Cloud Security Architect – Governance
Review and implement security measures, validation procedures, programming and documentation (Azure Cloud Security, Azure Security Centre, DDoS and Application Gateway)
Act as a lead evangelist on security related subjects having to do with Microsoft Azure, public cloud, virtualization, container technologies, infrastructure transformation, networking, and/or data centre operations
Design an automated framework for Security governance for bank’s Azure cloud infrastructure.
Ensure Products, Projects and Programmes are secure by design on Azure with appropriate controls.
Develop plans and implement systems and procedures to effectively secure company information, infrastructure, intellectual property, and users against accidental or unauthorised modification, destruction or disclosure.
Review API Security, Container Security, Azure Cloud Security.
Be part of architectural meetings and provide security requirements and recommendations at the time of application and infrastructure design.
Develops standards, policies and procedures best practices documentation
Translate security and technical requirements into business requirements, and communicate security risks to different audiences ranging from business leaders to engineers
Work closely with application developers and system administrators to deliver secure cloud solutions to business requirements
Serve as the subject matter expert (SME) on Cloud Security governance related topics
Applicable information security management, governance, and compliance principles, practices, laws, rules and regulations.
Information technology systems and processes, network infrastructure, data architecture, data processes, and protocols.
Cyber and cloud security standard frameworks, architecture, design, operations, controls, technology, solutions, and service orchestration.
Information systems auditing, monitoring, controlling, and assessment process.
Risk assessment and management methodology.
Skills and experience
Strong Architecture background
Certified CCSP, AZ-500 & CISSP
Good to have TOGAR or SABSA certifications
Solid Azure Knowledge – DTP, Sentinel, Azure AD, MCAS and Compliance Manager
Strong Knowledge in DevOps environment
Experience working in a continuous integration and continuous delivery model (CI/CD)
Strong knowledge in Teraform, Kong API gateway, Redis and other cloud related services.
Experience with security testing tools which perform vulnerability identification, threat analysis and static/dynamic code review.
Strong Knowledge in security solutions and technologies – Firewalls, WAF, IPS/IDS, EDR, DLP, NAC, and VPN.