Job Title: Cloud Security Architect
Job Location: Boston, MA (Initial WFH)
Job Duration: 3+ Months perm to hire
Interview Process: Phone/Video.
Provide senior security architectural leadership to all phases of the Cloud Program, including the Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Cloud Application Architecture subprograms.
Work closely with subject matter experts to develop and deliver a complete security architecture solution
Lead technical analysis and recommendations (e.g. evaluate and select vendor security products based on functional, security, and operational requirements; review and comment on security architecture)
Review and assess development design to ensure robustness, adherence to standards and processes, delivery of stable and scalable solutions and that risk mitigation and controls are in place.
Present cloud security architectural design concepts and solutions to all levels in the organization
Build cloud-optimized architecture patterns and contribute to Enterprise Architecture governance
Develop standards, metrics, and dashboards to Measure and Validate the effectiveness
Serves as a leader in the AWS space for InfoSec interfacing with internal and external customers and other parts of InfoSec
Required and Preferred Qualifications:
BS in Technology or Computer Science (Master's Degree preferred) related field with 5+ years of experience preferred.
Certified Information System Security Professional (CISSP) certification, AWS Security Specialist, Certified Cloud Security Specialist (CCSP), or equivalent, required. Other Information Security, Risk, and Technical certifications considered.
Experience in DevOps environments and automating security controls into the CI/CD process
Experience with Jenkins or other CI tools and knowledge of technologies like containers and Microservices
Demonstrated experience in Agile environments, application design, software development, and testing
Expertise in cloud architecture and security fundamentals including containers, software-defined networks, high availability design, multi-cloud, and serverless computing
Architecture and solution design experience required to develop infrastructure based detailed design specifications.
Experience with network virtualization and/or software-defined networks.
Experience with secure Java application design and development using J2EE, Spring, and SQL
Hands-on with Docker and Kubernetes preferred
Strong foundation and in-depth technical knowledge in security engineering, computer, and network security, authentication and security protocols, and applied cryptography
AWS Cloud Services experience; solution delivery expertise, migration of applications to the cloud, automation through various tools both AWS native and third-party
Strong knowledge in enterprise logging and monitoring solutions including monitoring privilege user accounts and sensitive configuration files