Security Architecture Senior Architect

We are seeking a Senior Cloud Security Architect to support and contribute to the design, implementation, and continuous governance of our multi-cloud security posture. This role is a subject matter expert for cloud security across Azure, AWS, Oracle Cloud Infrastructure (OCI), and Google Cloud Platform (GCP). The ideal candidate brings deep CSPM expertise, proven architecture experience across multiple platforms, and the ability to contribute to security strategy within an enterprise environment.

Cloud security is a critical organizational initiative. This position requires strong execution, collaboration, and accountability. The Senior Cloud Security Architect will design controls and support implementation-contributing to the direction of cloud programs across business units.

The ideal candidate proactively identifies gaps in cloud security posture and recommends improvements. They are equally comfortable writing Terraform policy-as-code as they are supporting communication of cloud risk to leadership. They bring experience contributing to CSPM program maturity, developing policy frameworks, and partnering with engineering teams to improve secure design practices

Cloud Security Posture Management (CSPM) - Core Focus

• Support execution of the enterprise CSPM strategy across cloud platforms, with primary depth in Azure and AWS
• Contribute to the design and implementation of CSPM policy frameworks aligned to CIS Benchmarks, NIST 800-53, and internal standards
• Participate in continuous posture assessment, scoring, and remediation across Azure and AWS environments
• Extend CSPM coverage to OCI and GCP as secondary platforms
• Implement and tune CSPM tooling
• Assist in development of policy-as-code guardrails at the account and subscription level
• Support development of dashboards and reporting for cloud security posture and risk trends
• Support Cloud Detection and Response (CDR) capabilities and integrate CSPM signals into SIEM/SOAR workflows
• Configure alert routing and contribute to detection rules and playbooks
• Coordinate remediation activities with cloud, DevOps, and application teams
• Support prioritization of findings based on risk and business impact
• Track remediation activities and support escalation of aging issues
• Contribute to exception and risk acceptance workflows
• Support development of benchmarks, scoring methodologies, and posture reporting
• Contribute to maturity assessments and improvement tracking

Cloud Security Architecture - Azure & AWS (Primary)

• Contribute to cloud security architecture for Azure and AWS environments
• Support architecture reviews, threat modeling, and security design sessions
• Support implementation of zero-trust principles across cloud and hybrid environments
• Support development and implementation of cloud security standards across identity, network, data, and monitoring domains
• Contribute to hybrid connectivity security design (ExpressRoute, Direct Connect, VPN)
• Support secure Infrastructure-as-Code (IaC) patterns using Terraform, Bicep, ARM, and CloudFormation
• Contribute to governance of multi-account and multi-subscription environments

OCI & GCP (Secondary / Tertiary)

• Support security architecture activities for OCI and GCP environments
• Contribute to baseline standards, posture assessments, and remediation efforts

Support integration of security telemetry into centralized platforms

Governance, Risk & Compliance

• Support development of a multi-cloud security governance framework
• Map cloud controls to compliance frameworks (NIST, CIS, PCI, SOX, ISO, etc.)
• Conduct architecture reviews and support risk assessments
• Participate in audits and support remediation tracking
• Maintain documentation, standards, and runbooks

Leadership & Stakeholder Engagement

• Serve as a subject matter expert for cloud security
• Collaborate across Security, Cloud, DevOps, and business teams
• Provide guidance to cloud security engineers
• Support communication of security insights to leadership
• Participate in working groups and architecture forums

• Bachelor's degree in Computer Science, Information Security, Engineering, or a related technical discipline
• Equivalent combination of relevant coursework and demonstrable professional experience will be considered
• Advanced degree (Master's in Cybersecurity or Information Assurance) is a plus
• 8-10 years of experience in information security with progressive cloud security experience
• Strong hands-on experience in Azure and AWS security architectures
• Experience contributing to CSPM programs (design support, tooling, policy, remediation coordination)
• Experience contributing to architecture and governance of multi-account cloud environments
• Experience securing hybrid (on-prem + cloud) environments
• Experience with Infrastructure-as-Code and DevSecOps integration
• Scripting/automation skills (Python, PowerShell, etc.)
• Experience with IAM, SIEM/SOAR, zero-trust, vulnerability management, and cloud-native security tools
• Familiarity with compliance frameworks (NIST, CIS, etc.)
• Experience in regulated environments preferred

Professional Skills:

• Proactive and collaborative mindset
• Strong communication skills across technical and business audiences
• Ability to influence without authority
• Detail-oriented with ability to operate across strategic and tactical levels
• Comfortable in fast-paced environments
• Continuous learning mindset

Certifications

Candidates holding one or more of the following certifications will be strongly preferred:

Category Certification Azure (Priority) Microsoft Certified: Cybersecurity Architect Expert Azure (Priority) Microsoft Certified: Azure Security Engineer Associate Azure (Priority) Microsoft Certified: Azure Solutions Architect Expert AWS AWS Certified Security - Specialty AWS AWS Certified Solutions Architect - Professional Oracle Cloud Oracle Cloud Infrastructure 2024 Security Professional Multi-Cloud / General Certified Cloud Security Professional (CCSP) Multi-Cloud / General Certified Information Systems Security Professional (CISSP) Multi-Cloud / General Google Cloud - Professional Cloud Security Engineer Multi-Cloud / General CompTIA Cloud+ or equivalent

The successful candidate will embrace Vertiv's Core Principals & Behaviors to help execute our Strategic Priorities., No calls or agencies please. Vertiv will only employ those who are legally authorized to work in the United States. This is not a position for which sponsorship will be provided. Individuals with temporary visas such as E, F-1, H-1, H-2, L, B, J, or TN or who need sponsorship for work authorization now or in the future, are not eligible for hire.

Vertiv is a $10.2 billion global critical infrastructure and data center technology company. We ensure customers' vital applications run continuously by bringing together hardware, software, analytics and ongoing services. Our portfolio includes power, cooling and IT infrastructure solutions and services that extends from the cloud to the edge of the network. Headquartered in Columbus, Ohio, USA, Vertiv employs around 20,000 people and does business in more than 130 countries. Visit Vertiv.com to learn more.