Cloud Security Architect at Netskope

Responsibilities:

• Build and leverage threat models to secure core cloud platform services
• Establish protections/requirements to enable product team usage of emergent cloud features
• Co-author next generation cloud platform designs accounting for evolving threat and product landscapes
• Describe solutions intent within the solutions associated operating environment, determine the primary systems/subsystems & their interfaces, and define functional & non-functional requirements 
• Ensure solutions are fit for purpose and ensure their use by working with stakeholders, vendors/service providers, and evaluating the impact of strategic design decisions 
• Contribute to the development of best practices including standardized templates 
• Work with Product Managers/Owners to plan and prioritize technology focused backlog items for the architecture runway to enable business epics/features and expand into new opportunities 
• Clarify the architecture for the engineering teams to support implementation and provide solutions to resolve any architectural impediments
• Perform both design and code reviews to ensure all functional & non-functional requirements for a solution are sufficiently met (e.g., security, scalability, usability, reliability, maintainability, and performance) 
• Develop security patterns, standards, and architectural decision records to ensure Netskope data at rest, in motion or in use is properly secured. 
• Design and develop data security architectures for cloud and cloud/hybrid-based systems. 

Requirements:

• Experience designing and implementing security services/solutions which were applied to GCP, Azure, and AWS
• In-depth knowledge of cloud platforms, Linux, and security at scale
• Experience working with engineering product teams and bringing solutions to market
• Demonstrated capabilities to effectively communicate and collaborate with diverse teams
• Understanding of compliance needs and evidence collection
• Moderate ability to create scripts, perform automation, and aggregate data for analysis
• A combination of confidence and independence…with the prudence to know when to ask for help
• Demonstrates flexibility within a variety of changing situations, while working with individuals and groups.
• Minimum 10+ years of experience building and managing security infrastructure and solutions in the financial industries
• Strong ability to effectively communicate with and present to the senior leadership team
• Experience with assessment, development, implementation, integration, optimization, and documentation of a comprehensive and broad set of security technologies and processes in on premise, public, private, and hybrid cloud environments •
• Experience with Hybrid cloud architectures and designs
• Must have experience with Internet Application Hosting architectures, best practices, and related technologies to effectively protect externally facing applications
• Experience with DevSecOps process, Infrastructure as Code/Policy as Code, Container technologies (Docker, Kubernetes), API Gateways, and other common web application technologies is preferred
• Strong knowledge of enterprise security concepts/frameworks and products, secure design principles and best practices
• FedRAMP, NIST 800-53, NIST 800-190, CSA, CIS Benchmarks, ISO 27000 series, COBIT, etc.
• Good written and verbal communication skills a must.
• Must be able to design and create technical solution/process documentation quickly and succinctly
• Must be a self-starter, strong leader who is able to manage, develop and nurture a team of senior engineers and architects; work with limited supervision & be able to work well with others in a globally diverse IT (Information Technology) environment
• Understanding of cryptography as it relates to application, network, and cloud security
• CISSP, CCSP, TOGAF certification is preferred. Any other Information Security oriented certifications a plus.
• Any Cloud Security or Cloud Architecture certifications is preferred.

Education:

• Bachelor’s degree/University degree or equivalent experience preferred

#LI-NS1