Design and deliver secure cloud solutions across IaaS, PaaS, and SaaS, leveraging existing security patterns aligned to business needs.
Define secure architectures for hybrid environments, ensuring integration between external cloud platforms and internal systems.
Lead end-to-end solution design, including requirements definition, risk identification, and alignment with application security policies.
Collaborate with cloud development partners and cross-functional security teams to establish and promote best practices in platform engineering, operations, governance, and design patterns.
Maintain thought leadership by staying current on emerging technologies, industry trends, and associated risks.
Own and maintain product design documentation, reference architectures, and portfolio-level blueprints for application security platforms.
Provide expert guidance on security design, standards, and operational practices.
Drive architecture governance discussions by developing artifacts and influencing key decisions.
Communicate risks, challenges, and solutions effectively to engineering, operations, risk partners, and senior leadership.
Requirements
Knowledge and understanding of Cloud Security specific laws, rules, regulations, and Guidelines, such as NIST, ISO, CIS, CSA, SOC 2, PCI, COBIT, ISO, OWASP, etc., relevant to the financial services sector.
Possession of CISSP certification would be an advantage.
Demonstrates broad knowledge and inherent risks of modern IT hosting, such as public cloud services from all major Cloud Providers, SaaS applications, Kubernetes, serverless, and Infrastructure as Code.
Knowledge of AI solutions from major Cloud Providers.
Experience with Cloud Provider native and industry leading third party security tools that deliver various aspects of a Cloud Native Application Protection Platform, like CSPM and CIEM.
5+ years relevant hands-on experience in application security fields in a large and complex organization.
Proficient in articulating facts and data-driven plans, and ability to partner with stakeholders to implement intended solutions to drive risk reductions and adherence to relevant cloud security frameworks.
Strong attention to detail and advanced analytical skills.
Excellent communication and presentation skills.
Excellent organizational skills and be able to effectively prioritize multiple tasks.
Hands on experience and involvement in large and complex projects.
Proficient in data management which includes strong data analytical capabilities with advanced understanding of the collection and management of metadata.