Cloud Architect

Title: Cloud Architect

Location: Washington DC or Chicago

Pay: $93.09 per hour

3 month contract

Hybrid, 3 days onsite

Come join an exciting team within Global Information Security (GIS). Cloud Defense is a key team enabling the Bank to securely consume public Cloud. We are looking for Cloud architects to join the team to partner with Technology Infrastructure, CIO teams and our Operational Risk partners to help us develop the right patterns and blueprints for secure Cloud usage.

This role participates and assists more senior architects in the analysis, design, development and implementation of architectural deliverables, to include components of the assessment and optimization of system design and review of business requirements. Contributes to the determination of security requirements and alignment to information security policy. May be called upon to work with technology teams from a broad range of disciplines, including Identity Access Management, Logging and Monitoring, technical support and other IT areas as appropriate throughout development and implementation processes. Serves as a technical security resource; provides technical knowledge and security capabilities as a team member and an individual contributor.

Primary Level of Engagement:

• Works at the team level or program level. Is an individual contributor under supervision from a more senior domain expert.

Primary Interactions:

• Product Owner
• Development Lead
• Project / Solution Architect
• Scrum Master / Project Manager
• Senior Engineer
• Information Security Engineer
• Architect Community of Practice
• BISO
• Operational Risk

Key Responsibilities:

• Ensures Information Technology systems meet enterprise standards, adhere to applicable rules, laws, and regulations, and comply with appropriate treatment of risk
• Assess against and evaluate security controls for cloud infrastructure (IaaS, PaaS, SaaS) based on industry best practices, compliance requirements, and bank security policies.
• Ensure appropriate security measures are in place to protect against threats, vulnerabilities, and breaches in Azure and AWS environments.
• Develop and maintain documentation for cloud security controls, policies, and procedures.
• Monitor and evaluate the effectiveness of existing cloud security controls and recommend enhancements.
• Conduct regular security assessments and audits of cloud environments to identify and mitigate potential security threats and vulnerabilities in cloud environments.
• Participate in internal and external audits to demonstrate compliance with cloud security requirements.
• Collaborate with DevOps, IT, and business teams to integrate security controls into cloud deployments and CI/CD pipelines.
• Stay current with emerging cloud security trends, technologies, and best practices.

Required Skills:

• Experience in Cloud security, compliance and risk management, privacy, governance, internal audit, etc.
• Experience building enterprise security strategy for cloud adoption or driving the program's evolution to meet new requirements
• Hands-on technical expertise in Security Architecture, automation, integration, and deployment (DevOps)
• -Knowledge and understanding of key differences between most popular cloud provider solutions and cloud orchestration tools (e.g. Azure, AWS, GCP, Pivotal Cloud Foundry, BOSH, Kubernetes, Docker, etc.)
• Experience architecting solutions within AWS, Azure and GCP
• Strong domain expertise of cloud infrastructure compute, network and storage as well as the cloud control plane
• Experience working with cloud security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies.
• Experience building security reference architecture for all-in cloud deployments and hybrid scenarios
• Familiarity with enterprise security solutions such as WAF, IPS, Anti-DDOS, and SIEM.
• Familiarity with compliance security standards across the enterprise IT landscape
• Understanding of enterprise risk management methods and techniques to drive successful outcomes in globally distributed environment
• Working knowledge of cloud computing technologies and workload transition challenges
• Growth mindset who is passionate to learn and use new/emerging technologies
• Must work well independently and with others as part of larger team and be able to collaborate on cross-functional teams