What are the responsibilities and job description for the Sr. Information Cloud Security Architect position at TEKsystems c/o Allegis Group?
Job Details
Description
We are looking for an innovative and proactive Senior Security Architect to lead the strategic planning, implementation, and ongoing enhancement of our clients security framework. This pivotal role requires a blend of strong technical proficiency and effective business leadership. The ideal candidate will develop and articulate a robust security strategy encompassing network, application, identity, data and cloud environments, ensuring proactive management of cyber risks. Provide long-term solutions to Information Security Technology needs, including protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, perusal, inspection, recording or destruction.
This role will be hybrid two days per week onsite in Santa Ana, CA.
What You'll Do
Cloud Security Architecture & Zero Trust Design: Lead the design and implementation of Zero Trust security models within multi-cloud environments (Azure, AWS, Google Cloud Platform) to implement Zero Trust principles within the organization's cloud infrastructure. This includes securing data, network access, identities, applications, privatization of workloads and network micro-segmentation based on the principle of least privilege.
Governance Models for Security:
a. Application Security Governance: Collaborate with Application Security Architects to design and enforce application security governance models that integrate secure software development practices, secure APIs, and application-level access controls.
b. Identity and Access Management (IAM): Collaborate with Identity Architects to design and enforce comprehensive IAM policies as part of the Zero Trust model, ensuring least-privilege access evolving to JIT Just-In-Time based access, strong authentication mechanisms (including multi-factor authentication), password less authentication, and identity federation across cloud platforms (Entra ID, AWS IAM, Google Cloud Platform Identity).
c. Data Governance: Collaborate with Data Architects to develop and enforce governance models that protect sensitive and critical data within cloud environments
Cloud Security Risk Management: Identify and mitigate security risks associated with cloud deployments and continuously improve security posture in line with Zero Trust principles.
Cloud Security Posture Management: Regulate policy enforcement, monitor compliance, and implement remediation strategies based on Prisma Cloud findings to improve cloud security posture. Configure and manage Prisma Cloud policies to monitor and identify misconfigurations, vulnerabilities, and threats in cloud infrastructure, applications, and services.
Security Automation & Orchestration: Utilize automation tools to integrate security controls into cloud workflows as part of Dev-Sec-Ops model. Automate deployment of security policies and governance models using Infrastructure as Code (IaC) tools ensuring security consistency across cloud resources
Continuous Improvement: Stay up to date with the latest cloud security threats, trends, and technologies.
Skills
Cloud Security Architecture, Zero Trust, Microsoft Defender for Cloud, EntraID
Top Skills Details
Cloud Security Architecture,Zero Trust,Microsoft Defender for Cloud,EntraID
Additional Skills & Qualifications
- Deep knowledge of cloud-native security service offerings across EntraID, Azure, AWS, and Google Cloud Platform.
- Experience with hybrid and multi-cloud architectures and the challenges of implementing Zero Trust in such environments.
- Familiarity with container and microservices security (e.g., Docker, Kubernetes) and security for containerized workloads.
- Hands-on experience with cloud security automation, including Infrastructure as Code (IaC) tools.
- Experience with DevSecOps practices and integrating security into CI/CD pipelines.
- Familiarity with CSPM, CNAPP and CWPP tools and SIEM solutions.
- Experience with Prisma Cloud and other CSPM platforms in general to manage and improve cloud security posture.
- Familiarity with CIEM tools
- Familiarity with SSE (Security Service Edge) technologies, including Cloud Access Security Brokers (CASB) and Data Loss Prevention (DLP), for protecting cloud-based data, applications, and user access.
Experience Level
Intermediate Level
Pay and Benefits
The pay range for this position is $145000.00 - $193300.00
Based on eligibility, The client offers a comprehensive benefits package including medical, dental, vision, 401k, PTO/paid sick leave and other great benefits like an employee stock purchase plan.
Workplace Type
This is a hybrid position in Santa Ana,CA.
