Overview
Skills
Job Details
Job at a Glance
Title: Principal Solutions Architect III – Cloud Security
Location: Hybrid – Allentown, PA; Louisville, KY; or Providence, RI
Schedule: On-site three days per week
Duration: 12 months (with potential for extension)
Responsibilities
Design and implement secure cloud architectures across AWS, Azure, and Google Cloud Platform.
Conduct regular security assessments and ensure compliance with frameworks (NIST, CIS).
Lead incident response for cloud environments and contribute to tabletop exercises.
Collaborate with developers and DevOps teams to ensure secure CICD and IAC best practices.
Ensure user access and privileged account management to cloud resources is aligned to industry best practices and frameworks.
Provide input to GRC teams on cloud security policies and IAM standards.
Perform security reviews of cloud architecture, infrastructure, and applications; identify gaps, develop a security risk management plan, and execute strategies to mitigate or address identified risk.
Manage CSPM and Container Security technologies.
Serve as a Subject Matter Expert on Cloud Security related topics, best practices, emerging technologies, and the evolving threat landscape.
Identify and apply strategies to optimize resource utilization and minimize cost.
Provide guidance, coaching, and support in the development of junior staff members.
Perform other duties as assigned.
Comply with all policies and standards.
Required Education:
Bachelor’s Degree in Computer Science, Information Security, or a related field, or an equivalent combination of education and experience on a year-for-year basis.
Required Experience:
Minimum of 10+ years of direct cybersecurity cloud experience in the configuration and support of cloud applications and infrastructure.
Experience in the configuration and support of Microsoft 365 services, including:
Microsoft Endpoint Manager – Intune and Configuration Manager
Microsoft Defender for Cloud
Microsoft Identity and Access – Microsoft 365 Active Directory/Entra and ADFS
Understanding of modern cloud technology components and deployment patterns: virtual machines, containers, Kubernetes, serverless, and infrastructure as code.
Demonstrated knowledge of Azure architecture and core services such as Virtual Machines, Group Policy, MFA, Azure Active Directory, Management Groups, Resource Groups, Azure Regions, Azure Functions, Azure Networking, Azure IPsec Connections, Network Security Groups, Azure VDI, and Firewalls.
Experience with DevOps and building CI/CD pipelines to support application and infrastructure deployments.
Scripting and programming skills in PowerShell or Azure CLI for automation.
Knowledge of network architectures, including VNETs, subnets, VPNs, and ExpressRoute, along with an understanding of Azure security tools and features such as Azure Active Directory, Network Security Groups, and Azure Key Vault.
Strong leadership, communication, and interpersonal skills.
Collaborative and effective in cross-functional team environments.
Strong analytical skills to assess risks and vulnerabilities in complex systems.
Preferred Qualifications:
Knowledge of programming languages such as Python, .NET, or Java.
Demonstrated working knowledge of various enterprise technology stacks used to build services in the cloud.
Practical experience in security testing within cloud platforms, particularly Azure.
Proficiency in scripting and automation for security testing.
Knowledge of Azure configuration best practices.
Certifications such as:
M365 Security
Microsoft Azure Administration Associate (AZ-104)
Microsoft Azure Network Engineer Associate
Microsoft Azure Security Engineer Associate (AZ-500)
About the Client
The client is an established energy and utility provider committed to innovation, modernization, and maintaining strong cybersecurity practices across its technology platforms. The team values collaboration, operational excellence, and the implementation of secure, scalable cloud solutions that support enterprise growth and reliability.
#INDGEN #ZR