Job Description:
• Engineer and standardize reusable security patterns for AWS, Azure, and GCP
• Conduct deep-dive threat model reviews for an immediate backlog of 22 cloud services
• Develop modular threat models for cloud services and API patterns
• Schedule threat model reviews (TMRs) for cloud services and defend service threat models
• Coordinate with landing zone architects to update architecture standards when necessary
• Perform manual analysis using TrustOnCloud research libraries to identify CSP specific threats
Requirements:
• 5+ years in cloud security architecture or threat modeling
• Expert knowledge of AWS, Azure, and GCP managed services and the Shared Responsibility Model
• Proven ability to synthesize complex technical data (e.g., TrustOnCloud reports) into concise, executable security standards
• Ability to negotiate and defend technical security positions to central risk and compliance stakeholders
Benefits:
• Paid sick leave
• Medical/Dental (optional)
• 401 (k) Retirement Plan (optional)
• Employer Paid Life Insurance
• Employer Paid Short Term Disability
• Optional Life Insurance