What are the responsibilities and job description for the Cloud Security Architect position at RecruitTalent, LLC.?
Title: Cloud Security Architect-W2
Location: Sterling, VA/Silver Spring, MD/Atlanta, GA (Only Locals)
Only USC/GC with 15 years with Media or Entertainment Domain
Job Responsibilities / Typical Day In The Role
Location: Sterling, VA/Silver Spring, MD/Atlanta, GA (Only Locals)
Only USC/GC with 15 years with Media or Entertainment Domain
Job Responsibilities / Typical Day In The Role
- Act as a Cloud Security Subject Matter Expert (SME) for WBD’s Infosec department.
- Identify opportunities to reduce cloud security risk for WBD, to solution, and to lead implementations.
- Create design artifacts to enable members of the Cloud Security team to implement solutions (built in-house or purchased from vendor).
- Partner with product teams to design secure network and serverless architectures.
- Provide strong IAM Policy guidance for least privileged access to product teams.
- Review cloud architecture and AI/ML workflows to advise development teams on strong security design principles and identification of issues prior to deployment of systems or features.
- Interface with Public Cloud providers to improve the security feature set of their products.
- Interface with cloud security vendors to evaluate features and determine proof-of-value.
- Mentor junior members of the team.
- Create and maintain documentation as it relates to cloud security designs/configurations, processes, standards, and recommendations.
- Collaborate with senior management and department leaders to assess near- and long-term cloud security needs.
- Stay current with the latest cloud threat mitigation tools and techniques
- Experience with securing/building Azure cloud environments
- Proficient in at least one scripting language (python, Nodejs, Golang).
- Core understanding of IP Networking, routing, VPNs.
- Hands-on experience with some the following:
- Security administration in Azure
- Developing & Securing Serverless applications
- Infrastructure as code tools (Terraform, CloudFormation, Ansible)
- Command Line experience (Bash, Powershell, AWS-CLI)
- Docker and Kubernetes
- Cloud Network (VPC) engineering
- Cloud native security related tools (Azure Defender for Cloud, AWS Guard Duty, GCP Security Center, WAF)
- GitHub Security
- Experience Designing and Implementing systems that support multiple users.
- 2 years of experience; Design, Implementation, and Maintenance of systems used by users.
- The ability to evaluate technical documentation and diagrams for cloud environments and identify security issues in those designs.
- 2 years of experience; Security Architectural Reviews and ability to create design artifacts – including infrastructure diagrams.
- Ability to review technical configuration and identify mitigating controls for security related misconfigurations
- 2 years; Experience Managing Exception Requests
- AWS Certifications – AWS Solutions Architect, AWS Security Specialty
- GCP Certifications – Associate Cloud Engineer, Professional Security Engineer
- Security Engineer Certifications – CISSP, CompTIA Security
- Previous Experience with Wiz, Splunk, Brinqa, integrations with Slack and Jira
- Strong understanding of cloud-based infrastructure components with a specific understanding of the security risks presented in a decentralized and hybrid environment.
- Broad understanding of information security and compliance risk, and how those apply to Public Cloud.
- Comfortable automating processes start to finish and can work closely with cloud solutions engineering and product teams to help integrate security into their existing processes.
- Excellent verbal and written communication skills with a strong attention to detail.
- Remains productive while rapidly switching context.
- Has a thirst for knowledge and is constantly driven to stay current with evolving threat landscapes.
- Bachelor’s degree in computer science, Information Security, or related field.
- Azure Certifications – Azure Fundamentals, Solutions Architect