Cloud Security Architect - Brooksource : Job Details

Cloud Security Architect

Remote with Quarterly Travel to Birmingham, AL *Required*

Contract-to-Hire

**Unable to Provide Sponsorship or do C2C**

We are seeking a seasoned Cloud Security Architect to lead the secure design, implementation, and governance of cloud infrastructure—primarily within Amazon Web Services (AWS). This role is ideal for a hands-on security professional with deep expertise in cloud-native security, infrastructure-as-code, and secure DevOps practices. You will play a critical role in shaping our cloud security posture, collaborating across teams, and ensuring secure, scalable, and compliant cloud environments.

Key Responsibilities:

Cloud Security Architecture & Design

• Define and implement cloud security architecture standards, patterns, and best practices for AWS environments.
• Design secure cloud solutions that align with business and compliance requirements.

Security Configuration & Operations

• Configure and manage AWS security services including IAM, KMS, VPC security, GuardDuty, CloudTrail, and Security Hub.
• Implement encryption, firewalling, logging, monitoring, and incident response capabilities.

Collaboration & Leadership

• Partner with enterprise architecture, DevOps, IT support, and third-party vendors to ensure secure deployments.
• Lead security reviews and threat modeling for new cloud initiatives and technologies.

Automation & Documentation

• Develop infrastructure-as-code templates (e.g., Terraform, CloudFormation) to automate security controls.
• Document security procedures and create runbooks for operational handoff.

Knowledge Sharing & Mentorship

• Provide cross-training and mentorship to team members in a collaborative, agile environment.
• Stay current with emerging cloud security trends and technologies.

Required Skills & Experience:

• 5+ years of experience in cloud security architecture or engineering, with a strong focus on AWS.
• Deep knowledge of AWS security services and best practices.
• Hands-on experience with infrastructure-as-code tools (e.g., Terraform, CloudFormation).
• Familiarity with container security (e.g., OpenShift, Kubernetes) and DevSecOps pipelines.
• Exposure to Microsoft Azure or other cloud platforms for cross-training and hybrid cloud scenarios.
• Strong problem-solving skills and the ability to work independently in dynamic, evolving environments.
• Excellent communication and collaboration skills across technical and non-technical teams.

Preferred Qualifications:

• Relevant certifications such as AWS Certified Security – Specialty, Certified Cloud Security Professional (CCSP), or CISSP.
• Experience with compliance frameworks (e.g., NIST, ISO 27001, HIPAA, SOC 2).
• Familiarity with CI/CD tools and secure software development lifecycle (SDLC) practices.

BENEFITS OF WORKING WITH BROOKSOURCE:

• Direct communication with the hiring manager, which allows us to move candidates through the interview process faster.
• Dedication to keep an open line of communication and provide full transparency.

We are an equal opportunity employer and value diversity at our company. We do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.