Job Description :
Role : Cybersecurity Architect
Location: Remote
Only on w2
· Cybersecurity Architect – Duration: ~3 months; Minimum Experience: 5 years as Cybersecurity Architect or similar experience in a software security role
o Experience working on infrastructure projects across cloud, compute, network, and/or storage towers
o Hands-on experience working in Cloud (AWS and/or Azure) and with related infrastructure.
o Experience with software development practices, techniques, and tools.
o Knowledge of and experience with various operating systems, platforms, technologies, programming languages, security tools, etc.
o Ability to document work products, processes, procedures, and architecture diagrams effectively, especially against a formalized framework of controls.
o Experience with security best practices and deep understanding of cloud risks and risk management and assessment of cloud resources and events.
o Experience using at least one programming scripting language (e.g., Python) for automations, serverless code, and API consumption.
o High level familiarity and/or experience in developing of CI/CD pipelines and using common CI/CD tools and technologies native to cloud or other industry standards.
o Experience in using source control systems and hosting tools like Git and GitHub.
o Familiarity with audit practices and ability to guide teams in generating audit ready evidence for security control implementation in applications and infrastructure.
Resource Qualifications
Basic Qualifications:
- Communication Skills
- Ability to work independently and communicate the technical and security-related issues to client / business stakeholders.
- Ability to communicate in an organized and knowledgeable manner in both written and verbal formats. This includes delivering clear requests for information to users and communicating technical information to non-technical audiences.
- Ability to communicate consistently and drive objectives, relying on fact-based decisions about risk that improve the trade-off between risk mitigation and business performance.
- Good presentation, project management, facilitation, and delivery skills.
- Ability to create documentation of work and present to management.
- Cloud / Security Skills
- Understand cloud services and concepts, such as AWS GuardDuty, Azure Policies, AWS Config, PaaS Database, AWS Lambda, and IAM services.
- Understand cloud networking concepts and architecture and services, such as AWS Firewall, Network Security Groups (NSG), and Internet Gateways.
- Ability to troubleshoot and develop solutions to complex issues, which may include, but are not limited to, Cloud architecture, security alerts, log monitoring, and cloud and serverless infrastructure.
- Deep understanding of cloud security technologies and cloud-based solutions.
- Deep understanding of cloud risks and risk management and assessments.
- IT Processes Skills
- Understand change and configuration management processes and ability to strictly adhere to them.
- Understand exception management process for cloud controls and guardrails.
- Deep understanding of asset management, specifically cloud assets/resources.
- Strong Critical Thinking Skills
- Ability to identify and analyze current processes including bottlenecks, concerns, etc. and then act upon them and effectively justify those actions.
- Ability to identify future roadblocks and promote data-based problem solving.
- Ability to assess and prioritize problems in relation to organizational goals.
- Ability to effectively apply analytical and problem-solving capabilities.
- Additional Skills
- Strong understanding of privacy, security, and other regulations that are applicable to GEA.
- Understand security controls framework like NIST, CIS, and ISO.
- Ability to remain flexible in a demanding work environment and adapt to rapidly changing priorities.
- Strong time management, prioritization, and attention to detail.
- Possess and exhibit a high level of integrity and ethics.
- Ability to articulate technical details through well-documented artifacts.
Desired Qualifications:
- Certifications in the following or similar are considered nice to have:
- AWS Solution Architect, Developer, or DevOps Certifications
- Azure Architect or Administrator Certifications
- CISSP, Security+, or similar
- Knowledge of existing technologies that will be impacted by this initiative:
- AWS and Azure
- Network, Storage, Application, Compute Infrastructure
- Compliance frameworks such as NIST 800-171, CMMC, SOX, etc.
- Integrations / Automations
- CSPM tools (e.g., Prisma, Wiz)