Cloud Security Architect

Cloud Security Architect

Allied Resources is seeking a Cloud Security Architect to lead the design, implementation, and protection of enterprise cloud infrastructure across Microsoft Azure, AWS, and other major platforms. This role will serve as a key technical resource within the cybersecurity organization, partnering closely with Cloud Engineering, DevOps, and Governance teams to ensure secure, compliant, and cost-efficient cloud operations.

Key Responsibilities:

• Design and implement secure cloud architectures across Azure, AWS, and GCP environments.
• Perform cloud security assessments and ensure compliance with industry standards (NIST, CIS).
• Lead incident response and participate in tabletop exercises for cloud-related events.
• Collaborate with developers and DevOps teams to secure CI/CD and Infrastructure-as-Code (IaC) processes.
• Manage identity, access, and privileged account controls across multi-cloud environments.
• Oversee and maintain CSPM and container security solutions.
• Provide architectural guidance and mentoring to cloud and cybersecurity teams.
• Optimize cloud resource utilization and cost management strategies.
• Serve as a Microsoft cloud security subject matter expert, staying up to date on new technologies and threats.

Required Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience).
• 10 years of cybersecurity experience with direct support of cloud infrastructure and applications.
• Strong hands-on expertise in:
• Microsoft Azure (Virtual Machines, NSGs, Azure AD/Entra ID, Defender for Cloud, Intune, Azure Functions, Firewalls, etc.)
• Microsoft 365 Security & Administration (Endpoint Manager, ADFS, Conditional Access, MFA).
• AWS security configuration and compliance tools.
• Solid understanding of modern cloud technologies – containers, Kubernetes, serverless, IaC, automation.
• Scripting proficiency in PowerShell or Azure CLI.
• Knowledge of network architectures (VNETs, VPNs, ExpressRoute) and cloud-native security features.

Preferred Qualifications:

• Experience with Python, .NET, or Java for automation or testing.
• Hands-on experience performing cloud security testing and configuration audits.
• Familiarity with Azure configuration best practices and DevSecOps pipelines.
• Relevant certifications, such as: Microsoft 365 Security Administrator, Microsoft Azure Administrator (AZ-104), Microsoft Azure Network Engineer Associate, Microsoft Azure Security Engineer Associate (AZ-500)

Allied Resources complies with all Equal Employment Opportunity (EEO) affirmative action laws and regulations. Allied Resources does not discriminate on the basis of age, race, religion, color, sex, national origin, marital status, genetic information, sexual orientation, gender Identity and expression, disability, veteran status or other status protected by law.