Job Bot

Cloud Security Architect

Company Description

FireEye is the intelligence-led security company. Working as a seamless, scalable extension of customer security operations, FireEye offers a single platform that blends innovative security technologies, nation-state grade threat intelligence, and world-renowned Mandiant® consulting. With this approach, FireEye eliminates the complexity and burden of cyber security for organizations struggling to prepare for, prevent, and respond to cyber attacks. Learn more about FireEye's world-class solutions and global footprint at https://www.fireeye.com/company.html.

Job Description

FireEye Mandiant Security Transformation Services helps organizations build an effective security operations program that minimizes organizational risk and reduces the impact of security breaches. With targeted focus in cloud architecture, our consultants work from initial assessment, on-site workshops to explore clients cloud environment, configuration review of security controls, to detailed practical technical recommendations to harden the cloud environment, enhance visibility and detection, and improve processes to reduce the risk of compromise.

As a Cloud Security Architect, you are responsible for developing and overseeing a cloud computing strategy for our customers, as well as responding to cloud-related breaches. This includes cloud adoption plans, cloud application design, and cloud management and monitoring. You will need to apply your cloud security skills, cloud network architecture, security hardening, and logging enforcement skills to assist clients with containment and remediation workstreams. The cloud architect will provide customers with industry best practice and insight regarding application architecture and deployment in cloud environments. The successful candidate will possess strong consulting skills, be adept in leading multiple projects under tight deadlines, and possess in-depth experience in security event monitoring, cyber threat intelligence, and/or computer incident response.

What You Will Do:

  • Perform technical security configuration assessments of a client’s cloud platforms - such as Microsoft Azure, Amazon Web Services (AWS), and Google Cloud Platform (GCP).
  • Perform technical security configuration reviews for common cloud-based SaaS platforms, including Microsoft Office 365 (O365).
  • Guide clients in the creation of optimized cloud solutions that deliver enterprise-grade security, compliance, and responsiveness to the latest cloud-based threats and attacks. 
  • Architect cloud services and mitigate risks
  • Assist with defining and developing appropriate governance for a cloud strategy
  • Provisioning and automating cloud services
  • Orchestration of cloud workflows


  • Demonstrate a deep understanding of cloud computing concepts and how security controls are applied to those cloud-based technologies. Example cloud security concepts include, but are not limited to:
    •  Architecture & Networking
    • Identity & Access Management
    • Securing the CI/CD Pipeline
    • Secrets and Data Protection
    • Logging, Detection, and Response
    • Security Controls for Containers (e.g., Docker, Kubernetes, etc.)
  • Experience running Cloud services with a combination of onsite and on cloud hosting provider experience (AWS, Azure, Google Cloud)
  • Deep understanding and implementation of industry-leading practices around cyber risks and Cloud security for clients’ cloud security frameworks using industry standards such as CIS Benchmarks, Cloud Security Alliance, and NIST SP 800-144, 800-145, 800-291, and 800-322.
  • Experience advising customers on cloud architecture and design concepts based on compliance and regulatory standards (e.g., PII, PCI-DSS, PHI, GDPR, HIPAA).
  • At least a minimal understanding of a programming or scripting language and strong knowledge of scripting, programming or application programming interface (API) interaction
  • Must understand governance and convey governance principles to cloud computing in terms of policies
  • Experience with Incident Response within cloud environments and applications

Additional Qualifications:

  • Bachelor’s degree in a technical discipline (or equivalent work experience)
  • Willingness to travel up to 50% 
  • Experience in preparing architecture diagrams and writing approach papers
  • Certifications related to specific Cloud Platforms (e.g. AWS, Azure, GCP, etc.) or industry-standard cloud certifications (e.g. CCSP, CCSK, etc.)
  • Proven ability and understanding of the components that comprise a successful cloud 
Additional Information

At FireEye we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability. Requests for accommodation due to disability can be sent directly to HR-Accommodations@FireEye.com.

Please mention that you come from Remotely.rocks when applying for this job. Good luck ✌️