Cloud Security Architect
Evanti Tech
- Location
- Goregaon, Maharashtra, India
- Job type
- Full-time
Required skills
- SIEM
- PCI-DSS
- AWS
- Azure
- CloudFormation
- compliance
- DevOps
- Docker
- GCP
- GitHub
- incident response
- Jenkins
- Kubernetes
- MFA
- network security
- Serverless
- Splunk
- SSO
- Terraform
- VPC
About the role
Evanti Tech
Website:
evanti.in
Job details:
Cloud Security Architecture- Design and implement secure cloud architectures across AWS, Azure, and GCP environments.
- Define security baselines, reference architectures, and best practices.
- Security Strategy & Governance
- Develop cloud security strategy aligned with frameworks like ISO 27001, NIST, CIS Benchmarks.
- Establish governance models, policies, and standards for cloud security.
- Identity & Access Management (IAM)
- Architect and implement IAM solutions including SSO, MFA, RBAC, and Zero Trust models.
- Integrate identity providers like Okta, Azure AD.
- Cloud Workload Protection
- Implement security controls for containers, Kubernetes, serverless, and VM workloads.
- Ensure runtime protection and vulnerability management.
- Network Security
- Design secure VPC/VNet architectures, firewalls, WAF, VPN, and Zero Trust Network Access (ZTNA).
- Ensure segmentation and secure connectivity across hybrid environments.
- DevSecOps Integration
- Integrate security into CI/CD pipelines using tools like Terraform, Jenkins, GitHub Actions.
- Enable shift-left security practices (SAST, DAST, SCA).
- Security Monitoring & Incident Response
- Implement logging, monitoring, and threat detection using SIEM tools (e.g., Microsoft Sentinel, Splunk).
- Lead incident response and threat hunting initiatives.
- Compliance & Risk Management
- Ensure compliance with GDPR, HIPAA, PCI-DSS and other regulatory standards.
- Conduct risk assessments, audits, and security reviews.
- Data Security
- Implement encryption (at rest/in transit), key management (KMS), DLP solutions.
- Secure sensitive data across cloud environments.
- Stakeholder Collaboration
- Work with DevOps, engineering, and business teams to embed security in all phases.
- Provide technical leadership and mentorship to security teams.
Required Skills & Qualifications- 10+ years of experience in Cybersecurity, with 5+ years in Cloud Security Architecture
- Strong expertise in:
- AWS Security, Azure Security, GCP Security
- IAM, Zero Trust, Cloud Networking
- Container Security (Kubernetes, Docker)
- Hands-on experience with:
- CASB, CWPP, CSPM tools (e.g., Prisma Cloud, Wiz, Defender for Cloud)
- Infrastructure as Code (Terraform, CloudFormation)
- Experience in DevSecOps practices and CI/CD security
- Knowledge of threat modeling and risk assessment methodologies
Preferred Certifications- AWS Certified Security – Specialty
- Microsoft Certified: Azure Security Engineer / Architect
- Google Professional Cloud Security Engineer
- CISSP / CCSP / CISM
Click on Apply to know more.
This page is fully interactive when JavaScript is enabled. Please enable JavaScript to apply or browse related roles.