Cloud Infrastructure & DevSecOps Architect (AWS)
Experience: 12+ Years
Role Description
The Cloud Infrastructure & Security Architect is responsible for designing, securing, and governing enterprise-scale cloud infrastructure environments across AWS and GCP platforms. This role focuses on cloud security engineering, vulnerability remediation, infrastructure automation, operational governance, and long-term platform resilience within highly regulated enterprise environments.
The position requires strong expertise in AWS cloud architecture, Infrastructure as Code (IaC), cloud security operations, and enterprise remediation strategies. The Architect will work closely with cloud engineering, production services, DevOps, and security teams to build scalable, secure, and operationally mature cloud environments.
Cloud Environment & Platform Scope
Enterprise public and hybrid cloud environments including:
- AWS (primary platform)
- Google Cloud Platform (GCP) preferred platform for data and AI workloads
- Multi-region cloud architectures supporting enterprise operations
- Enterprise production, pre-production, and development environments
- Secure and regulated cloud infrastructure environments
Cloud Engineering & Security Responsibilities
- Define enterprise cloud security architecture and remediation standards
- Lead remediation of cloud vulnerabilities, exposure risks, and insecure configurations
- Perform root-cause analysis of recurring operational and security issues
- Implement long-term preventive remediation strategies
- Drive secure-by-default cloud engineering practices
- Collaborate with cloud engineering and infrastructure automation teams
- Improve cloud security posture across compute, storage, networking, and identity layers
- Support enterprise cloud governance and operational excellence initiatives
Infrastructure as Code (IaC) & Automation
- Terraform as the primary Infrastructure-as-Code standard
- Secure infrastructure provisioning using Terraform and cloud-native tooling
- Integrate security and compliance controls into automation pipelines
- Standardize scalable remediation and configuration management processes
- Support automation initiatives using Python and cloud-native APIs
Security Operations & Exposure Management
- Lead vulnerability management and exposure reduction initiatives
- Work with cloud security tooling including Qualys and compliance platforms
- Remediate:
? VM vulnerabilities
? Public access misconfigurations
? Storage security gaps
? Identity and access control weaknesses
? Cloud infrastructure control failures
- Support enterprise cloud security operations in regulated environments
Leadership Responsibilities
- Mentor cloud and DevOps engineers
- Define remediation engineering best practices
- Support incident response and post-incident remediation activities
- Collaborate with global operational teams including US timezone overlap
- Contribute to enterprise cloud governance and risk reduction programs
Required Qualifications
- 8+ years of experience supporting enterprise cloud infrastructure
- Strong hands-on expertise with AWS cloud services
- Experience with Google Cloud Platform (GCP)
- Strong experience with Terraform and Infrastructure as Code (IaC)
- Deep understanding of cloud security engineering and vulnerability remediation
- Experience working in regulated enterprise environments
- Strong troubleshooting and root-cause analysis skills
- Experience with Python automation and cloud-native tooling
- Ability to lead cloud engineering and remediation initiatives independently
Preferred Qualifications
- Financial services or highly regulated industry experience
- Experience with Qualys or similar vulnerability management platforms
- Familiarity with cloud compliance and posture management tooling
- Exposure to DevSecOps and cloud governance frameworks
- Experience supporting enterprise production operations
