Cloud Security Architect

Insight Global is looking for a Cloud Security Architect based in Canada on a remote basis to join a large HCM client on a 6 month contract. The successful candidate will join the product security team and will provide architectural guidance for the implementation of a CNAPP tool. You’ll drive CNAPP implementation, harden our Azure and AWS footprint, embed security into CI/CD and Terraform workflows, and drive our journey toward FedRAMP, PBMM, and other government-related compliances. Previous experience working as a cloud security architect, implementing/integrating CNAPP tools in multiple environments, and a self-starter mentality is crucial to succeed in this role.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

- 10+ years of experience working in cybersecurity engineering and 3+ years experience in cloud security architecture
- 3+ years in CNAPP working with tools such as Wiz, Defender for Cloud, or Prisma
- Experience with integrating DevSecOps/CI/CD into CNAPP
- Experience with integrating IaC terraform scripts into CNAPP
- Experience with policy architecture and engineering - designing & implementing cloud security policies (Azure Policy initiatives; OPA/Sentinel policy-as-code) and mapping to frameworks (NIST, CIS, FedRAMP).
- Experience with Azure security (Entra ID/AAD, RBAC, networking, Key Vault, monitoring).
- Experience with Azure and/or AWS cloud services.
- Experience securing Kubernetes containers/clusters in CNAPP
- Familiarity with US/Canadian security requirements to ensure compliance including NIST 800-53 and CIS framework
- Experience writing scripts in Rego or Python within CNAPP to create security policies
- Excellent communication skills, self-starter mentality, and ability to translate technical requirements to business stakeholders

- Microsoft AZ-500, SC-100, SC-200 certifications strongly preferred.
- One of the security certifications, such as CISSP or CCSP.
- DevOps experience with infrastructure, cloud, and application pipelines.
- Hands-on experience with container and image scanning; SAST, DAST; and penetration testing tools.
- Knowledge of large language models (LLMs) and hands-on experience designing and building generative-AI–powered agents.

Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.