Cloud Security Architect (Hybrid)

At Broadridge, we value empowering others to accomplish more. We’re hiring a visionary Cloud Security Architect to drive the security of our AWS and containerized environments. This role combines strategic design with hands-on engineering—building and automating scalable controls that work in practice. You’ll partner with cloud, DevOps, and security teams to embed protections across identity, network, application, and data layers, including deploying and optimizing WAFs, IAM, CSPM, DSPM, and CNAP, and leveraging Infrastructure as Code and modern DevSecOps automation.

• Architect, configure, and maintain security solutions in AWS, including:

  • AWS WAF and related web application protection technologies

  • IAM roles, policies, and federation

  • CSPM and DSPM platforms for posture management and data security

  • CNAP tooling for container and workload protection

• Provision and manage security infrastructure using Terraform (modular, reusable IaC), using Git for version control.

• Develop automation in Python or Golang to streamline deployment, monitoring, and remediation processes.

• Integrate security controls into CI/CD workflows for automated guardrails and compliance enforcement.

• Continuously tune security configurations based on real-world traffic analysis, vulnerability scanning, and compliance requirements.

• Collaborate with cross-functional teams to ensure security measures align with compliance frameworks (NIST, CIS, PCI DSS, HIPAA) while maintaining operational efficiency.

• Document security configurations, operational runbooks, and troubleshooting procedures for consistent execution and knowledge sharing.

• Apply deep technical knowledge of the HTTP request lifecycle (methods, headers, status codes), TLS encryption, and certificate management to secure workloads and services.

• 5+ years in security engineering, infrastructure security, or cloud security, with 3+ years in AWS-focused roles.

• Hands-on expertise in:

  • AWS WAF configuration and rule tuning.

  • IAM (least privilege, service roles, federation).

  • CSPM/DSPM tools for posture and data protection.

  • CNAP tools for workload and container protection.

  • Cloud networking security (Transit Gateway, VPC Endpoints, PrivateLink).

  • Encryption protocols, HTTP/TLS, and API/web security.

• Strong background in Terraform and Git workflows for secure, version-controlled deployments.

• Scripting proficiency in Python or Golang for automation and integration.

• Deep knowledge of security standards and frameworks (NIST, CIS, PCI DSS, HIPAA).

• Demonstrated experience in cloud-native architectures, microservices, and operational best practices in cloud and container orchestration.

• Integration of enterprise-scale security solutions across identity, network, and workloads.

• Proficiency in full stack cloud automation using tools like Git, Terraform, Chef, and Jenkins.

• Exceptional communication skills — able to distill complex technical issues into actionable guidance for varied audiences.

• Proven ability to work independently, manage multiple priorities, and deliver results in fast-paced, high-demand environments.

• Commitment to continuous learning, staying current with emerging technologies, and adapting to evolving requirements.

• Bachelor’s degree in computer science, Information Technology, or a related field (advanced degree or certifications such as CISSP, CCSP, AWS Certified Security – Specialty preferred).

• Flexibility to be remote or hybrid.

Compensation Range: The salary range for this position is between $145,000 - $160,000 USD. Broadridge considers various factors when evaluating a candidate's final salary including, but not limited to, relevant experience, skills, and education.

Bonus Eligibility: Bonus Eligible

Benefits Information: Please visit www.broadridgebenefits.com for more information on our comprehensive benefit offerings.

All Colorado employees receive paid sick leave in compliance with the Colorado Healthy Families and Workplaces Act and other legally required benefits, as applicable. Apply by clicking the application link and submitting your information. The deadline to apply for this role is December 18th, 2025.

#LI-PP1

We are dedicated to fostering a collaborative, engaging, and inclusive environment and are committed to providing a workplace that empowers associates to be authentic and bring their best to work. We believe that associates do their best when they feel safe, understood, and valued.

Use of AI in Hiring

Broadridge may use AI-based tools to help review and evaluate applications. These tools support recruiters and hiring managers, and all employment decisions include human review to ensure fairness, accuracy, and compliance with applicable laws. Any attempt to falsify, misrepresent, or disguise information will result in disqualification.

US applicants: Please view the EEOC Know Your Rights poster. Disability Assistance: Broadridge provides equal employment opportunities to all associates and applicants. If you need assistance or reasonable accommodations, contact us at 888-237-7769 or BRcareers@broadridge.com.