Cloud Security Architect
Cloud Security Architect
As we expand into new international markets and scale our digital platforms in the B2B space, securing our cloud infrastructure, APIs, and services is critical. To support this growth, we require a Cloud Security Architect who can lead from the front, providing expert guidance on secure design, ensuring regulatory compliance, and aligning security with business objectives.
This role will:
Enable secure scaling of cloud and platforms, supporting business expansion with strong architectural governance.
Front-face security engagements, acting as a trusted advisor across business, engineering, and compliance teams.
Embed DevSecOps and Zero Trust principles, reducing risks early in the development lifecycle.
Strengthen SOC collaboration, improving threat detection and real-time incident response.
Ensure regulatory readiness, supporting ISO, GDPR, and local compliance needs.
By integrating this role within the core team, we ensure security becomes a business enabler, not a blocker, positioning us for secure growth and resilience in an evolving threat landscape.
Description:
Cloud Security, Architecture & Governance
Design and implement secure architectures for cloud-native platforms, including APIs, ensuring alignment with regulatory and data protection standards.
Develop cloud security governance frameworks and controls across AWS and Azure environments.
Architect secure API frameworks using OAuth, JWT, and encryption best practices.
Define and enforce cloud security monitoring strategies, integrating visibility tools and policy enforcement mechanisms.
Align architecture decisions with leading security frameworks such as NIST, ISO 27001, CIS, GDPR, and HIPAA.
Guide adoption of Zero Trust security principles across infrastructure, network zones, and workloads.
Technical Controls, DevSecOps & Secure Engineering
Embed security controls across all layers of the IT architecture stack, including network, server, storage, cloud, and endpoints.
Champion DevSecOps by integrating security into CI/CD pipelines and automating secure development practices.
Conduct threat modelling, vulnerability assessments, secure coding reviews, and integrate security into the software development lifecycle (SDLC).
Lead the implementation of technical safeguards such as firewall configurations, IDS/IPS, network segmentation, encryption, and secure configurations.
Define and deliver hardening standards for cloud and on-prem infrastructure in collaboration with engineering teams.
Security Operations, IAM & Threat Management
Contribute to the design and continuous improvement of Security Operations Centre (SOC) capabilities, aligned with SOC-CMMI models.
Drive real-time threat detection, anomaly monitoring, and incident response across cloud and production environments.
Implement identity and access management (IAM) frameworks, including role-based access control (RBAC), privileged access management (PAM), and periodic access reviews.
Coordinate with SOC and IT security teams to maintain visibility into security logs, enforce access restrictions, and detect unauthorised activity.
Support segmentation and zoning strategies to strengthen access boundaries and reduce attack surfaces.
Compliance, Assessment & Stakeholder Engagement
Ensure architectural solutions meet regulatory and audit requirements, contributing to security documentation and compliance reporting.
Lead security assessments across DevOps, AI/ML, infrastructure, and application domains, with a focus on risk identification and mitigation.
Conduct security audits and deliver compliance assurance reports to stakeholders.
Collaborate with cross-functional teams across product, compliance, risk, and IT to align security with business needs.
Support presales, business development, and internal initiatives through security advisory and architecture leadership.
Act as a trusted security advisor to senior stakeholders and participate in strategic security transformation programs.
Qualifications and Experience:
- Bachelor's or master's degree in computer science, Cybersecurity, or a related field.
- 7+ years of experience in security architecture, cloud security, and DevSecOps.
- Deep expertise in designing secure, scalable architecture for regulated industries (e.g., financial services).
- Strong knowledge of cloud platforms (AWS, Azure, GCP), container orchestration (Kubernetes, Docker), and CI/CD toolchains.
- Certifications: CISSP, CISM, AWS/Azure Security Architect, TOGAF or SABSA (preferred).
- Excellent communication and stakeholder engagement skills, with the ability to translate complex security concepts for diverse audiences.
Skills Required:
Cloud & Architecture
- Strong expertise in cloud platforms: AWS and Azure
- Experience in cloud-native security architecture and governance frameworks
- Knowledge of API security protocols: OAuth, JWT, TLS/SSL, and secure key management
- Familiarity with Zero Trust architecture and its implementation across hybrid environments
Security Engineering & DevSecOps
- Proficient in integrating security controls within CI/CD pipelines
- Proficient with secure coding practices, threat modeling, and automated vulnerability scanning tools (SAST/DAST)
- Deep understanding of network security, including firewalls, IDS/IPS, VPN, segmentation, and endpoint protection
- Ability to define and enforce technical hardening baselines across systems
Security Operations & Identity Management
- Strong understanding of SOC operations, SIEM, and SOAR platforms
- Practical knowledge of anomaly detection, incident response, and log monitoring
- Implementation of IAM, RBAC, PAM, and access certification reviews
Compliance & Risk Management
- In-depth understanding of security and privacy regulations (GDPR, HIPAA, ISO 27001, NIST, CIS)
- Experience in security assessments, compliance audits, and control testing
- Ability to translate regulatory and business requirements into actionable security controls
Soft Skills & Leadership
- Excellent communication skills (written and verbal), with the ability to engage both technical and executive audiences
- Proven ability to work across cross-functional teams (engineering, risk, compliance, product)
- Strong problem-solving and critical thinking abilities
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
