My client, a multinational professional services organisation is on the lookout for a Cloud Product Security Architect to join their team on an initial 6-12 month contract with view for extension.
The Job:
Hands‑on Cloud Product Security Architect role, acting as a lead security engineer to safeguard products (web, mobile, thick client, etc.), platforms, and business applications.
Proactively reduce technical security risk through deep engagement with product teams, rigorous architecture and application reviews, and the design/validation of embedded security controls across cloud and distributed environments.
Conduct hands‑on security assessments in line with secure‑by‑design principles at application, platform, and system levels, using threat modelling and architecture reviews to identify design flaws, cloud misconfigurations, insecure dependencies, and API abuse scenarios.
Design and recommend concrete security controls embedded directly into system and application architectures, including secure identity and access design, cryptographic protections, network isolation, runtime enforcement, and secure defaults.
Operate effectively within agile engineering environments, embedding security into iterative delivery through DevSecOps and Shift‑Left principles, including automated security testing and compliance checks (SAST, SCA, DAST) and secure CI/CD pipelines.
Lead the implementation and management of CSPM tools to continuously monitor, assess, and remediate misconfigurations and vulnerabilities in cloud environments.
Have You:
At least 6‑8 years of focused experience in Product and Cloud security mainly in Azure.
Strong experience with SAST and SCA tools such as Snyk, CodeQL, Veracode, Checkmarx, SonarQube, etc.
Solid experience in cloud security architecture and management, along with deep knowledge of security best practices.
Experience collaborating closely with engineering teams and senior technical stakeholders.
AWS or Azure Cloud Security certification is a plus.
#J-18808-Ljbffr