Cloud Security Architect

Role Overview

Our client is seeking a Cloud Security Architect to support a large, regulated financial services environment. This consultant will provide cloud security architecture, cyber risk, and technology risk advisory services to support secure cloud adoption, governance, and compliance initiatives.

This role is ideal for a senior cloud security professional with experience working in complex, highly regulated environments.

Key Responsibilities

• Provide cyber security, cloud security, and technology risk advisory services
• Assess current-state and define target-state cloud security architectures
• Identify security risks, control gaps, and compliance issues related to cloud adoption
• Design and govern cloud security controls, including IAM, network security, data protection, logging, and monitoring
• Develop and maintain IT security standards, policies, and cloud security control requirements
• Produce reusable security architecture artifacts such as reference architectures, secure design patterns, and architecture building blocks
• Support secure cloud configuration, governance, and compliance with internal standards and regulatory expectations
• Conduct threat modeling for cloud architectures and migration initiatives
• Translate technical risks into business impact and recommend mitigation strategies
• Produce documentation, architecture artifacts, risk assessments, and stakeholder reports
• Support implementation planning and prioritization of recommended controls
• Provide subject-matter expertise, workshops, and knowledge transfer to internal teams
• Perform additional related duties as required

Required Qualifications & Experience

• University degree or college diploma in Computer Science, Information Security, Engineering, or a related field
• Minimum 5 years of recent experience in IT or cybersecurity, including cloud environments
• Minimum 3 years of experience as a Cloud Security Architect or senior cloud security specialist
• Proven experience assessing cloud security posture and defining target-state architectures
• Experience designing and governing cloud security controls
• Strong ability to identify security, risk, and compliance gaps and provide actionable recommendations
• Experience developing cloud security standards and reusable architecture artifacts

Preferred Qualifications / Assets

• Strong knowledge of cybersecurity and risk frameworks (e.g., NIST CSF, NIST SP 800-53/61/92, ISO/IEC 27001/27002)
• Experience with cloud control frameworks (CSA Cloud Controls Matrix, CIS Benchmarks)
• Familiarity with enterprise/security architecture frameworks (e.g., TOGAF, SABSA)
• Experience working in regulated environments, preferably financial services
• Knowledge of Azure and hybrid cloud environments
• Relevant certifications such as CCSP, CISSP, CISM, or Azure/AWS Security certifications