Job
Description
You are an experienced Security Architect with expertise in cloud security, identity management, data protection, and compliance frameworks. Your role involves designing and implementing security architectures for multi-tenant cloud platforms, focusing on isolation, privacy, encryption, and operational security aligned with best practices. **Responsibilities:** - Define end-to-end cloud security architectures emphasizing multi-tenant isolation, secure data flows, and identity governance. - Design IAM models including RBAC, MFA, privilege separation, and zero-trust principles. - Architect encryption strategies for data at rest and in transit, key management, secret rotation, and certificate handling. - Embed privacy-by-design and compliance-by-design into platform and component architectures. - Design and validate access patterns, audit logging strategies, and monitoring frameworks. - Develop governance models covering change management, incident response, data classification, and retention. - Configure identity, access controls, network security rules, encryption, certificates, and monitoring agents. - Perform hardening of cloud resources, compute clusters, storage, and data services according to industry standards. - Integrate security tools for data discovery, classification, access governance, encryption policy enforcement, and auditability. - Support vulnerability assessments, penetration tests, and risk remediation. - Establish dashboards and alerts for security monitoring using SIEM tools. - Lead threat analysis, incident response, forensic investigations, and root cause analysis. - Conduct regular access reviews, configuration audits, and isolation checks. - Oversee security patching, baseline updates, identity audits, and configuration compliance. - Ensure operational security coverage across all tenants/environments. - Produce security SOPs, runbooks, incident response plans, and governance workflows. - Deliver security training for engineering, operations, and administrative teams. - Ensure full documentation and knowledge transfer for ongoing operational security activities. **Key Skills Requirements:** - 7+ years of experience in cybersecurity, cloud security architecture, or related domains. - Deep expertise with cloud IAM, RBAC, authentication flows, and identity governance. - Strong knowledge of cloud networking security (firewalls, segmentation, VPN, private networking). - Hands-on experience with data security tools (classification, cataloging, access governance, encryption management). - Expertise in encryption, key management, audit logging, and SIEM/SOAR. - Understanding of multi-tenant security challenges and proven ability to design secure isolation patterns. - Strong understanding of compliance, data protection, and privacy principles. **Preferred Certifications:** - CISSP, CCSP, CISM - Azure Security Engineer / Cloud Security certifications - ISO 27001 or other governance framework certifications,
