Cloud Security Architect

Remote • Posted 3 hours ago • Updated 3 hours ago
Full Time
No Travel Required
Remote
Depends on Experience
Fitment

Dice Job Match Score™

⏳ Almost there, hang tight...

Job Details

Skills

  • Cybersecurity with at least 3+ years focused on cloud security in AWS.Hands-on expertise in AWS services (VPC
  • EC2
  • EKS
  • S3
  • IAM
  • CloudTrail
  • KMS
  • GuardDuty)
  • Kubernetes security
  • and Infrastructure-as-Code security (Terraform).

Summary

NO SPONSORSHIP AVAILABLE. ONLY APPLY IF YOU CAN WORK DIRECTLY WITH THE CLIENT.

We are seeking an experienced Cloud Security Architect to lead the design and implementation of secure cloud infrastructure across our AWS-based environments. This role will focus on securing network boundaries, containerized workloads (such as Kubernetes and Amazon EKS), cloud-native data storage (e.g., S3), and overall cloud infrastructure components. You will serve as the security expert in cloud architecture projects, ensuring all designs align with best practices and compliance requirements.

Required
  • Bachelor's or Master's degree in Computer Science, Information Security, or related field, or equivalent professional experience.
  • 7+ years of experience in cybersecurity with at least 3+ years focused on cloud security in AWS.
  • Hands-on expertise in AWS services (VPC, EC2, EKS, S3, IAM, CloudTrail, KMS, GuardDuty), Kubernetes security, and Infrastructure-as-Code security (Terraform).
Preferred
  • Cloud Security Certifications: AWS Certified Security Specialty, AWS Certified Solutions Architect, Certified Kubernetes Security Specialist (CKS), CISSP, SA.
  • Multi-Cloud Security Experience: Experience securing workloads across AWS, Azure, and Google Cloud Platform with understanding of platform-specific security implications.
  • Zero Trust Architecture: Familiarity with Zero Trust principles, identity-aware access policies, microsegmentation strategies, and secure service-to-service communication.

CORE WORK ACTIVITIES

  • Designs and maintains secure architectures for cloud infrastructure in AWS, AliCloud, and any cloud Client operates in, defining security reference architectures and guardrails for services like VPC, subnets, security groups, and IAM roles.
  • Implements and validates network segmentation, ingress/egress controls, and virtual firewall configurations for cloud infrastructure components (EC2, ALB/NLB, Route 53, VPCs, Transit Gateways).
  • Secures containerized workloads in Amazon EKS or self-managed Kubernetes clusters, defining security controls including RBAC, network policies, pod security standards, and image scanning.
  • Collaborates with DevOps and platform teams to integrate security into CI/CD pipelines and container registries.
  • Ensures secure configuration of cloud-native storage solutions (S3, EBS, EFS), implementing encryption, logging, access control, and data classification.
  • Evaluates and enforces policies around public access, bucket-level permissions, and data loss prevention for cloud-stored data.
  • Ensures cloud solutions comply with internal policies and external regulatory requirements (ISO 27001, SOC 2, HIPAA, GDPR).
  • Contributes to threat modeling, risk assessments, and architecture review processes for new and existing workloads.
  • Defines and implements logging and monitoring strategies using CloudTrail, GuardDuty, Security Hub, and container-level telemetry.
  • Collaborates with Security Operations and Incident Response teams on alerts and forensic readiness.
  • Conducts security and privacy technology research, assessments, and integration processes; provides and supports prototype capabilities.
  • Consults with customers to gather and evaluate functional requirements and provides security and privacy requirements, guidelines, and standards.
  • Provides sound advice and recommendations to leadership and staff on cloud security topics, translating technical security risks into business impact.
  • Manages and measures information security implications within the organization, including strategic planning, risk management, and security awareness.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
  • Dice Id: 10451973
  • Position Id: 9019118
  • Posted 3 hours ago
Create job alert
Set job alertNever miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Remote

5d ago

Easy Apply

Contract

80 - 85

Remote or Denver, Colorado

21d ago

Full-time

USD 130,000.00 - 170,000.00 per year

Remote or Houston, Texas

21d ago

Full-time

Remote or Chicago, Illinois

21d ago

Full-time

USD 130,000.00 - 170,000.00 per year

Search all similar jobs