Lead Security Architect

Lead Security Architect

Requirements

• Bachelor’s degree in Computer Science, Information Security, or a related field.
• Minimum of 8 years of experience in cloud security engineering, with extensive focus on AWS and security compliance frameworks such as FedRAMP.
• Proven expertise in assessing and mitigating security risks in complex cloud environments.
• In-depth experience with cloud platforms, particularly AWS, and security practices across multi-cloud environments.
• Mastery of FedRAMP, NIST standards, and AWS security controls.
• Deep knowledge of cloud security architectures, identity and access management, data protection, and security monitoring tools.
• Proficiency in automation and IaC tools like Terraform, Kubernetes, and scripting languages (e.g., Python, Bash).
• Strong communication skills to articulate complex security issues to both technical and non-technical stakeholders.
• Excellent analytical, problem-solving, and project management abilities.
• Ability to work effectively in both team settings and independently.

Responsibilities

• Lead the development and implementation of cloud security strategies for AWS, aligning with industry best practices and regulatory standards.
• Partner with cross-functional teams to integrate security into the core of our infrastructure and application deployments.
• Serve as a security subject matter expert, providing guidance on secure architecture patterns and best practices for cloud-native applications and services.
• Conduct comprehensive security assessments for AWS services, leveraging the NIST SP 800 series and other relevant frameworks.
• Identify, prioritize, and mitigate risks across AWS environments, with a focus on proactive vulnerability management and continuous monitoring.
• Collaborate with engineering teams to integrate security risk management practices, leveraging frameworks such as Risk Management Framework(RMF) to enhance ThousandEyes’ security posture.
• Ensure all systems and services comply with FedRAMP requirements.
• Respond to technical inquiries and provide expert advice on FedRAMP compliance.
• Collaborate with external auditors during FedRAMP reviews and audits, providing precise and detailed responses.
• Develop and maintain security controls for AWS environments, including access control, encryption, network security, and identity management.
• Use Infrastructure as Code (IaC) tools like Terraform and Kubernetes to automate security configuration and compliance checks, ensuring cloud infrastructure is secure by design.
• Deploy monitoring solutions to enhance visibility into security events and streamline compliance reporting, including FedRAMP requirements.
• Ensure continuous compliance with FedRAMP, FIPS, and other relevant standards by establishing processes for regular audits, assessments, and reporting.
• Engage with auditors and regulatory bodies to provide documentation and responses related to cloud security compliance.
• Stay updated on the latest security threats, vulnerabilities, and emerging trends in cloud security to continuously improve security controls and practices.
• Provide technical mentorship to engineering teams, empowering them to implement security best practices within their code and deployments.
• Serve as an advocate for security throughout the organization, driving security awareness, training, and engagement.
• Collaborate closely with cross-functional teams to ensure security is embedded throughout the software development lifecycle.

Preferred Qualifications

• Advanced knowledge of AWS security services and tools, including AWS Security Hub, AWS WAF, and GuardDuty.
• Advanced scripting skills for security automation.
• Relevant certifications such as AWS Certified Security – Specialty, CISSP, or equivalent.

Benefits

No information provided on Benefits.