Lead Enterprise Cloud Security Architect

Job ID: H#12831-1 - Lead Enterprise Cloud Security Architect

PLEASE NOTE: This is a 6 month contract to hire and needs to meet Client full-time conversion policies. Those dependent on a work permit sponsor now or anytime in the future (ie H1B, OPT, CPT, etc) do not meet Client requirements for this opening.

**MUST BE Hybrid in Charlotte, NC

Role Overview: We are seeking a highly skilled and strategic Enterprise Security Architect to lead the design and governance of security architecture across a hybrid infrastructure landscape, including AWS, Google Cloud Platform, and on-premises datacenters. This role will also play a critical part in enabling secure adoption of Generative AI (GenAI) technologies and ensuring compliance with industry standards such as NYDFS, NIST, ISO 27001, and CIS.

Key Responsibilities:

Security Architecture & Strategy

• Define and maintain the enterprise security architecture framework across cloud and on-prem environments.
• Develop and enforce security principles, patterns, and reference architectures for hybrid infrastructure.
• Lead threat modeling, risk assessments, and security design reviews for new and existing systems.

Cloud Security (AWS & Google Cloud Platform)

• Architect and implement secure cloud solutions leveraging native services and third-party tools.
• Define and enforce cloud security posture management (CSPM), identity and access management (IAM), and encryption strategies.
• Collaborate with DevOps and cloud engineering teams to embed security into CI/CD pipelines and infrastructure-as-code.

Datacenter & Hybrid Security

• Ensure secure integration between cloud platforms and on-prem datacenters, including network segmentation, VPNs, and secure data flows.
• Oversee security controls for legacy systems and their modernization paths.

GenAI Security Enablement

• Define security and governance frameworks for GenAI platforms and use cases.
• Ensure responsible AI practices including data privacy, model integrity, and ethical AI usage.
• Collaborate with AI/ML teams to secure model training, inference, and deployment pipelines.

Compliance & Industry Standards

• Ensure enterprise alignment with regulatory and industry standards including:
• NYDFS Cybersecurity Regulation
• NIST Cybersecurity Framework (CSF)
• ISO/IEC 27001
• CIS Benchmarks
• Lead internal and external audits and support policy development and enforcement.

Governance & Collaboration

• Serve as a key member of the Enterprise Technology Solution Governance
• Partner with business, IT, and risk stakeholders to align security architecture with enterprise goals.
• Mentor solution architects and engineers on secure design principles and best practices.

Required Qualifications:

• Bachelor s or Master s degree in Cybersecurity, Computer Science, or related field.
• 10+ years of experience in security architecture, with a strong focus on cloud and hybrid environments.
• Deep expertise in AWS and Google Cloud Platform security services and architecture.
• Experience with GenAI platforms.
• Strong knowledge of regulatory and compliance frameworks (NYDFS, NIST, ISO, CIS).

Preferred Qualifications:

• Certifications: CISSP, CCSP, AWS Certified Security - Specialty, Google Professional Cloud Security Engineer.
• Experience with Zero Trust Architecture, SASE, and modern identity frameworks (e.g., OAuth2, OIDC).
• Familiarity with security automation, SOAR, and threat intelligence platforms.

Key Competencies:

• Strategic and analytical thinking
• Strong communication and stakeholder engagement
• Leadership and mentoring capabilities
• Proactive and solution-oriented mindset