183 applicants

Company

Original Job Post

Wind River · 3 days ago

Cloud Security Architect

United States

Full-time

Hybrid

Senior Level

$152K/yr - $225K/yr

14+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

Developer ToolsHardware

Growth Opportunities

Insider Connection @Wind River

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Architect secure by-design hybrid infrastructure and implement security controls for cloud-native solutions.

Collaborate with Product Engineering, Software Development, QA, and customer-facing teams.

Lead global projects and work with colleagues worldwide.

Ensure compliance with industry standards and frameworks like NIST SP 800-53, FEDRAMP, and OWASP.

Design and implement security for AWS and Azure native services.

Secure OnPrem and Public Cloud environments with policy as code.

Implement security for applications, networks, and back-end systems.

Utilize SAST, DAST, container, and cluster hardening.

Implement DevSecOps principles using tools like Kubernetes, Docker, Terraform, and Helm.

Utilize security tools such as Coverity, BurpSuite, Trivy, and Splunk.

Manage vulnerabilities, remediation, and troubleshooting.

Stay proactive, data-driven, and adaptable in exploring new security trends.

Lead engineers and work autonomously with strong problem-solving skills.

Communicate effectively and brainstorm ideas collaboratively.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

IT securityPublic cloud managementDevSecOps technologiesCybersecurity principlesKnowledge enhancementIndustry standardsNIST SP 800-53FEDRAMPOWASPSSDFSTIGsAWSAzureArchitecture designPolicy as codeSecurity implementationSASTDASTContainer hardeningCluster hardeningDevSecOps principlesKubernetesDockerHarborTerraformHelmSecurity toolsCoverityBurpSuiteTrivy

Required

Minimum of 14 years of IT security experience

Proficient in public cloud management leveraging IAC

Strong understanding of DevSecOps technologies

Relevant experience in cybersecurity principles and trends

Desire to increase knowledge and strong analytical skills

Proactive mindset, solid problem-solving and technical skills

Ability to lead engineers and work autonomously

Expertise with Industry standards and frameworks such as NIST SP 800-53, FEDRAMP, OWASP, SSDF and Security Technical Implement Guides (STIGs)

Deep understanding and hands-on experience in AWS and Azure native services

Architect Public Cloud (AWS, Azure etc.) and Hybrid environments

Secure OnPrem and Public Cloud environments with policy as code

Designing and implementing Application, Network, Back-end security

Solid experience in SAST, DAST, container and cluster hardening

Strong foundation of DevSecOps principles and implementations including Kubernetes, Docker, Harbor, Infrastructure as Code including Terraform and Helm

Very good understanding of security tools Coverity, BurpSuite, Trivy, PRISMA, Tenable, DockerBench, KubeBench, Splunk etc.

Good understanding of application security

Programming skills and proficiency in automation leveraging Gitlab, Jenkins, Jira, Python

Strong foundation of vulnerability management, remediation, and troubleshooting skills

Proactive, data-driven and adaptable with a willingness to explore and learn

Self-managed, fast learner, and strong problem-solving skills

Excellent verbal and written communication skills and a good listener

Ability to brainstorm and represent competing ideas simultaneously