Overview
Skills
Job Details
Role: Cloud Security Architect/Wiz Architect
Exp:12+
JD:
Conduct in-depth evaluations of cloud security posture, identify Gaps and establish an actionable strategy / roadmap to remediate potential risks. Proven ability to enhance security posture by leveraging WIZ Advanced (Wiz Cloud)
Experience with defining and configuration of policies/rules using WIZ Advanced
Experience in Wiz cloud integration with cloud native workloads including containers, serverless functions for cloud native workload protection
Experience in fine tuning security graphs and cloud events using Wiz platform
Working experience in Vulnerability Governance, risk-based prioritization of vulnerabilities and Remediation consulting for cloud security vulnerabilities
Design and oversee the implementation of secure, scalable cloud architectures aligned with industry standards such as CSA Cloud Controls Matrix, NIST Cybersecurity Framework, and ISO 27001. Knowledge to map deployed controls and policies with cloud security control frameworks and standards,
Design Public/Private/Hybrid Cloud Security solutions integrating public cloud into traditional hosting/ delivery models
Design and implement cloud security controls across all the security domains (Network, Identity and Access, Vulnerability, Environment Governance, Monitoring and Data Privacy) within AWS and Azure Oversee the development of automation scripts to streamline security operations, improve system reliability, and enhance monitoring capabilities.
Successfully led strategic cloud security consulting initiatives, collaborating with senior client security leadership to develop and implement security strategies.
Minimum 12+ years of experience, with at least 5+ years in cloud security roles.
Proven experience in designing and implementing secure cloud environments, including Landing Zone implementations with guardrails and native controls.
Deep understanding and hands-on experience of cloud security controls and the ability to leverage advanced security tools like CNAPP, CIEM, and CWPP etc. (e.g.: Palo Alto Prisma, WIZ)
Experience on AWS and Azure platform, with security controls like CSPM (Microsoft Defender for Cloud / Security Hub), CNAPP, EDR (Microsoft Defender CWPP), Key Vault, DDoS (Azure DDoS/ AWS
Chiold) Conurity Ground VND_Cirowall SASE Secure Web Cotoway Convertone Sonurity oto Search
Proven experience in designing and implementing secure cloud environments, including Landing Zone implementations with guardrails and native controls.
Deep understanding and hands-on experience of cloud security controls and the ability to leverage advanced security tools like CNAPP, CIEM, and CWPP etc. (e.g.: Palo Alto Prisma, WIZ) Experience on AWS and Azure platform, with security controls like CSPM (Microsoft Defender for Cloud/ Security Hub), CNAPP, EDR (Microsoft Defender CWPP), Key Vault, DDoS (Azure DDOSA Shield), Security Groups, VNP, Firewall, SASE, Secure Web Gateway, Serverless Security, etc.
Knowledge of cloud security controls including tenant isolation, encryption at rest, encryption in transit, key management, vulnerability assessments, application firewalls, SIEM, etc. Understanding in Terraform, Ansible, Chef, or similar tools, with the ability to guide teams in automation practices for cloud security.
Knowledge on Implementation of Zero Trust principles to minimize the attack surface and protect sensitive data in multi-cloud environments
Preferred
Knowledge of Automation, scripting Cloud Formation/ Terraform, and DevSecOps
Experience with multiple platforms including AWS and Azure
Industry-recognized certifications such as AWS Certified Security Specialty, Azure Solutions Architect Expert, CCSP.
Others Skills:
Managing Customer stakeholders and participating in business meetings with various stakeholders High customer orientation
Excellent verbal and written communication skills
Establish dashboards and reports for Executive reporting
Leadership skills to manage and motivate diverse, high-performance teams.