Job Description: Security Architect Hybrid Cloud (AWS & Azure)
Location: Sacramento, CA-Hybrid

Employment Type: Contract

Experience: 12-15 years

Job Summary:

We are seeking a highly skilled and experienced Security Architect with a strong background in security assessment, remediation planning, and cloud security architecture. The ideal candidate will have 12 15 years of experience in security engineering and architecture, with proven expertise in designing and implementing security solutions in hybrid cloud environments (AWS and Azure). Must hold active CISSP and CCSP certifications.

Key Responsibilities:

• Lead end-to-end security architecture design and implementation across hybrid environments (AWS, Azure, and on-premises).
• Conduct security gap assessments for infrastructure, applications, and cloud environments.
• Develop and drive remediation plans for identified security risks and compliance gaps.
• Collaborate with engineering, DevOps, and business teams to ensure secure design and operations.
• Define and enforce security standards, policies, and reference architectures.
• Evaluate existing environments and propose improvements aligned to best practices (e.g., NIST, ISO 27001, CIS benchmarks).
• Implement and manage cloud-native and third-party security tools for threat detection, identity and access management (IAM), encryption, and logging.
• Provide subject matter expertise in cloud security, identity and access management, encryption, SIEM/SOAR, and secure application development.
• Support audit and compliance activities (e.g., SOC 2, HIPAA, GDPR, etc.) with technical security evidence and documentation.
• Lead or support incident response efforts, root cause analysis, and corrective actions.
• Mentor junior security engineers and architects.

Required Qualifications:

• 12 15 years of progressive experience in IT Security, with at least 5 years in cloud security architecture.
• Deep understanding of AWS and Azure security services, architectures, and shared responsibility models.
• Proven experience conducting security assessments and audits across hybrid infrastructures.
• Strong knowledge of network security, IAM, encryption, endpoint protection, SIEM/SOAR, and application security.
• Hands-on experience with tools like AWS Security Hub, Azure Defender, Prisma Cloud, Tenable, CrowdStrike, Splunk, etc.
• Experience working with compliance frameworks such as NIST, ISO 27001, SOC 2, and CIS.
• Excellent communication skills with ability to present technical solutions to business stakeholders.

Certifications:

Mandatory:

• CISSP (Certified Information Systems Security Professional)
• CCSP (Certified Cloud Security Professional)

Nice to Have:

• CISM, AWS/Azure Security Specialty, TOGAF

Preferred Attributes:

• Strong problem-solving and strategic thinking skills.
• Ability to work independently in a cross-functional team.
• Passion for security innovation, continuous learning, and automation.
• Experience in agile/DevSecOps environments.