Cloud Security Architect - New York, United States - Energy Jobline ZR
Description
Job DescriptionJob Purpose
My client has created a new role to support the adoption of cloud services as part of a modernisation strategy.
The newly established Cloud Centre of Excellence team is seeking a subject matter expert who will be responsible for design and implementation of the cloud platform in the role of Cloud Security Architect.
The role requires someone with cloud experience and knowledge to lead the security design activities for foundational cloud services such as compute, storage, networking as well as the integration points with application services and existing Group Security services including processes such as monitoring, alerting and incident response.
The person will be responsible for defining and setting up a self-service based consumption model of cloud services with enterprise ready blueprints and patterns for various cloud services such as containers, databases and application services.
The person will work closely with multiple teams within the business through an agile delivery model and represent Group Information Security (GIS) at the Architecture Review Board to ensure a comprehensive coverage of requirements and guardrails for the cloud platform across the Group.
You will also bring your experience and provide thought leadership to further evolve the technical capabilities and unlock new cloud capabilities for the business.
Scope, design and build/integrate secure cloud services to support the Modernisation programme and deliver a scalable and flexible cloud security architecture to support and facilitate innovation for the Group's IT and Business services.
Support other architects to drive discussions and design decisions that will deliver scalable and manageable cloud solutions through guidance aligned to security, performance, operational and cost constraints.
Work closely with application development teams to understand product feature pipelines and their requirements from the cloud platform.
Drive automation and consistency by following the principles of Infrastructure as Code and ensuring quality of deliverables by mandating automation with multiple levels of quality and security checks built into the CI/CD pipeline.
Foster a culture of teamwork by collaborating with technical and business teams to ensure seamless coordination and deliver reliable solutions at the speed of business.
Evolve security operations platform for logging, monitoring, alerting and telemetry to support Standard Security Operating Practices.
Ensure that you fully understand and comply with the organisation's Risk Management Policies as they relate to your area of responsibility and demonstrate in your day to day work that you put customers at the heart of everything you do.
Ensure that you fully understand and comply with the organisation's Data Governance Policies as they relate to your area of responsibility and demonstrate in your day to day work that you treat data as an important corporate asset which must be protected and managed.
Experience Requirements
Demonstrable experience in Cloud Infrastructure Architecture design role designing, migrating and integrating cloud foundation services (preferably on MS Azure public cloud) is essential.
Demonstrable experience with designing and implementing secure core foundational services in a cloud infrastructure for AD, SecDevOps, Networking Services, at an enterprise level is essential.
Demonstrable experience with integrating infrastructure test and compliance tools in the automation pipelines is essential.
Demonstrable experience in observability platforms such Elastic, New Relic and AppDynamics, etc. is essential.
Demonstrable experience in building and maintaining CI/CD pipelines for the underlying cloud infrastructure platform and/or the landing zone services is essential.
Robust Knowledge of the following is essential:
Principles around clean code, and understand the impact of security and scale.
Understanding of common workflows such as Git Workflow, etc.
Understanding of deployment strategies such as canary, blue green, etc.
Knowledge of (and preferably working experience in) mainstream programming .
Knowledge of IT Architecture best practices (TOGAF), standards and processes.
Skill and Competency Requirements
The following skills are essential:
Highly skilled in cloud foundation setup, setup of cloud landing zones or establishing Cloud Centre of Excellence on Pubic cloud platform (preferably MS Azure).
Highly skilled in Cloud Security and Controls and the application of internationally recognised standards such as NIST SP-800-53, CSA CCM, ISO27001, MCSB.
Highly skilled in DevOps pipelines, DevOps tooling and automation.
Proven ability to work with key stakeholders across various departments of an enterprise.
Proven capability in migrating and extending security and IT services to the cloud environment.
Required Qualifications/Certifications
Candidates applying for this role should have the following certifications as essential:
AWS or Microsoft Professional Certified Solutions Architect
#J-18808-Ljbffr