Cloud and Application security leader
Listed on 2026-07-11
-
IT/Tech
Cybersecurity, Cloud Computing: Infrastructure & Operations, Information Security, Systems Engineer
About Global Foundries
Global Foundries is a leading full-service semiconductor foundry providing a unique combination of design, development, and fabrication services to some of the world’s most inspired technology companies. With a global manufacturing footprint spanning three continents, Global Foundries makes possible the technologies and systems that transform industries and give customers the power to shape their markets.
Summary of RoleThe Cloud & Application Security Leader is responsible for defining, driving, and operationalizing security strategy across Global Foundries’ cloud platforms and application ecosystem. This role oversees the protection of cloud-hosted workloads, enterprise applications, and intellectual property by establishing secure architecture, governance, and engineering practices across AWS, Azure, and other platforms. The leader will partner closely with Cloud Engineering, Application Development, Enterprise Architecture, and Cyber Defense teams to embed security into the full technology lifecycle—from design through operations—ensuring alignment with regulatory, contractual, and operational requirements.
This role is critical to enabling secure cloud adoption, protecting sensitive manufacturing and R&D data, and maintaining customer trust in a highly regulated environment.
- Evaluates, tests, monitors, and maintains information systems (IS) and cyber security policies, procedures and systems I
- Creates, implements and oversees identity management systems to meet specific security needs and complex compliance standards
- Ensures that IS and cyber security plans, controls, processes, standards, policies and procedures are aligned with IS standards and overall IS and cyber security
- Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents and improve security
- Develops techniques and procedures for conducting IS, cyber security and access and identity risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents such as intrusion, frauds, attacks or leaks
- Define and execute cloud security strategy across multi-cloud (AWS, Azure, GCP). Establish secure architecture patterns for IaaS, PaaS, and SaaS workloads.
- Partner with cloud engineering to embed preventative and detective controls across shared platforms.
- Implement and mature Cloud Security Posture Management (CSPM) for continuous monitoring and compliance validation.
- Lead secure software development practices aligned to security-by-design (SDLC integration).
- Establish and scale capabilities for SAST, SCA, and API security
- Serve as key partner and liaison to CIO/CISO to drive adoption of security practices and awareness throughout Globalfoundries
- Bachelor’s or Master’s degree in Computer Science, Information Security, or related field
- 10+ years of experience in cybersecurity, with significant focus on cloud and application security
- Deep expertise in public cloud platforms (AWS, Azure, GCP) and secure architecture design
- Strong understanding of full-stack security (network, infrastructure, OS, database, and applications)
- Proven experience implementing cloud security controls, IAM, and encryption standards
- Hands‑on experience with CSPM, CI/CD security, and Dev Sec Ops practices
- Experience working in regulated environments with strong compliance requirements
- Demonstrated leadership experience managing cross‑functional teams and complex programs
- Experience in semiconductor, manufacturing, or highly regulated industries
- Familiarity with Global Foundries cloud operating model and hybrid/multi‑cloud environments
- Expertise in Zero Trust architecture and modern identity security models
- Experience with security automation, AI‑driven security analytics, and advanced threat detection
- Industry certifications such as CISSP, CCSP, AWS Security Specialty, or Azure Security Engineer
- Experience integrating security with enterprise platforms (e.g.,…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).