CyberSecurity Cloud Security Architect

Title CyberSecurity Cloud Security Architect

Location: New York NY (Minimum four days a month on site and rest is remote).

The candidate has to be local.

Note from Manager:

This will be a handson role and experience requirement for Azure specifically.

Candidate will focus on security deployment and review of what is required and according to what we want to implement as secure controls in the cloud.

Since the position does require an engineering we need handson experience with Azure more specifically Microsoft Compliance Manager.
Experience with DLP EDM and how to configure it to work in a singletenant using a export data from EMR.
Lets focus on Azureengineering with track record on M365 and Microsoft Compliance including DLP AIP and also Conditional Access IAM and overall security assessments with Microsoft controls

Description

We are seeking an experienced Cyber Security Cloud Security Architect to design implement and maintain our cloud security infrastructure. The ideal candidate will have a strong background in cloud security architecture as well as experience with securing largescale cloud environments.

This position reports to the Chief Information Security Officer.

Key Responsibilities

Develop and implement cloud security architecture that aligns with business objectives and regulatory requirements.

Identify and assess potential security risks and vulnerabilities in cloud infrastructure and develop mitigation strategies.

Provide guidance and support to development teams in the secure design and implementation of cloud applications.

Collaborate with crossfunctional teams to integrate security controls and processes into cloud infrastructure and applications.

Develop terraforms or IaC to maintain cloud security policies standards and procedures.

Conduct regular security assessments and audits of cloud infrastructure and applications.

Stay uptodate with emerging threats vulnerabilities and best practices in cloud security.

Position Requirements

Formal Education & Certification

Bachelors or Masters degree in Computer Science Information Security or related field.

5 years of experience in cloud security architecture and implementation.

10 years of experience in IT Security

Strong understanding of cloud platforms such as AWS Azure or Google Cloud Platform. Indepth Azure security knowledge preferred.

Experience with security technologies and tools such as firewalls intrusion detection and prevention systems and vulnerability scanners.

Knowledge of security frameworks such as ISO 27001 NIST Cybersecurity Framework and Cloud Security Alliance.

Excellent communication and collaboration skills.

Relevant industry certifications such as Certified Cloud Security Professional (CCSP) Certified Information Systems Security Professional (CISSP) or Certified Ethical Hacker (CEH).

Knowledge & Experience

Minimum six years of progressive experience in leading security and compliance management programs; interactions with and support of clients; risk management and other GRC responsibilities within a large IT organization preferably within a professional services firm or similar.

Demonstrated experience with managing information security functions including governance frameworks processes tools scorecards and dashboards under aggressive deadlines and with competing priorities.

Knowledge of industry regulations and standards (e.g. HIPAA Meaningful Use FISMA PCI) as well as core technology infrastructure (e.g. firewalls servers databases Internet technologies).

Proven experience interacting with regulators internal auditors and/or external auditors.

Demonstrated knowledge of industry authoritative sources such as COBIT NIST ISO standards and Cloud Security Alliance

Working knowledge of GRC tools.

Certification requirements: CISSP CISM CISA ISO 27001 Auditor LSS Green Belt CRISC CIPP CGEIT or ITIL