Principal, Cloud Security Architect; Director Level), Global Cyber Security, RBC Brewin Dolphin
Listed on 2026-07-02
-
IT/Tech
Cybersecurity, Cloud Computing: Infrastructure & Operations
Location: Greater London
Job Description
The Principal Cloud Security Architect will lead the design, engineering, and delivery of cloud security solutions across RBC’s Azure enterprise environment. This role owns end-to-end security architecture and hands‑on implementation, drives enterprise‑scale operationalisation of cloud security capabilities, embeds security into CI/CD pipelines and infrastructure‑as‑code, and partners with Regulatory, Compliance, and Audit functions to ensure controls meet regulatory frameworks and industry standards.
The ideal candidate combines deep technical expertise with strategic leadership—equally comfortable whiteboarding architecture, writing the Terraform to implement it, and guiding teams through complex security transformations at scale.
This is a permanent, full‑time role and requires 4 days at our 10 Fenchurch Avenue, London office.
What will you do? Strategic Leadership & Architecture- Lead efforts to secure the Azure cloud platform at RBC Brewin Dolphin, serving as the primary security subject‑matter expert for Azure‑native services, identity, networking, and data protection controls.
- Lead, execute, and deliver on Cloud Security strategy and initiatives with measurable outcomes.
- Build, innovate, and mature Cloud Security capabilities at RBC Brewin Dolphin.
- Lead the development of end‑to‑end technical cloud security design and architecture to ensure safe application onboarding to meet sponsor/stakeholder needs without impacting planned time to market timelines.
- Conduct threat modeling, security architecture assessments, and cloud service security reviews to ensure alignment with industry best practices and RBC’s risk appetite.
- Architect and drive security strategy for Azure Kubernetes Service (AKS) and Open Shift Container Platform, including cluster hardening, admission control, runtime security, image assurance, network policy, secrets management, and workload identity.
- Define and implement security controls for Azure infrastructure supporting AI/ML workloads, including compute provisioning, networking, storage, identity, and platform services (Microsoft Foundry / Azure OpenAI Service, Azure Machine Learning).
- Lead the enterprise deployment and operationalisation of Wiz CNAPP, including CSPM, CWPP, CIEM, DSPM, and container/Kubernetes security capabilities—driving policy‑as‑code, risk prioritisation, and remediation workflows at scale.
- Embed security into CI/CD pipelines and software supply chain (Git Hub Actions, Terraform, ArgoCD, Helm) through automated scanning, policy enforcement, IaC security validation, and shift‑left developer tooling.
- Lead and build preventative and detective controls/measures according to RBC Brewin Dolphin’s cloud control objectives while using modern automation, config‑as‑code, and TDD principles to bring reliability.
- Lead and build automated reporting and monitoring solutions to provide feedback to developers and help them shift left and recognise security gaps early.
- Experience in hardening and safeguarding cloud services and preventing config drift with native or third‑party tools (CSPM, IaC, linter).
- Architect, engineer, and deploy cloud security solutions end‑to‑end—owning the full lifecycle from design through implementation, testing, and production delivery.
- Partner with Regulatory, Compliance, and Audit teams to ensure cloud security controls satisfy industry standards, SOX, PCI‑DSS, and internal risk frameworks—translating regulatory expectations into technical control implementations and evidence automation.
- Communicate and collaborate with application developers to remediate security vulnerabilities for their applications and/or resources.
- Work with cloud stakeholders to design, build, and validate Cloud Security controls.
- Ability to partner effectively with key stakeholders on complex projects with excellent communication, facilitation, and presentation skills.
- Demonstrable experience in Cyber Security, with a focus on cloud security architecture and engineering.
- Deep hands‑on expertise with Microsoft Azure security (Defender…
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search: