Cloud Security Architect Lead
A leading technology group is seeking a Cloud Security Architect Lead to oversee the design of secure cloud environments and guide strategic decision-making across large-scale operations.
The ideal candidate will collaborate with cross-functional teams, including engineering, DevOps, and compliance groups, to ensure seamless integration of security controls into CI/CD pipelines and automated deployment workflows.
Key Responsibilities:
* Design and implement robust cloud security architectures that meet regulatory requirements and industry standards
* Develop and maintain cloud security baselines, policy bundles, and guardrails for Azure and hybrid environments
* Review and improve cloud architecture patterns, recommending enhancements grounded in practical risk reduction strategies
* Lead security assessments and architectural walkthroughs, producing clear and actionable technical outputs
* Collaborate with engineers to design and maintain landing zone frameworks and automated deployment patterns using IaC
* Strengthen cloud observability by developing logging patterns, security signal quality, and detection coverage
* Support Zero Trust adoption across identity, device, access, and segmentation models
* Provide guidance on remediation and partner with engineering teams to close design gaps
* Mentor engineers and advise technical leads on cloud security best practices
* Contribute to long-term cloud security strategy and capability development
Requirements:
The successful candidate will possess:
* Strong background in cloud security architecture within large-scale Azure environments
* Deep knowledge of Azure identity, policy, monitoring, and security services
* Advanced proficiency with Infrastructure-as-Code (Terraform preferred, Bicep/ARM beneficial)
* Solid understanding of cloud networking, segmentation, and trust boundary design
* Experience integrating security controls into CI/CD and automated deployment workflows
* Familiarity with Zero Trust principles applied within cloud ecosystems
* Strong knowledge of cloud security frameworks and regulatory drivers
* Ability to produce clear technical documentation and architecture guidance
* Experience collaborating with cross-functional teams
* Cloud and security certifications are beneficial but not required
Nice to Have:
The following qualifications are desirable:
* Experience securing multi-cloud (AWS or GCP) environments
* Familiarity with CSPM, CIEM, and cloud governance tooling
* Understanding of regulated-industry requirements and audit expectations
* Exposure to OT/ICS environments or hybrid platform designs
* Broader cybersecurity accreditations (CISSP, CCSP, CISM)