Principal Cloud Security Architect

Security EngineerSecurity EngineerFull TimeRemoteTeam 10,001+Since 1937H1B No SponsorCompany Site LinkedIn

Location

United States

Posted

58 days ago

Salary

Not specified

Bachelor Degree10 yrs expEnglishAWSCloudGoogle Cloud PlatformKubernetesMicroservicesPythonTerraformGo

Job Description

• Develop and enforce secure-by-design principles for cloud-native applications on AWS and GCP. • Embed security into DevSecOps pipelines, ensuring early detection of vulnerabilities (Shift Left). • Architect zero-trust security models for cloud services, APIs, and microservices. • Multi-Cloud Security Engineering & Automation • Lead the deployment of AWS and GCP security services, including GuardDuty, Security Hub, IAM, WAF, Shield, Macie (AWS) and Security Command Center, IAM, and others. • Implement automated security testing in CI/CD pipelines to ensure infrastructure-as-code (IaC) security compliance using Terraform, CloudFormation, and Kubernetes (EKS/GKE). • Drive container security best practices in Kubernetes (EKS/GKE) and serverless security for Lambda and Cloud Functions. • Architect API security frameworks for high-traffic sports betting and gaming applications. • Design and enforce strong authentication, tokenization, and API gateway security. • Deploy advanced AWS WAF, Google Cloud Armor, and API security solutions to detect and mitigate abuse, fraud, and bot traffic. • Enhance cloud-native detection and response capabilities for fraud, arbitrage betting, identity abuse, and payment security. • Implement behavioral analytics and ML-driven security detection to combat fraud, money laundering, and account takeovers. • Work closely with AWS and GCP security teams to enhance cloud-native incident response capabilities. • Ensure cloud security architecture aligns with PCI-DSS, ISO 27001, NIST, and gaming compliance regulations. • Partner with fraud, legal, and compliance teams to enforce AML (Anti-Money Laundering) and KYC (Know Your Customer) security measures. • Automate compliance monitoring across AWS and GCP environments.

Job Requirements

5+ years of work experience securing and monitoring CI/CD pipelines and AWS cloud infrastructure.
7+ years of cloud experience in IT field.
10+ years of Information Technology or Information Security experience.
Expertise in writing Lambda functions in Python or Go.
Strong command and understanding of AWS and GCP Security Reference Architecture (SRA).
Deep expertise in AWS and GCP security best practices, including IAM, VPC security, WAF, SIEM, CNAPP, and workload protection.
Strong experience embedding Shift Left security in CI/CD pipelines with automated security testing.
Hands-on experience securing high-traffic APIs, microservices, and Kubernetes (EKS/GKE) workloads.
Experience mitigating API abuse, fraud, and adversarial traffic.
Strong knowledge of cloud-native security tools and DevSecOps automation.
Experience using Terraform to deploy security-oriented infrastructure and configure security services.
Proven leadership skills with the ability to manage and mentor a team.
Excellent communication and collaboration skills to work effectively with stakeholders at all levels.
Strong problem-solving skills and the ability to think critically and strategically.