We are seeking a Senior Cloud Security Architect with deep expertise in securing cloud infrastructures in AWS and Azure. This role will drive secure cloud adoption, design security architectures, and implement proactive threat detection and risk mitigation strategies. The ideal candidate will be a technical leader with hands-on experience securing complex cloud environments, integrating automation, DevSecOps, and compliance frameworks into scalable cloud security solutions.
Key Responsibilities
Cloud Security Architecture & Implementation:
- Design and implement secure, scalable cloud architectures in AWS and Azure.
- Develop security frameworks, policies, and standards.
- Architect IAM, RBAC, and CIEM solutions.
- Secure cloud-native services (serverless, Kubernetes, containers).
- Deploy and secure network security controls (firewalls, VPNs, IPS).
Threat Detection & Response:
- Manage SIEM, SOAR, and EDR/XDR solutions.
- Implement real-time threat detection and automated response.
- Analyze network traffic, logs, and security events.
- Use threat intelligence platforms and CSPM solutions.
DevSecOps & CI/CD Security:
- Secure CI/CD pipelines (Jenkins, GitHub Actions, GitLab CI/CD).
- Integrate automated security testing (SAST, DAST, SCA).
- Implement API security best practices.
Offensive Security & Compliance:
- Conduct penetration testing and security assessments.
- Implement data security controls (encryption, DLP).
- Ensure compliance with NIST 800-53, ISO 27001, PCI DSS, HIPAA, GDPR.
- Perform risk assessments and develop remediation plans.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
HR@insightglobal.com.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
- 10+ years of security experience, with 4+ years in cloud security architecture and engineering
- Expert knowledge of AWS and Azure security architectures, cloud-native services, and security controls
- Deep expertise in cloud networking, cryptography, and security protocols (TLS, OAuth, OIDC, Zero Trust, etc.)
- Experience with Infrastructure as Code (Terraform, CloudFormation, Bicep) for secure cloud deployments
- Proficiency in automation and scripting (Python, PowerShell, Bash) for security orchestration
- Strong understanding of Kubernetes security, including Open Policy Agent (OPA), Kyverno, Kubernetes Pod Security Standards (PSS), and service mesh technologies
- Cloud Certifications, such as AWS Certified Solutions Architect - Professional, AWS Certified Security - Specialty, Microsoft Certified Azure Solutions Architect Expert, Azure Security Engineer Associate, Google Cloud Architect, CISSP, CCSP, CISM
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.