Architect - Design Assessment

• Ensure the security posture of cloud environments (GCP and AWS) by identifying and mitigating risks.
• Conduct security assessments of GCP and other cloud environments (AWS), including applications and infrastructure.
• Collaborate with cloud application architects/developers, system/network administrators, and stakeholders to ensure secure cloud design.
• Review changes in Application Design and assess security controls , provide recommendations and validate the implementation of security controls across IAM , Network Security , Data Security and Infrastructure Security .
• Provide guidance on cloud security controls and ensure adherence to secure cloud practices.
• Work with key stakeholders across engineering groups to align architecture decisions with security requirements.

Profile Description:

• Strong expertise in cybersecurity principles and best practices
• Thorough understanding of various security standards, framework, and certifications/attestations e.g., ISO 27001, HIPAA, HITRUST.
• 10-12 years of experience in Information Security, specializing in reviewing cloud infrastructure and applications.
• Proficiency in Cyber Security Risk Assessment, Cloud Security Assessment, Defense in Depth, and Security Architecture patterns.
• Hands-on experience with Threat Modelling techniques such as STRIDE, PASTA, and familiarity with IAM, App Sec, SDLC, Data Security, Network Security, Encryption, Logging & Monitoring.
• Experience with Okta and Entra ID is preferable
• Strong experience in assessing and implementing security controls for GCP & AWS cloud platforms and resources
• Strong experience assessing and recommending security controls for Container based applications.
• Experience in Assessing and Recommending Security controls for Data Analytics , Data Warehouse and AI based applications
• Familiarity with GCP Command Center, AWS Security Hub and mitigating vulnerabilities.
• Experience with Cloud Access Security Broker, CSPM, CWPP, PaaS, and IaaS security requirements in Azure, GCP, AWS, and AKS.
• Individual handling of design/solution reviews across cloud and SaaS providers, ensuring security due diligence.
• Understanding of Cloud Security Alliance Cloud Control Matrix (CSM) and CSA Security guidance.
• Management of security projects and technical assessments across multiple geographies.
• Strong analytical and troubleshooting skills, along with excellent communication and interpersonal abilities.
• Experience with cloud infrastructure like GCP and AWS and familiarity with concepts like Zero Trust Architecture, Cloud Security, Firewall rule reviews, and Conditional Access.
• Scripting knowledge (e.g., Powershell) is advantageous, and CISSP and CCSP certifications are a plus.