Job description

Our client is seeking a highly experienced and visionary Principal Security Architect to lead the design and implementation of advanced cloud security solutions in Philadelphia, Pennsylvania, US . This senior role involves defining the enterprise security architecture for cloud environments, ensuring the confidentiality, integrity, and availability of sensitive data and systems. You will be responsible for developing security strategies, policies, and standards across multiple cloud platforms (AWS, Azure, GCP), identifying and mitigating complex security risks, and guiding security best practices throughout the organization. Key duties include designing secure cloud infrastructure, developing robust identity and access management (IAM) frameworks, implementing data protection measures, and architecting solutions for threat detection and incident response. Collaboration with engineering, DevOps, and IT teams is crucial to embed security into the entire development lifecycle (DevSecOps). The ideal candidate will possess deep technical expertise in cloud security technologies, a comprehensive understanding of cybersecurity frameworks (e.g., NIST, ISO 27001), and a proven ability to architect scalable and resilient security solutions. Strong leadership, communication, and strategic planning skills are essential for driving security initiatives and influencing stakeholders at all levels. This is a critical role in safeguarding the organization's digital assets in an increasingly complex threat landscape. Responsibilities: Design, implement, and maintain the enterprise security architecture for cloud environments (AWS, Azure, GCP). Develop and enforce security policies, standards, and guidelines for cloud deployments. Architect secure infrastructure solutions, including network security, compute security, and data security. Define and implement robust Identity and Access Management (IAM) strategies and controls. Lead the selection and integration of security technologies and tools for cloud environments. Develop and oversee incident response plans and procedures for cloud-based threats. Conduct security risk assessments and threat modeling for cloud applications and services. Collaborate with engineering and DevOps teams to embed security best practices throughout the SDLC (DevSecOps). Provide expert guidance on cloud security best practices, compliance requirements, and emerging threats. Lead security architecture reviews for new cloud initiatives and projects. Develop and deliver security awareness training to technical teams. Contribute to the development of the overall cybersecurity strategy and roadmap. Evaluate and recommend new security technologies and solutions. Ensure compliance with relevant industry regulations and standards (e.g., GDPR, CCPA, HIPAA). Qualifications: Master's degree in Computer Science, Cybersecurity, Information Technology, or a related field. Minimum of 10 years of experience in cybersecurity, with at least 5 years focused on cloud security architecture. In-depth knowledge and hands-on experience with major cloud platforms (AWS, Azure, GCP) and their security services. Expertise in designing and implementing security solutions such as WAF, IDS/IPS, SIEM, encryption, and IAM. Strong understanding of cybersecurity frameworks (NIST, ISO 27001), threat modeling, and risk assessment methodologies. Experience with containerization technologies (Docker, Kubernetes) and serverless computing security. Proficiency in scripting languages (e.g., Python, PowerShell) for automation. Excellent analytical, problem-solving, and strategic thinking skills. Strong leadership and communication skills, with the ability to influence technical and business stakeholders. Relevant certifications such as CISSP, CCSP, or cloud-specific security certifications are highly desirable.

Requirements