Enterprise Security Architect – 100% Remote || Contract

Role: Enterprise Security Architect

Location: 100% Remote

Duration: Long Term Contract

ROLE_DESCRIPTION –
• Develop and maintain enterprise level cloud security reference architectures, patterns, and guardrails.
• Lead architectural reviews for cloud initiatives to ensure alignment with security standards.
• Drive adoption of Zero Trust architecture across cloud platforms.
• Design and enforce IAM frameworks in AWS.
• Establish least privilege models, federation, SSO, and privileged access strategies.
• Implement and maintain controls aligned with frameworks such as NIST, CIS, ISO 27001, PCI, and SOC 2.
• Oversee CSPM, CIEM, and security governance tooling to ensure continuous compliance and posture management.
• Collaborate with SOC and incident response teams to enhance cloud threat detection.
• Define monitoring strategies using SIEM/SOAR and cloud-native capabilities.
• Integrate security into CI/CD pipelines in coordination with DevOps teams.
• Promote secure Infrastructure as Code practices using Terraform
• Automate compliance checks, security scans, and remediation workflows.
• Define enterprise data protection standards for encryption, tokenization, key management, and data classification.
• Ensure secure configurations for cloud storage, databases, and data services.
• Architect secure Kubernetes, serverless, and containerized environments.
• Oversee container scanning, registry governance, and runtime protection.
• Act as a senior advisor to business and technical teams on cloud security risks and solutions.
• Support audits, risk assessments, and enterprise governance processes.
• Communicate architectural decisions and rationale to executives and engineering teams.

Technical Skills
• 8+ years in cybersecurity, with at least 3+ in cloud security architecture.
• Deep expertise in AWS security services.
• Strong understanding of Zero Trust, network security, IAM, and encryption.
• Experience with SIEM/SOAR, CSPM, CIEM, CWPP, and container security platforms.
• Proficiency in DevSecOps tooling and IaC (Terraform).
• Knowledge of compliance frameworks (NIST, CIS Benchmarks, ISO 27001, SOC 2, PCI).
• Exposure to AWS AI services such as AWS Security Hub, Amazon Inspector, Amazon GuardDuty — AI Driven Threat Detection
• IaC and automation experience using Terraform, CloudFormation, and CI/CD security integration.
• Kubernetes and container security skills covering EKS hardening, image scanning, and runtime protection
Skills: Digital : Cloud Security Management~Cyber Security