 years.

The Employer will not sponsor applicants for any employment visas at hiring or in the future including but not limited to H-1B visas. Corp-to-Corp or subcontract personnel will not be considered for this position.

Key Responsibilities

• As a Senior Cloud Security Architect you will lead the strategic vision for protecting our multi-cloud ecosystem.
• You are responsible for designing the security blueprints that govern our entire digital footprintfrom identity perimeters to AI-driven threat detection.
• This role requires a Security as Code mindset where you build automated guardrails that empower developers to move at speed without compromising the safety of our data or infrastructure.
• Security Architecture Vision: Lead the design of a global Zero Trust architecture ensuring robust identity governance (IAM) network micro-segmentation and data encryption across AWS Azure or GCP.
• AI-Native Security Strategy: Architect specialized security frameworks for AI/ML pipelines focusing on data privacy for training sets model integrity and securing LLM-integrated applications against emerging attack vectors.
• Automated Guardrails (Policy as Code): Develop and enforce enterprise-wide security policies using Terraform etc. ensuring that non-compliant infrastructure is automatically remediated or blocked from deployment.
• Cloud Posture Management: Design and oversee the integration of CNAPP and CSPM tools to provide real-time visibility into misconfigurations vulnerabilities and excessive permissions.
• Threat Modeling & Resilience: Conduct deep-dive threat modeling for complex cloud-native systems simulating advanced persistent threats (APTs) and blast radius scenarios to strengthen system resilience.
• Security Consultancy: Act as the lead security advisor for the Cloud Architecture team bridging the gap between DevOps agility and rigorous regulatory compliance (SOC2).

Core Objectives

• Zero Standing Privilege: Help Transition the organization to a Zero Standing Privilege model for all production environments.
• Automated Compliance: Help Achieve automated auditing for core compliance frameworks (e.g. NIST CIS Benchmarks).
• Mean Time to Detect (MTTD): Utilize AI-driven monitoring to reduce the detection time of anomalous cloud activity to minimum

Technical Qualifications:

• Security Platforms Mastery of cloud-native security suites (e.g. AWS Security Hub Azure Defender GCP Security Command Center).
• Identity & Access: Expert knowledge of Identity-First Security including CIEM Just-In-Time (JIT) access and complex OIDC/SAML flows.
• Automation: Proficiency in Python Go or Bash to build custom security automations and integrate with SOAR platforms.
• DevSecOps: Deep experience embedding automated security testing (SAST/DAST/SCA) directly into CI/CD pipelines.
• Cloud Networking: Advanced understanding of secure connectivity including SD-WAN Cloud WAF and Zero Trust Network Access (ZTNA).

Experience:

• 12 years in Cybersecurity with at least 6 years focused on architecting secure cloud environments at scale.
• Certifications: Top-tier credentials.
• Soft Skills: Strong ability to bridge the gap between Speed of DevOps and Rigors of Security while communicating clearly with executive leadership
• Leadership: Proven ability to influence technical roadmaps and present security risks clearly to C-suite stakeholders.
  

Education:

• Advanced degree in Computer Science Cybersecurity or a related engineering field preferred. BS degree from an accredited College/University in the applicable field of services is required or four additional years of relevant experience in lieu of a college degree. If the individuals degree is not in the applicable field then four additional years of related experience is required.
  

Additional Provisions:

• Pass a client mandated clearance process to include drug screening criminal history check and credit check.
• Candidates cannot have more than 6 months travel outside the United States within the last five years. Military Service excluded. (Exception does not include military family members.)
• The enforced dress code is business casual i.e. collared shirt with slacks for men no skirts above the knee for women.