Cloud Security Architect

Overview of Position:

As a Cloud Security Architect, you will play a critical role in ensuring the security of the company's cloud-based workloads running on Amazon Web Services (AWS). You will be responsible for designing, implementing and maintaining solutions and processes that help the organization meet compliance requirements and prevent cyber incidents. You will serve as a member of the Cloud Engineering Team, working both independently and collaboratively with a diverse group of technical teams across the organization. You will have a strong background in and passion for cloud solution architecture and cybersecurity.

What you will do:

• Governance: Design, implement and enforce a comprehensive list of cloud governance standards and guardrails that align with both industry and company-defined security requirements.
• Security Monitoring: Develop, integrate and operate tools used for proactive cloud security monitoring and automated configuration remediation.
• Security Assessments: Conduct architecture reviews and risk assessments for key company workloads running on AWS.
• Centralized Logging: Utilize AWS and 3rd party services to support the aggregation and analysis of cloud audit logs, resource configuration changes, network flow logs and other relevant cloud environment data.
• Infrastructure Standards: Define company standards and templates for commonly used cloud architecture patterns and services using Infrastructure-as-Code (IaC).
• Incident Response: Develop runbooks and playbooks to address cloud security incidents and lead incident response activities.
• Administration: Perform administrative tasks related to identity and access management and cloud integrations.
• Training and Awareness: Promote a culture of cloud security and best practices across the broader technical organization.
  
  

What we need from you:

• 8+ years of experience working as a Cloud Architect, Cloud SecOps Engineer, Cloud DevOps Engineer or in similar roles.
• Bachelor of Science (B.S.) in Computer Science, Computer Engineering, Cybersecurity, Information Technology or a related discipline.
• AWS certification(s) - Associate Level (e.g. Solutions Architect, Developer).
• Deep understanding of core AWS services across a broad range of subject domains, including compute, database, identity and networking.
• Deep understanding of cybersecurity-related concepts and controls, such as data encryption, key management, identity and access management, server hardening, common application protocols and vulnerability mitigation.
• Experience with AWS's family of Management and Governance services, including Organizations (OUs and SCPs), Control Tower, CloudTrail, Config and Systems Manager.
• Experience with AWS's family of Identity and Security services, including IAM, IAM Identity Center, Security Hub, GuardDuty, Inspector, Macie, KMS, Network Firewall and WAF.
• Proficiency with Infrastructure-as-Code (IaC) tools (e.g. CloudFormation, Terraform, SAM, CDK).
• Experience with at least one high-level programming or scripting language (e.g. Python, TypeScript, JavaScript).
• Experience with source code version control using Git.
• Experience with Linux-based operating systems, administration and shell scripting.
• Deep understanding of TCP/IP networking and experience implementing security across multiple layers of the network stack.
• Experience with Cloud Security Frameworks (e.g. CIS, NIST, CSA) and applying controls and guardrails specific to AWS environments.
• Experience using and integrating Cloud Security Posture Management (CSPM), Security Information and Event Management (SIEM) and Security Orchestration, Automation and Response (SOAR) tools.
• Familiarity with common industry and government compliance standards, such as SOC 2 and GDPR.
• Excellent verbal and written communication skills.
• Excellent system documentation skills using tools such as Microsoft Visio, PlantUML, Lucidchart and draw.io.
• Ability to work both independently and collaboratively across an organization featuring multiple technical disciplines, including Software Engineering, Network Engineering and Information Technology.
  
  

Even better if you have:

• AWS certification(s) - Professional or Specialty Levels (e.g. Security, Advanced Networking, Solutions Architect).
• Experience with other public cloud service providers, including Microsoft Azure and Google Cloud Platform (GCP).
• Certifications in the fields of security and governance (e.g. SSCP, CISA, CISSP).
• Certifications in the field of networking (e.g. CCNA, CCNP).
• Experience developing and operating applications in serverless (AWS Lambda) and container-based (AWS ECS and EKS) environments.
• Experience working with CI/CD pipelines and DevOps-related tools.
• Experience administering SQL and NoSQL databases.
• Experience with Microsoft-based operating systems, administration and shell scripting.
  
  

Working at Speedcast:

At Speedcast, we want people that like adventure. Who are motivated by work that takes uncommon ingenuity and thinking outside the box. Who relish the idea of working in an industry undergoing massive transformation. If you want to be part of a global team responsible for connecting the world, then you’re in the right place.

We're always pushing forward, never standing still. When people rely on you and your team to stay connected, it brings everyone closer together. We’re united by the adrenaline of high-stakes projects and our love of getting the job done right. You will experiment, learn and grow here, right alongside us, every single day.

Find great opportunities to make an impact. We have a "one team, one dream" mentality. We work together to make great things happen. Working at Speedcast isn't just a job, it's a career that you can take to new levels.

Top reasons why people love working at Speedcast:

• Our global presence – you get to work with clients and colleagues all over the world, in every continent
• Talented teammates – your co-workers are the best and brightest in the industry
• Industry leadership – be part of the latest advancements shaping the future of communications
• Ability to develop skills – work across departments to gain new skills and valuable experience
• Choose your environment – we have an environment to fit your temperament. Choose between a traditional desk job or work in the field.
• Grow your career - Guide your career in the direction you want. Gain new titles and responsibilities through our internal promotion system.
• Work on diverse projects – every day is different with our customers from a range of industries around the world
  
  

Speedcast is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, veteran status, and other protected characteristics. The US EEO is the Law poster is available by visiting the below link:

https://www.eeoc.gov/employers/upload/poster_screen_reader_optimized.pdf

Speedcast does not accept or retain unsolicited résumés or phone calls and/or respond to them or to any third party representing job seekers.