Cloud Security Architect

Cloud Security Architect

Whitehall Resources are currently looking for a Cloud Security Architect

Key Requirements:

– Work closely with the CSA to develop a cohesive security architecture framework and operating model to ensure that each system, cloud service and business segment has appropriate, approved technical security controls to detect and defend against attacks which may include APT.
– Strong understanding of cloud infrastructure, and security design.
– Have a detailed understanding of cloud platforms like AWS and Azure (AWS is preferential for End client).
– Strong knowledge of networking concepts (ex: VPN, ACLs, VLANs, Security Groups, proxy, CASB).
– Have detailed knowledge and deployment experience in SaaS, PaaS rollout and hybrid integration activities.
– Must be able to ensure that implementation of all identified cloud based technical controls are appropriate as part of a consistent and repeatable cloud delivery model or pattern.
– Able to support business programmes utilising agile working practices, DevOps methodologies and Continuous Integration/Development/Testing.
– Have strong understanding or experience in dealing with containerisation workloads, including Docker, Kubernetes, OpenStack etc.
– Familiar with Data Protection law requirements including US ITAR and support any other relevant legislation and/or regulation required.
– Can clearly identify any conflicts of interest, legal exposure, ethical challenges and possible internal/external malpractice as part of their core work activities.
– Can explain issue in a clear way to the appropriate internal governance forum or Senior Management Team affected.
– Delivery of specific projects and initiatives as agreed by the CSA.
– Review Change Proposals (CPs) / Requests for Change (RFCs) for security considerations, ensuring peer reviews are conducted for all Delivery Assurance Reviews (DARs) / Solution Assurance Reviews (SARs) for alignment with wider security strategy and architecture.
– Actively support the Security Improvement Programme (SIP) initiatives within the organisations wider business areas.
– Input into a programme of certification and the actions necessary to maintain these certifications across the organisation, providing regular progress reports and guidance to the CSA and CISO as required.
– Keep their technical skills current in the context of the technical cloud security infrastructure and applications used within the organisation, as well as surveying the future technical landscape to advise on countermeasures required to mitigate risks in future operating model architectures.
– Must be willing to attend cloud security seminars and events and actively enhance their skillset through training and certification.
– Build and maintain a core network of contacts so that questions can be answered quickly, ensuring that the organisation benefits from the wider IA knowledge within commercial or industry bodies which in turn contributes to a wider body of knowledge.
– Deliver the contractual obligations of Security and IA, as set out in any Cloud Contracts and be able to input or improve them where needed.
– Develop and support the Security Architecture frameworks used and risk documentation for any security controls across the wider business and work closely with others to achieve this.
– Support the CSA in defining the standards for the cloud security controls.
– Must be prepared to travel globally on a regular basis as and when required due to the nature of the business operational landscape.

Key Experience:

– Be a member of a professional IT or security body (e.g. IISP, BCS).
– Strong technical background (Specifically security design principles for applications, networks and supporting infrastructure).
– Excellent communication skills, both written and verbal.
– Excellent analytical and problem-solving skills.


All of our opportunities require that applicants are eligible to work in the specified country/location, unless otherwise stated in the job description.