Cloud Architect Security
As a Senior Cloud Security Solutions Architect at XEBIA, you will work collaboratively with other architects and engineers to design, prototype and head the deployment of secure, scalable cloud architectures for enterprise clients. You will work with customers, engineering teams, product teams, OEM, and sales teams to qualify potential engagements, craft robust architectural proposals, and deliver Statements of Work (SOWs) that engineering teams can successfully execute. You will identify and develop new security-focused solutions that customers can take advantage of on Cloud. Youre also hands-on, able to conduct experiments and build functioning prototypes that prove out ideas and build confidence in the solutions you build and advocate.
Customer Facing - This is a customer-facing role. You will interact with customers on a daily basis. You will participate on calls and onsite customer meetings to qualify consultative engagements with engineering and business teams. You will present solutions, architectures, SOWs, demos, and other technical materials to build trust and confidence in XEBIAs ability to guide the customer through their cloud adoption.
Support projects from ground level up to full involved projects and be able to develop the solution at the ground level for all the needs of a new project and be able to dive into existing environments, evaluate the environment, and develop the security requirements and solutions for the various levels of projects.
Required Credentials:
Google Professional Cloud Architect Certified and/or Google Professional Cloud Security Engineer Certified, AWS Certified Security, or AZ-500: Microsoft Azure Security Technologies
Relevant Experience 8-10 years with at least 3 consecutive years on Cloud Security.
Required Qualifications
- Design a Zero Trust strategy and architecture
- Evaluate Governance Risk Compliance (GRC) technical strategies and security operations strategies
- 3rd party next-gen firewalls like PaloAlto, container and kubernetes security, secure SDL experience, risk management frameworks, FedRAMP and other regulatory frameworks, 3rd party risk management, Oauth, OpenID and SAML, continuous compliance scanning, contributions to open source projects, YARA rules, rego policy, regular expressions, etc.
- Design security for infrastructure, data and applications
- Experience with automation technologies including Terraform, Google Cloud Deployment Manager, AWS Cloud Formation, or Microsoft Azure ARM templates.
- Knowledge and experience with Cloud data protection patterns, geographic security compliance, and or industry-specific regulations
- Experience running technical design sessions, architecting and documenting technical solutions that are aligned with client business objectives, and identifying gaps between the client's current and desired end states.
- Experience strategizing, designing, architecting and managing the deployment of secure, scalable solutions on GCP, AWS or Azure.
- Experience working with engineering and sales teams to clearly identify customer requirements.
- Experience scoping and estimating time commitments needed for complex engineering tasks.
- Ability to communicate across business units and the ability to interface with and communicate complex technical concepts to a broad range of internal and external stakeholders.
- Time management skills with the ability to manage multiple streams and guide less experienced architects.
- Experience as a technical consultant or another customer-facing technical role.
- Experience building, designing, and migrating complex cloud security architectures.
- Experience with web application security, penetration testing, exploit writing, SIEM and SOAR,
- Knowledge and understanding of industry trends, new technologies and the ability to apply these to customer architectures to drive outcomes.
- Certifications from ISC2, CSA, or SANS and experience on other public cloud providers.
- Highly self-motivated and able to work independently as well as in a team environment.
- Advise infrastructure team on appropriate cloud security standards and reference architecture
- Experience with the virtual environments and the considerations when moving from hardware security solutions to next generation NFV security solutions.
- Certifications: CISSP, CISM, or other security certifications.
- Networking and routing protocols and design.
- Virtual environment development or management including OpenStack environments.
- Subject-matter expertise across all IAM topics as it relates to both cloud and on-premises enterprise technology, and the relationship between the architectures.
- Drive the adoption of Authentication and Authorization reference architectures for existing, new and emerging IAM technologies.