Application Deadline
This position will be accepting applications until Jan 28, 2025.
About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
We are looking for an innovative and proactive Senior Security Architect to lead the strategic planning, implementation, and ongoing enhancement of our clients security framework. This pivotal role requires a blend of strong technical proficiency and effective business leadership. The ideal candidate will develop and articulate a robust security strategy encompassing network, application, identity, data and cloud environments, ensuring proactive management of cyber risks. Provide long-term solutions to Information Security Technology needs, including protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, perusal, inspection, recording or destruction.
This role will be hybrid two days per week onsite in Santa Ana, CA.
What You'll Do
Cloud Security Architecture & Zero Trust Design: Lead the design and implementation of Zero Trust security models within multi-cloud environments (Azure, AWS, Google Cloud Platform) to implement Zero Trust principles within the organization's cloud infrastructure. This includes securing data, network access, identities, applications, privatization of workloads and network micro-segmentation based on the principle of least privilege.
Governance Models for Security:
a. Application Security Governance: Collaborate with Application Security Architects to design and enforce application security governance models that integrate secure software development practices, secure APIs, and application-level access controls.
b. Identity and Access Management (IAM): Collaborate with Identity Architects to design and enforce comprehensive IAM policies as part of the Zero Trust model, ensuring least-privilege access evolving to JIT Just-In-Time based access, strong authentication mechanisms (including multi-factor authentication), password less authentication, and identity federation across cloud platforms (Entra ID, AWS IAM, Google Cloud Platform Identity).
c. Data Governance: Collaborate with Data Architects to develop and enforce governance models that protect sensitive and critical data within cloud environments
Cloud Security Risk Management: Identify and mitigate security risks associated with cloud deployments and continuously improve security posture in line with Zero Trust principles.
Cloud Security Posture Management: Regulate policy enforcement, monitor compliance, and implement remediation strategies based on Prisma Cloud findings to improve cloud security posture. Configure and manage Prisma Cloud policies to monitor and identify misconfigurations, vulnerabilities, and threats in cloud infrastructure, applications, and services.
Security Automation & Orchestration: Utilize automation tools to integrate security controls into cloud workflows as part of Dev-Sec-Ops model. Automate deployment of security policies and governance models using Infrastructure as Code (IaC) tools ensuring security consistency across cloud resources
Continuous Improvement: Stay up to date with the latest cloud security threats, trends, and technologies.
Skills
Cloud Security Architecture, Zero Trust, Microsoft Defender for Cloud, EntraID
Top Skills Details
Cloud Security Architecture,Zero Trust,Microsoft Defender for Cloud,EntraID
Additional Skills & Qualifications
- Deep knowledge of cloud-native security service offerings across EntraID, Azure, AWS, and Google Cloud Platform.
- Experience with hybrid and multi-cloud architectures and the challenges of implementing Zero Trust in such environments.
- Familiarity with container and microservices security (e.g., Docker, Kubernetes) and security for containerized workloads.
- Hands-on experience with cloud security automation, including Infrastructure as Code (IaC) tools.
- Experience with DevSecOps practices and integrating security into CI/CD pipelines.
- Familiarity with CSPM, CNAPP and CWPP tools and SIEM solutions.
- Experience with Prisma Cloud and other CSPM platforms in general to manage and improve cloud security posture.
- Familiarity with CIEM tools
- Familiarity with SSE (Security Service Edge) technologies, including Cloud Access Security Brokers (CASB) and Data Loss Prevention (DLP), for protecting cloud-based data, applications, and user access.
Experience Level
Intermediate Level
Pay and Benefits
The pay range for this position is $145000.00 - $193300.00
Based on eligibility, The client offers a comprehensive benefits package including medical, dental, vision, 401k, PTO/paid sick leave and other great benefits like an employee stock purchase plan.
Workplace Type
This is a hybrid position in Santa Ana,CA.
Application Deadline
This position will be accepting applications until Jan 28, 2025.
About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
Salary : $145,000 - $193,300
