
Cloud Security Architect
Posted 4 days ago

Posted 4 days ago
This is a fully remote position, open to applicants in Illinois.
• Lead assessments of security architecture for both new and existing applications, systems, and integrations in cloud and hybrid settings.
• Collaborate with product engineering, DevOps, and compliance teams to create secure architectural patterns that focus on data protection, access control, network segmentation, and resilience.
• Engage in threat modeling activities to proactively pinpoint security vulnerabilities and inform secure design choices.
• Evaluate and validate security requirements for innovative technologies, including Artificial Intelligence (AI) services and platforms.
• Act as the primary expert on cloud security, particularly with a focus on Microsoft Azure.
• Assess and enhance configurations across identity, networking, compute, storage, and platform services.
• Analyze and document the existing cloud environment, identify security weaknesses, and create prioritized remediation plans.
• Develop and enforce cloud security policies and guardrails using cloud-native tools (e.g., Azure Policy, AWS Service Control Policies).
• Write scripts and automate processes (using Python, PowerShell, or similar languages) to audit, monitor, and correct undesirable configurations within the environment.
• Serve as an expert in various security domains, including cloud security posture management, identity and access management (IAM), and server/endpoint protection.
• Occasionally act as a subject matter expert during incident response efforts, offering expertise in root cause analysis and remediation.
• Bachelor’s degree or equivalent experience in Computer Science, Cybersecurity, Information Systems, or a related discipline.
• Over 8 years of practical experience in information security, with a minimum of 3 years dedicated to a security architecture role.
• Strong experience with Microsoft Azure security services and architecture.
• Proven capability to evaluate and secure configurations across identity, networking, compute, storage, and platform services.
• Proficient in at least one scripting or programming language (Python or PowerShell preferred; other languages considered).
• Demonstrated ability to design and implement Infrastructure as Code (IaC) for security automation and baseline enforcement.
• Solid understanding of regulatory and compliance frameworks such as ISO 27001, NIST, HITRUST, and/or SOC 2.
• Proficiency with authentication and authorization protocols like SAML, OAuth/OIDC, and LDAP.
• Proven ability to work independently, analyze complex environments, and produce clear, actionable documentation with minimal oversight.
• Exceptional communication and interpersonal skills, with the capacity to collaborate across both technical and non-technical teams and to influence without direct authority.
• Comprehensive medical, dental, and vision coverage.
• 401(k) plan featuring a generous employer match.
• Employee stock purchase plan.
• Generous Paid Time Off policy.
• Paid parental leave and adoption assistance.
• Wellness Program promoting overall well-being through screenings, workshops, and ongoing recognition initiatives.
knowmad mood
Barbaricum
DC Thomson
PTC
Get handpicked remote jobs straight to your inbox weekly.