Associate Director - Cloud Security Architect

The Associate Director - Cloud Security Architect will work across information security & risk management, with all information technology functions to ensure public cloud and on-premise hosting environments are crafted and implemented as per defined policies and industry standards. The successful candidate will be a good communicator with deep technical skills and, most importantly, a pragmatist who can think creatively. The individual must be highly collaborative as they will have an opportunity to influence functional leadership, project and application managers, other architects, engineers and developers.

Successful candidates must demonstrate deep technical expertise in the following areas:

1) Cloud security controls for core cloud services, including networking, storage, and computing resources. Candidates should be able to articulate:
othe available security controls,
otheir functionality, and
othe risks they mitigate.

2) Comprehensive knowledge of
onetwork security,
oauthentication protocols,
ocryptography,
oidentity and access management (IAM),
osecurity monitoring and logging,
ovulnerability management,
oincident response,
ocompliance and regulatory requirements,
oapplication security,
ocontainer and workload security, and
odata protection strategies.

3) Experience with Cloud Native Application Protection Platform (CNAPP) tool capabilities, including:
oCloud Infrastructure Entitlement Management (CIEM)
oCloud Security Posture Management (CSPM)
oKubernetes Security Posture Management (KSPM)
oData Security Posture Management (DSPM)

• Developing and maintaining security roadmaps and strategy, working with various other security domain architects to align technology and service roadmaps
• Driving new technology/product/solution evaluations, providing leadership in the identification of specific security technology standards for Public Cloud technologies
• Wearing the engineering hat regularly, driving product/solution Proof of Concept with other security architects/engineers
• Identifying and leading your team to develop new security design patterns and participating in our Security Technical Design Authority
• Driving and defining required Threat Modeling methodologies & related tools for Cloud hosting environments
• Being our expert on Cloud and Infrastructure platform security topics and identifying major cloud security-related deficiencies, then designing pragmatic approaches to remediate them at scale.
• Reporting on cloud security posture status across the company periodically and is responsible for maintaining a clear risk acceptance/remediation level

• 12+ years of relevant professional IT experience in the related functional area, with a solid understanding of IT infrastructure technology, systems and management processes in a regulated industry
• 6+ years of experience as an Information Security Architect
• 4+ years experience working with AWS or Azure security architect (IaaS/PaaS)
• 2+ years of working experience in DevOps/DevSecOps models
• Experience in sourcing complex IT services, working closely with vendors and making full use of their abilities
• Demonstrated ability to build and maintain successful relationships with senior leaders from risk or non-risk/IT or non-IT backgrounds and ability to manage projects involving multi-functional teams in a matrixed environment successfully

• 5+ years of experience working in or providing IT services to a large enterprise like Novartis
• Relevant certifications:
  - Security-related certifications: Certified Cloud Security Professional (CCSP), Certified Information Systems Security Professional (CISSP), ISO 27001 Lead Implementer
  - Technology-related certification: AWS Certified Solutions Architect - Professional, AWS Certified Security - Specialty, Microsoft Certified: Azure Solutions Architect Expert