Cloud Architect

This hybrid role combines hands‑on BigID platform leadership with strategic AWS cloud security architecture. You'll lead BigID deployment/management on AWS while architecting secure migration patterns for critical applications. Expect to wear two hats: tactical platform ops + strategic security design for enterprise data governance and cloud transformation.

• Deploy and operate BigID for data discovery, classification, privacy compliance (GDPR, CCPA, HIPAA) across DEV/QA/PROD
• Architect AWS security patterns for application migrations (rehost/replatform/refactor), defining golden paths and guardrails
• Bridge technical teams, app owners, and business stakeholders—making security an enabler, not a blocker

• Install, configure, maintain BigID across environments; onboard data sources, validate scans, optimize pipelines (Spark/Hadoop)
• Implement data governance: classification, sensitivity labeling, masking/redaction, compliance enforcement
• Manage API integrations, Python/Shell scripting, cloud expansion (AWS/GCP + Alation)

• Define reusable security patterns/guardrails for AWS migration (IAM, VPC, Security Groups, Guard Duty, KMS)
• Lead design reviews, threat modeling, migration strategy assessments (shift security left)
• Establish data protection requirements: encryption, classification, compensating controls

• Guide technical teams on architecture, scalability, enterprise data strategy
• Translate risks to business language for app owners/executives
• Troubleshoot issues, drive platform adoption, align on priorities/risk appetite

• Data Security
  :
  Privacy frameworks (GDPR/CCPA/HIPAA), governance, classification best practices
• Technical
  :
  Python/Shell scripting, API integrations
• Architecture
  :
  Design reviews, threat modeling, migration strategies (rehost/replatform/refactor)
• Communication
  :
  Explain security impact to non‑technical leaders

• Certs: CISSP, CCSP, AWS Certified Security – Specialty
• Frameworks: NIST, ISO 27001, SOC2

• Primary
  :
  BigID, AWS (IAM/VPC/Guard Duty/KMS), Spark/Hadoop
• Identity
  :
  Okta, AWS IAM, Sail Point