What are the responsibilities and job description for the Cloud Security Architect position at Techaxis, Inc?
We are looking for Cloud Security Architect
Location - Irvine, CA (hybrid)
Must Have Technical/Functional Skills
• Strong expertise in AWS cloud security architecture including IAM, KMS, GuardDuty, and CloudTrail.
• Deep understanding of AWS Landing Zone, SCPs, governance, and enterprise security guardrails.
• Experience with security for custom applications including vulnerability identification and remediation.
• Proficiency with VAPT tools such as Nessus, Qualys, Burp Suite, Fortify, and Checkmarx.
• Strong understanding of WAF, firewall management, IDS/IPS, and network segmentation.
• Knowledge of OS-level security for Windows Server 2016–2025 and RHEL 7/8/9.
• Familiarity with securing Java, .NET, TIBCO ESB, and integration-heavy workloads.
• Understanding of database security for Oracle 19c, Exadata on AWS, and SQL Server.
• Ability to apply Zero Trust, least privilege, encryption, and secure-by-design principles.
• Strong collaboration skills across infra, app, DB, network, and DevOps teams.
Roles & Responsibilities
• Lead cloud security architecture for the Data Center Exit migration to AWS EC2.
• Design and implement AWS Landing Zone security including IAM guardrails, SCPs, and logging.
• Conduct application and infra vulnerability assessments and define remediation plans.
• Implement WAF rules, firewall policies, secure segmentation, and endpoint protection.
• Validate authentication, authorization, and encryption models for all migrated workloads.
• Support secure deployment practices, code reviews, and remediation of development gaps.
• Integrate SIEM systems with AWS native security tools for continuous monitoring.
• Define and enforce cloud security baselines aligned with CIS, NIST, and ISO controls.
• Lead penetration testing cycles and coordinate mitigation activities.
• Produce security HLD/LLD, risk assessments, and operational security runbooks.
3. Cloud Experience Needed
• Hands-on experience designing secure AWS multi-account Landing Zones and guardrail policies.
• Strong understanding of EC2 security, IAM, encryption, and identity federation models.
• Integration knowledge for Oracle Exadata on AWS, SQL Server, and middleware security flows.
• Experience with AWS WAF, Shield, GuardDuty, Security Hub, and detective controls.
• Ability to design security for EKS workloads including pod/network policies and image scanning.
• Understanding of security in hybrid cloud migrations and AWS migration tooling.
Company Description:
Techaxis is a US-based firm that specializes in discovering, engaging, and placing top talent globally, for full-time or contract positions in leadership and mid to senior-level positions for companies in the technology, healthcare, energy, and education space. Techaxis Inc. is headquartered in Northern Virginia, USA. We are ranked #3294 in Inc 5000 and #105 in Inc 5000 DC Metro Series, SWaM, and WBE Certified technology talent search firm.
Equal Opportunities Employer:
Our clients provide equal opportunities to all its employees and all qualified applicants for employment, without regard to their race, caste, religion, color, ancestry, marital status, sex, age, nationality, disability, and veteran status. Employees of our client shall be treated with dignity and in accordance with their policy to maintain a work environment free of sexual harassment, whether physical, verbal, or psychological. Employee policies and practices shall be administered in a manner that would ensure that in all matters equal opportunity is provided to those eligible and the decisions are merit-based.