Cloud Security Architect - New York, United States - Energy Jobline ZR

Description

Job Description

Job Purpose

My client has created a new role to support the adoption of cloud services as part of a modernisation strategy.

The newly established Cloud Centre of Excellence team is seeking a subject matter expert who will be responsible for design and implementation of the cloud platform in the role of Cloud Security Architect.

The role requires someone with cloud experience and knowledge to lead the security design activities for foundational cloud services such as compute, storage, networking as well as the integration points with application services and existing Group Security services including processes such as monitoring, alerting and incident response.

The person will be responsible for defining and setting up a self-service based consumption model of cloud services with enterprise ready blueprints and patterns for various cloud services such as containers, databases and application services.

The person will work closely with multiple teams within the business through an agile delivery model and represent Group Information Security (GIS) at the Architecture Review Board to ensure a comprehensive coverage of requirements and guardrails for the cloud platform across the Group.

You will also bring your experience and provide thought leadership to further evolve the technical capabilities and unlock new cloud capabilities for the business.

Core Responsibilities

Scope, design and build/integrate secure cloud services to support the Modernisation programme and deliver a scalable and flexible cloud security architecture to support and facilitate innovation for the Group's IT and Business services.

Develop and build secure network architectures patterns (e.g. hub-spoke) including ingress/egress capabilities and work with the network team to connect the cloud platform with data centres.

Support other architects to drive discussions and design decisions that will deliver scalable and manageable cloud solutions through guidance aligned to security, performance, operational and cost constraints.

Define migration strategy and integration points for central security services and processes to manage the cloud infrastructure.

Work closely with application development teams to understand product feature pipelines and their requirements from the cloud platform.

Drive automation and consistency by following the principles of Infrastructure as Code and ensuring quality of deliverables by mandating automation with multiple levels of quality and security checks built into the CI/CD pipeline.

Foster a culture of teamwork by collaborating with technical and business teams to ensure seamless coordination and deliver reliable solutions at the speed of business.

Research and leverage modern technologies to meet product, compliance and security requirements.

Evolve security operations platform for logging, monitoring, alerting and telemetry to support Standard Security Operating Practices.

Ensure that you fully understand and comply with the organisation's Risk Management Policies as they relate to your area of responsibility and demonstrate in your day to day work that you put customers at the heart of everything you do.

Ensure that you fully understand and comply with the organisation's Data Governance Policies as they relate to your area of responsibility and demonstrate in your day to day work that you treat data as an important corporate asset which must be protected and managed.

Maintain the company's compliance standards and ensure timely completion of all mandatory on-line training modules and attestations.

Experience Requirements

Demonstrable experience in Cloud Infrastructure Architecture design role designing, migrating and integrating cloud foundation services (preferably on MS Azure public cloud) is essential.

Demonstrable experience with designing and implementing secure core foundational services in a cloud infrastructure for AD, SecDevOps, Networking Services, at an enterprise level is essential.

Demonstrable experience with Cloud Infrastructure provisioning using infrastructure as code (IAC) tools such as Terraform is essential.

Demonstrable experience with integrating infrastructure test and compliance tools in the automation pipelines is essential.

Demonstrable experience in observability platforms such Elastic, New Relic and AppDynamics, etc. is essential.

Demonstrable experience in building and maintaining CI/CD pipelines for the underlying cloud infrastructure platform and/or the landing zone services is essential.

Knowledge Requirements

Robust Knowledge of the following is essential:

Principles around clean code, and understand the impact of security and scale.

Understanding of common workflows such as Git Workflow, etc.

Understanding of deployment strategies such as canary, blue green, etc.

Knowledge of (and preferably working experience in) mainstream programming .

Knowledge of IT Architecture best practices (TOGAF), standards and processes.

Skill and Competency Requirements

The following skills are essential:

Highly skilled in cloud foundation setup, setup of cloud landing zones or establishing Cloud Centre of Excellence on Pubic cloud platform (preferably MS Azure).

Highly skilled in Cloud Security and Controls and the application of internationally recognised standards such as NIST SP-800-53, CSA CCM, ISO27001, MCSB.

Highly skilled in Infrastructure as code/automation and effective self-service catalogues.

Highly skilled in DevOps pipelines, DevOps tooling and automation.

Proven ability to work with key stakeholders across various departments of an enterprise.

Proven capability in migrating and extending security and IT services to the cloud environment.

Required Qualifications/Certifications

Candidates applying for this role should have the following certifications as essential:

AWS or Microsoft Professional Certified Solutions Architect

#J-18808-Ljbffr