Cloud Cybersecurity Architect

Cloud Security Architecture

Design and implement secure architecture patterns and controls across Azure, AWS; and understand enforcement mechanisms through Cloud Security Posture Management

Support secure migration and re-platforming of on-premise environments to cloud ecosystems

Develop guardrails and hardening guidelines for IaaS, PaaS, and SaaS workloads

Define and oversee cloud-native security controls - Azure Defender, AWS Security Hub

Deploy Cybersecurity Operations toolsets and hardening standards to all environments

Collaborate with Application and Network Teams to configure Web Application Firewall (WAF) Technology to enforce security principles

Define and enforce WAF and traditional Network Firewall Rules

Support of Identity & Access Management efforts, including Role-Based Access Control (RBAC), Privileged Identity Management (PIM), and Privileged Access Management (PAM)

Collaboration & Enablement

Participate in Application Design and Development processes to provide security input and oversight from conception

Partner with application development and infrastructure teams to embed security into CI/CD pipelines and DevOps processes

Provide guidance and recommendations on remediation of vulnerabilities and misconfigurations identified from vulnerability assessment and posture management tools (e.g. vulnerability scanners, SAST, DAST, CSPM

Serve as a trusted advisor on cloud security issues across the enterprise

Security Engineering & Automation

Support the secure adoption of automation tools as part of a movement towards DevSecOps using Infastructure as Code (IaC)

Evaluate and integrate security tools throughout the enterprise ecosystems

Support ingestion of logs into central SIEM for proactive monitoring and threat detection

Conduct proactive threat hunting in cloud environments to identify and mitigate advanced threats

Participate in Incident Response & Threat Modeling as part of normal job operations

Collaborate with the SOC and incident response teams to investigate and mitigate threats

Perform security reviews, threat modeling, and risk assessments for new and existing cloud services

Actively participate in Incident Response, Business Continuity, and Disaster Recovery exercises and as needed if one should occur

Governance, Risk & Compliance

Ensure adherence to well architected frameworks and regulatory requirements (e.g., NIST, CIS, HIPAA, FedRAMP, SOC 2) and company-specific policies

Support audits and compliance initiatives

Security Awareness & Mentorship

Educate and mentor engineering and operations teams on secure architecture principles and emerging threats

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

Industry-recognized security certifications such as Security+ and/or CCSP
8+ years of experience in information security, including 3+ years in a cloud security architecture role
Hands-on experience with major cloud platforms, including Azure and AWS; multi-cloud experience strongly preferred
Strong expertise in cloud-native security services, identity and access management (IAM), encryption and key management, and network security
Proven ability to design and secure solutions across on-premises infrastructure and SaaS-based environments
Experience with SIEM and SOAR technologies, CSPM, CWPP, IAM, and PAM solutions
Hands-on experience configuring and managing network security controls, including Web Application Firewalls (WAF) and firewall configurations
Strong collaboration skills with Infrastructure Architects, Cloud Architects, and Engineering teams to design and implement secure solutions

Familiarity with Infrastructure as Code tools, container security, and API security
Deep understanding of regulatory frameworks and security standards (e.g., NIST, SOC 2, FedRamp, HIPAA, PCI-DSS)
DevSecOps tooling experience, including experience such as:
Azure DevOps, Veracode, Github
Strong written and verbal communication skills with the ability to explain complex security topics to technical and non-technical stakeholders

Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.