Find JobsSalary EstimateCareer AdviceUpload ResumeEmployers / Post JobProfileMessage Center

Cloud Security Architect (AWS Focus)

Buzzclan

NULL, TX(remote)

Apply
JOB DETAILS
LOCATION
NULL, TX
POSTED
8 days ago
Job Title: Cloud Security Architect (AWS Focus)
Job Location : Remote in US
Job Tenure : 11+ Months Contract

Position Overview

This hybrid role combines hands-on BigID platform leadership with strategic AWS cloud security architecture. You'll lead BigID deployment/management on AWS while architecting secure migration patterns for critical applications. Expect to wear two hats: tactical platform ops + strategic security design for enterprise data governance and cloud transformation.

The Mission

  • Deploy and operate BigID for data discovery, classification, privacy compliance (GDPR, CCPA, HIPAA) across DEV/QA/PROD
  • Architect AWS security patterns for application migrations (rehost/replatform/refactor), defining golden paths and guardrails
  • Bridge technical teams, app owners, and business stakeholders-making security an enabler, not a blocker

Key Responsibilities

BigID Platform Leadership

  • Install, configure, maintain BigID across environments; onboard data sources, validate scans, optimize pipelines (Spark/Hadoop)
  • Implement data governance: classification, sensitivity labeling, masking/redaction, compliance enforcement
  • Manage API integrations, Python/Shell scripting, cloud expansion (AWS/GCP + Alation)

AWS Cloud Security Architecture

  • Define reusable security patterns/guardrails for AWS migration (IAM, VPC, Security Groups, GuardDuty, KMS)
  • Lead design reviews, threat modeling, migration strategy assessments (shift security left)
  • Establish data protection requirements: encryption, classification, compensating controls

Cross-Functional Impact

  • Guide technical teams on architecture, scalability, enterprise data strategy
  • Translate risks to business language for app owners/executives
  • Troubleshoot issues, drive platform adoption, align on priorities/risk appetite

Must-Have Skills & Experience

  • BigID Expertise: Hands-on deployment, configuration, operations management
  • AWS Mastery: 5-7+ yrs securing AWS (IAM/VPC/GuardDuty/KMS); migration project experience
  • Data Security: Privacy frameworks (GDPR/CCPA/HIPAA), governance, classification best practices
  • Cloud & Big Data: AWS/GCP, Spark, Hadoop, data pipelines
  • Technical: Python/Shell scripting, API integrations
  • Architecture: Design reviews, threat modeling, migration strategies (rehost/replatform/refactor)
  • Communication: Explain security impact to non-technical leaders

Nice-to-Haves (Differentiators)

  • Location: Philadelphia/NY Metro area preferred
  • Certs: CISSP, CCSP, AWS Certified Security Specialty
  • Frameworks: NIST, ISO 27001, SOC2
  • DevSecOps: Terraform/CloudFormation, CI/CD security, Kubernetes
  • Tools: Okta/SailPoint, Palo Alto, Splunk/SIEM, Visio/LucidChart/Confluence

The Tech Stack

  • Primary: BigID, AWS (IAM/VPC/GuardDuty/KMS), Spark/Hadoop
  • Identity: Okta, AWS IAM, SailPoint
  • Infra: Terraform, Kubernetes/Containers
  • Security: Palo Alto, Splunk/SIEM, vuln scanning
  • Docs: Visio, LucidChart, Confluence

About the Company

B

Buzzclan