Job ID: JOB_ID_8827
Job Summary
We are seeking a highly experienced Cloud Security Architect to lead security architecture and governance for large-scale cloud migration initiatives, specifically focused on Data Center Exit to AWS. The ideal candidate will have deep expertise in AWS security services, enterprise security frameworks, and hybrid cloud environments, ensuring secure, compliant, and scalable cloud adoption.
Key Responsibilities
- Lead cloud security architecture for Data Center Exit migration to AWS EC2 environments
- Design and implement secure AWS Landing Zones, including IAM guardrails, SCPs, and centralized logging
- Conduct application and infrastructure vulnerability assessments and define remediation strategies
- Implement AWS WAF rules, firewall policies, network segmentation, and endpoint security controls
- Validate authentication, authorization, and encryption models across all cloud workloads
- Support secure SDLC practices, including code reviews and remediation of security gaps
- Integrate SIEM tools with AWS native services (CloudTrail, GuardDuty, Security Hub) for continuous monitoring
- Define and enforce security baselines aligned with CIS, NIST, and ISO frameworks
- Lead penetration testing (VAPT) cycles and coordinate mitigation efforts
- Produce security documentation including HLDs, LLDs, risk assessments, and operational runbooks
Required Skills & Qualifications
Cloud Security & AWS Expertise
- Strong hands-on experience with AWS security services: IAM, KMS, CloudTrail, GuardDuty, WAF, Shield, and Security Hub
- Deep understanding of AWS multi-account architecture, Landing Zones, SCPs, and governance models
- Experience securing AWS EC2 environments, encryption models, and identity federation
Security Architecture & Governance
- Proven expertise in designing enterprise security architectures aligned with Zero Trust and least privilege principles
- Strong knowledge of vulnerability management and remediation practices
- Experience with SIEM integrations and continuous security monitoring
Application & Infrastructure Security
- Experience securing custom applications and middleware (Java, .NET, TIBCO ESB)
- Strong understanding of OS-level security (Windows Server 2016/2025, RHEL 7/8/9)
- Knowledge of database security for Oracle 19c, Exadata on AWS, and SQL Server
Network & Endpoint Security
- Proficiency in WAF, firewall management, IDS/IPS, and network segmentation
- Experience implementing endpoint protection and secure access controls
Vulnerability & Penetration Testing
- Hands-on experience with VAPT tools such as Nessus, Qualys, Burp Suite, Fortify, and Checkmarx
- Ability to lead penetration testing engagements and remediation cycles
Container & Hybrid Cloud Security
- Experience securing EKS workloads, including pod security, network policies, and image scanning
- Understanding of hybrid cloud security and AWS migration tools
Preferred Qualifications
- Experience with Oracle Exadata on AWS and complex database integrations
- Familiarity with enterprise compliance frameworks (CIS, NIST, ISO 27001)
- Strong cross-functional collaboration skills across DevOps, infrastructure, network, and application teams
Additional Information
- Onsite role in Irvine, CA – candidates must be available for in-person work
- Strong communication and documentation skills required
- Prior experience in large-scale cloud migration programs is highly preferred
Special Requirements
Onsite role in Irvine, CA. Candidates must be available for in-person work. Strong communication and documentation skills required. Prior experience in large-scale cloud migration programs is highly preferred.
Compensation & Location
Salary: $150,000 – $200,000 per year (Estimated)
Location: Irvine, CA
Recruiter / Company – Contact Information
Email: bhuvi@synapsetechservice.com
Recruiter Notice:
To remove this job posting, please send an email from
bhuvi@synapsetechservice.com with the subject:
DELETE_JOB_ID_8827