Principal Cloud Security Architect

Press Tab to Move to Skip to Content Link

Select how often (in days) to receive an alert:

Property: 101 INNOVATION (0008)

Location:

Irvine, CA, 92617

Division:
Innovation Technology (IT)

The Principal Cloud Security Architect is responsible for developing and leading the secure cloud computing strategy for Irvine Company. This includes working with Infrastructure and Development groups to understand their Cloud Platform adoption plans, hosted application designs, and cloud management and monitoring methods.

The principal cloud security architect will define architecture patterns and standards based on industry best practices and insights regarding application architecture and deployment in cloud environments.
The Principal Cloud Security Architect will work collaboratively with domain architects and lead security engineers to build security controls and solutions compliant with approved architecture frameworks and standards.
This role also applies their cloud security, network architecture, hardening, and logging enforcement skills to lead all technical operation teams with containment and remediation work streams related to security incidents.

• Leads the overall cloud security architecture strategy and technical framework including standards/guidelines/procedures/requirements for infrastructure and software development.
• Enable the business through technical leadership to influence peers across Innovation Technology and Business Leadership to design and implement cybersecurity technology, and assist application and infrastructure teams secure implementation of technology.
• Lead security assessments, identify gaps in existing security architecture, and recommend changes or improvement.
• Lead assessment of appropriate vendor relationships related to information security tools, technology and cloud services; manage proof-of-concepts that enable the business while reducing risk; maintain currency with emerging technology; maintain security roadmap. Develop and maintain enterprise security requirements and controls that drive the selection of security tools as well as assist Business Units and IT in selecting solutions to meet their needs.
• Create solutions that align enterprise security architecture frameworks and standards (e.g. SABSA, NIST 800-53, ISO 27002) with overall business and security strategy.
• Participate as the primary security subject matter expert in the Information Technology Architecture Committee (ITAC) by reviewing risks of new technology, ensuring secure integration of technology and driving a secure architecture roadmap.
• Maintain a leadership role in the Architecture Review Committee through extensive experience in security technology and cloud architecture to drive a balanced approach to Irvine Company’s overall technical architecture. This responsibility also requires mentorship of domain architects to mature their techniques and to think beyond their specific area of responsibility.
• Establish and manage the threat management/intelligence program (including threat modeling, assessment, hunting) to support the Security Operations Center (SOC) and integrate with the risk management functions.
• Assist Security Operations to assess and investigate security incidents, and work with application and operations teams throughout the investigation cycle to ensure remediation, eradication and lessons learned are rolled back into daily operations.
• Build and maintain the Secure Software Development Lifecycle (SSDLC) including the development of secure coding standards, testing services, testing infrastructure, and compliance processes.
• Manage the development and maintenance of the data protection program including discovery, data-flow/mapping and Data Loss Prevention (DLP).
• Help identify new exploits, threats, and mitigations for detection engineering and define and maintain domain and enterprise level threat modeling.
• Mentor junior cybersecurity staff in cybersecurity technology, architectural methods and technical process development.

Education & Experience:

• Bachelor's degree in computer science, engineering or related field.
• 15+ years in information risk management and information security technology, including 5+ years in security architecture and 5+ years in a cloud environment.
• Strong written and verbal communications skills with the ability to create and present technical recommendations to executive management as well as influence and persuade peers and others.
• Demonstrate a deep understanding of cloud concepts and architectures with a focus for how security controls are applied to cloud-based technologies. Example cloud concepts include, but are not limited to:
  • Architecture & Networking
  • Identity & Access Management
  • Securing the CI/CD Pipeline
  • Secrets and Data Protection
  • Logging, Detection, and Response
  • Security Controls for Containers (e.g., Docker, Kubernetes)
  • Experience managing cloud projects.
  • Deep understanding and implementation of…