Address
SalaryOur client AGL are seeking an experienced Cloud Security Architect to work with them on a contract basis. This will be for an initial six months contract based in Melbourne in a hybrid working environment.
You will be a Cloud Security Architect with a specific focus on Azure services and platforms. Responsibilities will include spearheading the development and execution of resilient security measures that are customised to cloud environments. Ensuring the security, compliance, and resilience of our Azure deployments will be their principal responsibility. By capitalising on their proficiency in state-of-the-art technologies and optimal Cloud Security methodologies, they will assume a crucial responsibility in fortifying the cloud-based assets and data of our organisation.
Your key responsibilities include:
- Core: Architect and ensure implementation of comprehensive security solutions that encompass Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS) offerings for AWS and/or Azure environments.
- Policy and Compliance: Establish and enforce cloud-specific security policies, standards, and controls to ensure adherence to internal security requirements and industry regulations (e.g. SOCI, AESCSF, PCI DSS).
- Identity and Access Management (IAM): Development of IAM frameworks for AWS and Azure that securely manage user identities through the implementation of granular access controls, role-based permissions, and robust authentication mechanisms.
- Data Protection and Encryption: Ensure the security of sensitive data stored in AWS S3, Azure Blob Storage, databases, Github repos and other cloud repositories, implement encryption techniques and data protection mechanisms. Manage and design the lifecycles of encryption keys to ensure the confidentiality of data.
- Network Security: Oversee the configuration and management of virtual private networks (VPNs), firewalls, and network security groups (NSGs), etc. to regulate the flow of traffic and safeguard cloud resources against unauthorised intrusion and network-borne hazards.
- Security Monitoring and Incident Response: Utilise and effect AWS CloudWatch, Azure Monitor, and third-party SIEM tools to implement comprehensive logging, monitoring, and alerting solutions.
- Infrastructure as Code (IaC) Security: Incorporate security best practices into infrastructure provisioning scripts and templates. It will be imperative to incorporate security controls into both the deployment pipeline and automated workflows.
- Optimal Cloud Security Procedures: Remain current on the security features, services, and best practices of AWS and Azure. Provide development and operations teams with guidance and recommendations regarding the configuration, deployment, and architecture of secure cloud environments.
- Vulnerability Management and Threat Intelligence: Observe and assess nascent threats and susceptibilities that are unique to the cloud environments of AWS and Azure. Implement routine vulnerability assessments and penetration tests to detect and address security vulnerabilities.
- Stakeholder Management and Collaboration: Establish a strong working relationship with cross-functional groups comprising cyber security functional teams, cloud architects, DevOps engineers, and compliance officers in order to effectively incorporate security throughout the entirety of the cloud development lifecycle. Facilitate efficient stakeholder communication to synchronise security initiatives with organisational goals.
- Proficiency in the design, implementation, and protection of Azure cloud environments within enterprise contexts.
- AWS (e.g., IAM, VPC, S3, EC2, Lambda) and Azure (e.g., Azure Active Directory, Azure Key Vault, Azure Sentinel) architecture and service expertise. Must have Azure Devops experience.
- Proficiency in Cloud Security principles, regulatory obligations, and compliance frameworks.
- Working experience or strong knowledge with Atlassian Compass.
- Proficient in problem-solving and analysis, capable of evaluating intricate security challenges and proposing practical resolutions.
- Possess exceptional interpersonal and communication abilities, including the capacity to effectively convey technical concepts to non-technical stakeholders.
- A degree in information security, computer science, or a closely related major (bachelor's or master's level).
At Chandler Macleod, we are committed to fostering a diverse workforce where everyone is welcome.
You can read more about our commitment to diversity and inclusion at https://www.chandlermacleod.com/diversity-and-inclusion
