You will be in charge of the following assignations :

• Designing security controls, processes and procedures for various public cloud projects, including the Infrastructure as a Service (IaaS), Platform as a Service (PaaS).
• Analyse security requirements for public cloud implementation and integration
• Implementation of technological solutions dedicated to security and data protection in public cloud
• Provide senior security architectural leadership to all phases of the various Cloud projects,
• Work closely with security risk assessment experts to develop and deliver a complete security architecture solution
• Lead technical analysis and recommendations (e.g. evaluate and select vendor security products based on functional, security and operational requirements; review and comment on security architecture)
• Lead technical design and first instance deployment of global projects including security solutions for internal and external IaaS and PaaS clouds (e.g. collaborate with risk analysts, project managers and technical subject matter experts to design, plan and implement enterprise security solutions spanning the endpoint, network and application space)
• Produce (contribute to and oversee others) high quality documentation (e.g. Architecture Specifications, System Requirements, Roadmaps, White Papers) to accurately capture and communicate business drivers, technical requirements, system design, and future plans and provide thought leadership at the enterprise level).
• Present cloud security architectural design concepts and solutions
• Compare and evaluate various public cloud security technologies and tools from technical, functional and financial feasibility.
• Drive proof of concepts that assess the feasibility of security solutions
• Develop metrics and dashboards to Measure and Validate the effectiveness
• Design and develop standards, SOPs and Runbooks for normal operations
• Participate to security incident analysis and resolution
• Design technical controls, measure and publish the adherence to security requirements.
• Partner with and support the DevOps team to drive and execute results in a timely manner
• Work to define and maintain the architectural frameworks/patterns, processes, standards and guidelines related to systems, business or data architecture.
• Provide technical and architectural subject matter expertise to the various development teams including communicating architectural decisions and mentoring other technical staff around the various security technologies and decisions

Qualifications

• You hold a Master and 13 years of experience OR a Bachelor with 17 years of experience
• Experience with public cloud environments and technologies, including Amazon Web Services (AWS) and Azure, and possibly other vendors (minimum 3 years)
• Strong hands-on experience of cloud security related topics (Cloud Access Security Broker, Data Leakage Prevention, Multi Factor Authentication, Data Rights Management, Web Application Firewalls, Security Compliance Auditing, Intrusion Detection, Security Incident handling, Data encryption, DDOS protection etc.) (minimum 3 years)
• Experience with enterprise logging and monitoring solutions including monitoring privilege user accounts and sensitive configuration files
• Experience in information management and information technology security design and implementation
• At least one IT Security certification related to cloud: CISSP, AWS Security Specialist or similar
• AWS or Azure experience: solution delivery expertise, migration of applications to the cloud, automation through third-party tools
• Demonstrated experience in creating conceptual, logical and physical security diagrams, thorough understanding of vulnerabilities and countermeasures

Recommended experience :

• Experience in working in Agile/Sprint
• Expertise in cloud architecture and security fundamentals including containers, software-defined networks, high availability design, multi-cloud, serverless compute, infrastructure as code
• Application experience migrating to or building natively in a cloud environment including monolithic applications, microservices, and functions as a service Experience with network architecture, network security and TCP/IP, network virtualization and/or software defined networks
• Experience with secure application design and development
• Experience with a broad range of application architectures and languages is an advantage
• Experience with the architecture and implementation of enterprise-security controls
• Experience in DevOps environments and automating security controls into the CI/CD process
• Experience with CI tools and knowledge of technologies like containers and microservices
• Development experience in NodeJS, Python, PHP, JavaScript, or Ruby