Cybersecurity Architect; Remote

Overview

The Cloud Security Architect will serve as a key technical resource in Global Cyber and Information Security (GCIS) organization. You will be responsible for developing and/or maturing Security architecture approach with Cloud first mindset, recommended standards, reference architecture designs and narratives. You’ll need to keep current on Security architecture best practices and provide direction for Cloud technical specifications. You will work closely with other Information Security colleagues, IT & Infrastructure organization, and Business teams globally to provide security architecture guidance and recommendations.

Take a leadership role and influence Security architecture by example and clearly articulating objectives. Assess, review and design secure Cloud solutions working with various business teams and groups. Promote Cloud security awareness in interactions with other teams. Use a data‑centric risk‑based approach to cloud security and solutions. Define and create Security architectural standards, artifacts, design patterns and technical specification documents for the enterprise.

Assess, monitor and recommend security improvements and best practices to improve security posture, mitigate risks and balance costs. Work with direction from the Cyber leadership and closely with the Enterprise architecture, engineering and operations and security engineering team member(s) to ensure Cloud platforms are matured and securely configured. Oversee and consult with project teams in business units to ensure adherence to Cloud security design patterns and best practices.

Engage with M&A teams to integrate acquired resources into the Gallagher cloud. Design, collaborate and provide Cloud options for solutions that balance business requirements with information security requirements. Proactively identify technical and architectural risks for current or proposed state, commenting and/or providing Cloud alternatives for consideration that will improve on capabilities, champion to present for approval and change. Participate in security technology evaluations, proof of concept testing and provide in-depth analysis of the proposed solution.

Collaborate and partner with various key stakeholders across the enterprise to ensure alignment with the overall intended design. Partner with architects and engineers within infrastructure, network, application and business teams to ensure that solutions are developed and managed as per GCIS policies and standards. Assists with risk mitigation and governance activities aligned with Cloud security architecture compliance. Enable architectural leadership within engaged and assigned forums and projects, acting as a guide by example for collaboration, thought leadership and expertise in Cloud security architecture.

Strong communications skills - oral and written. Self‑starter with strong work ethic. Flexible and resilient, handle various demands planned and unplanned. Proven ability to handle multiple tasks and projects simultaneously. Problem solver and desire to close issues, pragmatic and realistic with solutions. Resilient and collaborative, motivated to pro‑actively drive issues to successful mutually agreed upon resolutions.

• Bachelor’s degree or equivalent in Computer Science or related field
• Minimum 3+ years working with Microsoft Azure
• Minimum 3+ years of cybersecurity experience
• 2+ years of experience working with other cloud platforms (AWS, GCP, Oracle)
• Minimum 1+ year of experience reviewing detailed solution architectures and providing feedback to the application and infrastructure teams
• Experience with reviewing and developing Cloud solution enabled models and security monitoring tooling
• Minimum 1+ year of experience with multi‑cloud security and aligning policies across platforms
• Demonstrated working experience in a regulated and globally distributed environment
• Knowledge and experience in enterprise architecture frameworks such as TOGAF
• Knowledge and experience implementing security standards frameworks (NIST CSF, ISO 27001, CSA CCM, PCI‑DSS, GDPR)
• Proven success recommending and implementing Cloud security architecture…