Principal Cloud Security Engineer

Axway is a pioneer in enterprise integration, empowering organizations to achieve digital transformation. They are seeking a Principal Cloud Security Engineer to lead the design and implementation of secure cloud architectures and serve as a subject matter expert in security architecture and best practices.

Responsibilities:

• Lead the design and implementation of secure, scalable, and resilient cloud architectures across Customer Cloud Environments
• Serve as the principal subject matter expert (SME) for security architecture, frameworks, and best practices
• Define and communicate security reference architectures, design patterns, and standards that align with organizational and regulatory requirements
• Partner with development, product, and operations teams to embed security throughout the software development life cycle (SDLC) and infrastructure as code (IaC) pipelines
• Conduct architectural risk assessments and threat modeling for new and existing cloud solutions
• Develop and drive automation strategies for continuous compliance, configuration management, and security control validation
• Evaluate and integrate cloud-native and third-party security technologies (e.g., SIEM, CSPM, CWPP, XDR, etc.) to strengthen Axway’s security posture
• Collaborate with governance and compliance teams to ensure alignment with frameworks such as ISO 27001, SOC 2, NIST, GDPR, and CIS Benchmarks
• Provide strategic guidance for vulnerability management processes, ensuring architectural consistency and rapid mitigation of risks
• Engage in incident response activities as a cloud security SME, assisting with investigation, containment, and remediation efforts, and documenting findings and lessons learned
• Mentor other team members, and contribute to developing a security-first culture across all relevant teams
• Represent the Cloud Security organization in design reviews, risk committees, and customer-facing engagements as needed
• Contribute to Axway’s Cloud Center of Excellence (CCoE) and help define secure reference patterns across Axway’s SaaS, single-tenant, and hybrid cloud offerings
• Committed to developing and honing skills via certifications, instructional courses, security news feeds, and/or research

Requirements:

• 8+ years of progressive information security experience, with at least 4 years focused on cloud security architecture and engineering
• Deep expertise in AWS and Azure security services, controls, and architecture principles
• Proven ability to translate complex business and technical requirements into secure cloud architectures and actionable designs
• Experience developing security architectures for distributed systems, containerized environments (Kubernetes), and hybrid or multi-cloud ecosystems
• Demonstrated experience with DevSecOps practices, CI/CD security integration, and automation using APIs, IaC, and scripting
• Strong understanding of network security, identity and access management (IAM), secrets management, data protection, and logging/monitoring architectures
• Experience assessing, implementing, and maintaining enterprise solutions such as CIEM, CSPM, vulnerability management, and identity governance tools
• Working knowledge of compliance and risk frameworks (ISO 27001, NIST, SOC 2, GDPR, CIS, CSA) and their application in cloud environments
• Excellent communication skills with the ability to engage both technical and executive stakeholders and influence architectural direction
• Strategic mindset with the ability to balance innovation, security, and business needs
• Security certifications such as: (ISC)2: CISSP, CCSP
• SANS: GCLD, GCSA, GCIA, GCPN, GPYC, GCIH, GPCS
• AWS: Solutions Architect Professional, Security Specialty
• Azure: Security Engineer Associate, Solutions Architect Expert
• Bachelor's or Master's degree in Cybersecurity, Computer Science, or related field – or equivalent industry experience
• Prior experience contributing to or leading cloud security strategy, governance programs, or security architecture boards