Cloud Security Architect

Req ID: 283284 

NTT DATA Services strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking a Cloud Security Architect to join our team in Arlington, Virginia (US-VA), United States (US).

Cloud Security Architect

We are seeking a highly skilled and experienced Cloud Security Architect to join our team. As a Cloud Security Architect, you will be responsible for designing, securing, implementing, and managing our customer’s cloud infrastructure.

A cloud architect is an IT professional who is responsible for overseeing a company's cloud computing strategy. This includes cloud adoption plans, cloud application design, and cloud management and monitoring. Cloud architects oversee application architecture and deployment in cloud environments, including public cloud, private cloud, and hybrid cloud. One of their primary objectives is to guarantee that the cloud infrastructure aligns with the business needs concerning scalability, performance, security, and cost efficiency. You will collaborate with cross-functional teams to ensure the seamless integration of cloud services, optimize system performance, and enhance security measures.

The Cloud Security Architect serves as a Subject Matter Expert (SME) regarding cybersecurity assessment, implementation, risk, and security impacts associated with cloud environments IaaS, PaaS, XaaS, applications, containers, code while interpreting direction from intelligence, cybersecurity, and other resources to provide analysis and recommendations related to information security.

The Cloud Security Architect must have a comprehensive knowledge of FISMA, NIST, NSA, and other information security, cybersecurity, UAM, and CDM related industry policies, standards, procedures, guidelines, best practices, developing, engineering, implementing, testing, evaluating, configuring, monitoring, and maintaining cybersecurity, UAM, CDM, insider threat detection/analysis. incident detection/analysis, and vulnerability compliance and assessment software and hardware.

Personnel assigned to this role will serve primarily on the ISSO as a Service (ISSaaS) team. This role is responsible for coordinating with other internal teams, sections, or divisions within the organization. These include but are not limited to: IT Operations, Engineering & Integration, and Software Operations, and the Office of Investigative Technology.

Job Duties: 

• Cloud adoption. The architect's role is to help determine the need for cloud and manage its adoption. Part of the process of cloud adoption is managing the cultural change in the organization that comes with changing infrastructure, employee roles and procedures. Another aspect of this is vendor management.
• Strategic design and planning. After cloud adoption is approved, a cloud architect should develop a cloud migration strategy that is carefully integrated with the business objectives of the company. This entails selecting the ideal combination of cloud service providers and services and creating infrastructures that develop to meet the expanding needs of the company. Cloud architect should also ensure that strong disaster recovery plans are in place in case of emergencies.
• Cloud architecture development. After strategic design and planning, the architect is tasked with developing the architecture, which spans several areas of IT, including application development, data management and identity and access management (IAM). It is the role of the architect to ensure that all these pieces work in harmony.
• Cloud management and monitoring. Once the architecture is established, the cloud architect's job is to maintain the architecture, provide troubleshooting and monitor its performance according to business objectives.
• Front-end platforms. Front-end cloud infrastructure includes everything the client will interact with. It is software that allows users to access the cloud.
• Back-end platforms. Back-end cloud infrastructure refers to hardware and software components of a cloud system like data storage, servers, virtual machines, hypervisors, and network devices.
• Cloud-based data delivery models. Cloud computing service vendors typically provide organizations with IT capabilities via one of three major models: Software as a Service (SaaS), Infrastructure as a Service (IaaS), or Platform as a Service (PaaS)
• Offer guidance in infrastructure movement techniques, including bulk application transfers into the cloud.
• Identify the top cloud architecture solutions to successfully meet the needs of the company.
• Translate project-specific requirements into cloud structure that support the needs of the organization.
• Design and improve existing cloud technology.
• Conduct migration to bring tools and other elements in the cloud environment.
• Articulate complicated cloud reports to management, business stakeholders, and IT development partners.
• Work closely with DevSecOps, cloud team, and engineers to design, implement and manage secure, scalable, and reliable cloud infrastructure environments.
• Assist in selecting, implementing, and tuning continuous integration (CI) and continuous deployment (CD) technology platforms.
• Assist in ensuring operational readiness for launching secure and scalable workloads into public and hybrid cloud environments.
• Create and update design and operational documentation.
• Participate in efforts which shapes the organization’s security policies and standards for use in cloud environments.
• Interpret security and technical requirements into business requirements and communicate security risks to relevant stakeholders ranging from business leaders, engineers, Unit Chief, CISO and/or CIO.
• Employ cloud-based APIs when suitable to write network/system level tools for safeguarding cloud environments.

Basic Qualifications: 

• Master’s degree: Computer Science, Information Systems, or Information Technology Engineering, Information Technology Management, Business Management, or task order specific discipline or related field.
  • Education Equivalency: High School Diploma + 4 additional years of experience = Associate's Degree; Associate's Degree + 4 additional years of experience = Bachelor's Degree; Bachelor's Degree + 4 additional years of experience = Master's Degree.
• Required Certifications: DoD IAT, IASAE, or CSSP Level II or III or equivalent.
• Minimum 10 years of cybersecurity, Cloud Security, or Security Architecture experience, to include:
  • Minimum 10 years of experience in network, system, software, and/or cloud architecture; design, implementation, support, and evaluation of security-focused tools and services.
• Must be able to successfully complete a DEA background investigation in conjunction with being an active Secret or higher clearance holder and must be eligible for a Top-Secret clearance if requested.

Preferred Qualifications:

• Any combination of security engineering experience in the following areas: AWS GOV Cloud, SPLUNK, tools (CORE, SOAR, ES, UBA), SIEM , Azure Cloud, Kubernetes, Docker, Rancher, Linux, or windows command line experience. (AWS, Ali Cloud, Azure), Familiarity with CloudFormation, EC2, EMR, S3, Redshift, RDS, SQS and AutoScaling Groups, and container orchestration is a plus.
• AWS Certified Cloud Practitioner, AWS Certified Solutions Architect – Professional, AWS DevSecOps Engineer, AWS Solutions Architect Associate, AWS Security Specialty
• Azure Fundamentals, Azure Data Fundamentals, Azure Ai Fundamentals, Azure Security Engineering Associate, Azure Solutions Architect Expert
• Google Associate Cloud Engineer
• Cloud Security Alliance: Certificate of Cloud Security Knowledge (CCSK)
• SANS Institute Certification SEC541: Cloud Security Attacker Techniques, monitoring, and threat detection
• SANS Institute Certifications: SEC 488: Cloud Security Essentials, SEC 540: Cloud Security and DevSecOps Automation, SEC 388: Introduction to Cloud Computing and Security
• Experience briefing and building visualization for executive leadership, PowerBI & API use, risk assessment through data aggregation.

#FEDSEC

About NTT DATA Services

NTT DATA Services is a recognized leader in IT and business services, including cloud, data and applications, headquartered in Texas. As part of NTT DATA, a $30 billion trusted global innovator with a combined global reach of over 80 countries, we help clients transform through business and technology consulting, industry and digital solutions, applications development and management, managed edge-to-cloud infrastructure services, BPO, systems integration and global data centers. We are committed to our clients’ long-term success. Visit nttdata.com or LinkedIn to learn more.

NTT DATA Services is an equal opportunity employer and considers all applicants without regarding to race, color, religion, citizenship, national origin, ancestry, age, sex, sexual orientation, gender identity, genetic information, physical or mental disability, veteran or marital status, or any other characteristic protected by law. We are committed to creating a diverse and inclusive environment for all employees. If you need assistance or an accommodation due to a disability, please inform your recruiter so that we may connect you with the appropriate team.