×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Cloud Computing IT Consultant Systems Engineer

Cloud Security Architect

Job in Westbrook, Cumberland County, Maine, 04098, USA
Listing for: USC1 IDEXX Laboratories, Inc.
Full Time position
Listed on 2026-06-02
Job specializations:
  • IT/Tech
    Cybersecurity, Cloud Computing, IT Consultant, Systems Engineer
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below

About the Role

Our cybersecurity and information security teams at IDEXX rely on a resilient, adaptable, and security‑aware enterprise prepared to navigate today’s evolving threat landscape. We are seeking a Cloud Security Architect to lead our multi‑cloud security architecture across AWS, Azure, and GCP environments. In this senior‑level position you will architect and implement CSPM solutions, drive security standards enforcement, and partner with engineering teams to embed security controls directly into cloud deployment pipelines.

It reports to the Senior Manager of Product & Application Security and works closely with Dev Ops engineers and cloud platform owners across the organization.

Responsibilities
  • Architect and implement cloud security posture management (CSPM) across AWS, Azure, and GCP environments supporting IDEXX products and applications.
  • Lead the migration from Aqua Sec to Crowd Strike Falcon CSPM, ensuring continuity of visibility and compliance enforcement.
  • Maintain compliance with CIS Benchmarks Level 1 across all cloud platforms.
  • Design monitoring and alerting strategies that surface actionable security gaps to security and engineering teams.
  • Implement automated security scanning and policy enforcement for Terraform, Cloud Formation, and other IaC frameworks.
  • Integrate tools such as Crowd Strike Falcon, Checkov, and Trivy into CI/CD pipelines to prevent misconfigurations before deployment.
  • Develop policy‑as‑code frameworks that codify security requirements and enable self‑service compliance.
  • Embed security controls directly into cloud deployment pipelines using native platform capabilities and third‑party tooling.
  • Partner with Dev Ops teams to build secure‑by‑default infrastructure templates and golden paths.
  • Conduct architecture reviews for new cloud services and deployment patterns.
  • Translate complex security requirements into practical, actionable guidance for engineering teams.
  • Conduct cloud security assessments, threat modeling, and architecture reviews for critical workloads.
  • Identify and prioritize security risks based on business impact, exploitability, and compensating controls.
  • Work with product teams to implement mitigations that balance security effectiveness with operational feasibility.
  • Manage and optimize cloud‑native security tooling including CSPM, CNAPP, and secret scanning solutions.
  • Build automation to reduce manual security work and improve consistency of controls.
  • Establish metrics and reporting that demonstrate security posture improvement and compliance trends.
Qualifications
  • 7–10+ years of experience in information security with at least 5 years focused on cloud security architecture.
  • Hands‑on experience implementing and operating CSPM solutions in multi‑cloud environments.
  • Deep hands‑on experience architecting security controls in AWS, Azure, and GCP production environments.
  • Proficiency with CSPM tools such as Crowd Strike Falcon, Wiz, Prisma Cloud, or similar platforms.
  • Strong knowledge of CIS Benchmarks, cloud security frameworks (CSA CCM, NIST), and compliance standards (SOC2, GDPR, HIPAA).
  • Expertise in Infrastructure‑as‑Code security scanning and policy enforcement (Checkov, Trivy, Terraform Sentinel, OPA).
  • Experience integrating security controls into CI/CD pipelines using Git Hub Actions, Git Lab CI, Jenkins, or Azure Dev Ops.
  • Solid understanding of container security, Kubernetes security, and serverless security patterns.
  • Proficiency with scripting and automation languages such as Python, Bash, and Power Shell.
  • Proven track record architecting security controls for large‑scale cloud deployments.
  • Experience with CIS Benchmarks implementation and compliance enforcement.
  • Strong understanding of cloud‑native architecture patterns and security implications.
  • Bachelor’s degree in Computer Science, Information Security, or equivalent practical experience.
  • Proven ability to design security architectures that scale across large, complex cloud environments.
  • Track record of successfully partnering with Dev Ops and engineering teams to implement security without blocking delivery.
  • Experience driving security tool migrations and consolidations with minimal disruption.
  • Strong analytical…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search