Cloud Security Architect

Job Description:

ObserveID is seeking a Cloud Security Architect to join our fast-growing Cloud Security and Engineering team. This person will play an integral part with respect to the research, design, and development of our Cloud security posture, infrastructure, policies, procedures, and tools for the current and evolving ObserveID SaaS platform. 

The successful candidate will report to the Chief Product Officer. This person must be well-acquainted with industry best practices, as well as with intelligence and automation in a Cloud-Centric environment. To succeed in this role, the success candidate must possess excellent interpersonal and communication skills, be a team player, and be able to thrive in a fast-paced, high-growth industry.

Responsibilities:

Design and development:

• Hybrid/cloud-based security architecture systems that can be integrated with private and public clouds. This includes, but is not limited to, a deep understanding and knowledge of the AWS, Azure, GCP, and Oracle Cloud platforms.
• Cloud security architectures and perform architecture design reviews.
• Frameworks and solutions to secure CI/CD pipelines.
• Service security and compliance requirements for SaaS multi-tenant systems.

Lead and Perform:

• Risk assessment of proposed and existing system architecture for compliance with security best practices, recommending technical, administrative and physical controls to mitigate identified risks.
• Compliance efforts based on selected industry frameworks and compliance standards.
• R&D and Product Management on defining and prioritizing development of secure SaaS offerings.
• Security processes, tools, methods, and knowledge and security enhancements.

Implement and Maintain:

• Existing industry best practices of operational security controls, including monitoring, Identity & Access Management, and Encryption & Data Security.
• Training policies, relevant industry knowledge, and security awareness activities for personal use and team members.

‍Qualifications:

• University/College Degree in Computer Science/Engineering or related field, and/or 10 + years of related work experience (required).
• Five years of work experience in software security, including Cloud platforms.
• Experience in infrastructure security, assessment, development, implementation, optimization, and documentation of comprehensive security processes, SDLC, and secure SaaS practices.
• Direct architecture experience with Amazon (AWS), Microsoft Azure, Oracle Cloud (OCP), and Google Cloud (GCP).
• Experience with risk assessment, development, management and threat monitoring.
• Experience with security review processes, data protection, cryptography, identity and access management (IAM) within Cloud environments, SaaS, IaaS, and PaaS.
• Experience with service-oriented architecture for Cloud-based services, security and governance tools, network administration security, and enterprise applications.
• Strong interpersonal and communication skills, attention to detail, hands-on technical abilities, and critical thinking skills.
• Experience with Identity-centric management and authentication protocols, including Active Directory and others.
• Experience performing threat modelling and design reviews to assess security implication requirements for introduction of new technologies.
• Experience in Linux, Unix, Windows OS, various network architecture and security configurations.
• Keen ability to multi-task by keeping track of numerous detail-intensive, interdependent tasks and ensure their accurate completion.
• Demonstrated ability to work independently and assume sole responsibilities effectively and also working on larger teams across functional areas.