Cloud Security Architect

General Description

The Cloud Security Architect is responsible for the security architecture and solution designs across multiple cloud service providers. Designs cloud security architecture for public clouds and define architecture principles and patterns for cloud service models, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS).

Essential Duties and Responsibilities

• Responsible for securing the organization's assets in the cloud IAW governance laws, regulatory compliance, and Popular's standards
• Designs and develops the cloud security infrastructure and cloud services
• Responsible for development and validation of cloud security policies, standards, and best practices
• Responsible for development of the cloud architecture strategy, establishing governance, facilitating adoption and execution
• Researches emerging cloud security solutions assess the relevance and potential value to the organization and presents information to senior management and peers
• Responsible for the development of the cloud security roadmap
• Embeds cloud security capabilities into organizational-level business requirements and initiatives
• Cross-pollinate and works closely with all domain architects to ensure cloud security requirements are adopted to all cloud solutions and proposals
• Participates in the Center of Excellence Council and ensures cloud security requirements are implemented to all cloud solutions and initiative

Minimum Education

Bachelor's Degree in Computer Science or related fields

Experience

• 6+ years of relevant IT experience combined with Security engineering and architecture experience in a complex technology environment and 2+ years working with public cloud platforms
• Experience in working in complex public cloud infrastructure, platform, and software services (AWS, GCP, Azure, Salesforce, etc.) and experiences in working with home-grown, CSP-native, and third-party technology solutions such as AWS Security Hub, Azure Sentinel, Azure AD, HashiCorp Vault, etc.
• Experience in risk-based authentication and Azure AD MFA
• Experience in AWS/salesforce/cloud security tools/solutions such as AWS WAF, AWS Secrets Manager, AWS Config, HashiCorp Vault, Salesforce Shield.
• Software development methodologies and secure coding practices and experience with data center operations
• Expertise managing the application delivery process and experience in financial services/banking,

Preferred Certifications (1 or more):

• CompTIA Cloud+
• AWS Certified Solutions Architect Associates, or Professional
• Microsoft AZ 303, or 304
• Certified Cloud Security Professional (CCSP)