Apetan Consulting
Rutherford, NJ
Post Resume to
View Contact Details &
Apply for Job
Job Description :

Cloud Security Risk and Governance Architect

100% Remote

Job Summary:

We are seeking an experienced Cloud Security Risk and Governance Architect to design, implement, and oversee cloud security governance frameworks. The role focuses on managing risks, ensuring compliance, and strengthening security posture across cloud environments while aligning with business and regulatory requirements.

Key Responsibilities:

Cloud Security Architecture & Governance:

  • Define and implement cloud security governance frameworks, policies, and standards
  • Design secure architectures across cloud platforms such as Amazon Web Services, Microsoft Azure, and Google Cloud Platform
  • Establish security baselines, guardrails, and best practices

Risk Management:

  • Identify, assess, and mitigate cloud security risks and vulnerabilities
  • Conduct risk assessments, threat modeling, and security reviews
  • Develop risk registers and remediation strategies

Compliance & Regulatory Alignment:

  • Ensure compliance with industry standards and frameworks such as ISO/IEC 27001, NIST, and GDPR
  • Support audits, certifications, and regulatory reporting
  • Define and monitor security controls and KPIs

Identity & Access Management:

  • Design and enforce IAM strategies including least privilege and role-based access
  • Implement strong authentication mechanisms (MFA, conditional access)
  • Oversee identity governance and privileged access management

Monitoring & Incident Response:

  • Implement cloud security monitoring, logging, and alerting mechanisms
  • Collaborate with SOC teams on incident detection and response
  • Ensure proper handling of security incidents and root cause analysis

Collaboration & Advisory:

  • Work with DevOps, engineering, and business teams to embed security in design
  • Provide security guidance for cloud migrations and digital transformation projects
  • Promote security awareness and best practices across teams

Required Skills & Qualifications:

  • Bachelor’s or Master’s degree in Cybersecurity, IT, or related field
  • 8–12 years of experience in cybersecurity, with strong focus on cloud security
  • Hands-on experience with AWS, Azure, or GCP security services
  • Strong understanding of risk management and governance frameworks
  • Knowledge of IAM, network security, encryption, and cloud-native security tools
  • Experience with security tools such as SIEM, CASB, and CSPM
  • Familiarity with scripting (Python, PowerShell, or similar)

Preferred Qualifications:

  • Certifications such as CISSP, CCSP, CISM, or cloud security certifications
  • Experience with DevSecOps and CI/CD security integration
  • Knowledge of container and Kubernetes security
  • Experience in regulated industries (finance, healthcare, etc.)

Soft Skills:

  • Strong analytical and risk assessment skills
  • Excellent communication and stakeholder management
  • Strategic thinking with attention to detail

Experience Level:

8–12 years

             

Similar Jobs you may be interested in ..