Cloud Security Pattern Architect

Overview

Hybrid
Depends on Experience
Contract - W2
Contract - 12 Month(s)

Skills

Aws
Azure
Cloud
GCP

Job Details

Role: Cloud Security Pattern Architect

Duration: 12+ Months

Location: Phoenix, AZ || Hybrid Role

Job Description-

Role Purpose

The Cloud Security Pattern Architect provides expertise to assess and certify cloud services for secure use within the organization.

The role is responsible for documenting approved security patterns and embedding them into the threat modelling platform.

This work ensures that cloud services are consistently evaluated, aligned with security and compliance requirements, and supported by reusable patterns.

Key Responsibilities

1. Cloud Service Assessment and Certification

Evaluate cloud services against internal and external security requirements and control frameworks.

Identify relevant threats, mitigations, and assurance evidence.

Support the formal certification of services by producing assessment documentation.

2. Security Pattern Development

Develop security patterns for approved cloud services and configurations.

Ensure each pattern includes defined threats, mitigations, and implementation guidance.

Structure patterns for consistency, clarity, and ease of consumption.

3. Threat Modeling Platform Integration

Model patterns in the threat modeling tool, for the target audience, maintaining data quality and traceability.

Align threat and control mappings within the tool to the organization s assurance framework.

4. Collaboration and Continuous Improvement

Work with architecture, security, and compliance teams to streamline service certification.

Review updates from cloud providers and revise patterns as required.

Provide knowledge transfer and guidance on using patterns effectively.

Required Skills and Experience

Strong understanding of cloud security architectures across AWS, Google Cloud Platform, or Azure.

Familiarity with application security and security control frameworks such as MITRE CAPEC and CWE, NIST 800-53, ISO 27001, or CIS Controls.

Practical experience in threat modeling

Ability to define and document security patterns and assurance artifacts.

Working knowledge of Infrastructure-as-Code and secure configuration practices.

Clear and structured communication skills for technical documentation and stakeholder engagement.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

About Innovise IT LLC