Job Closed
This listing is no longer active.
Senior Cloud Security Assurance
Location
Romania
Posted
127 days ago
Salary
0
Seniority
Senior
Job Description
Senior Cloud Security Assurance
NTT DATA Romania
• Translate business and compliance requirements into practical, well-documented security architecture designs using recognized frameworks (e.g., ISO 27001, NIST, CIS) • Develop, document, and maintain consistent secure architectural patterns with an emphasis on cloud security (AWS, Azure, GCP) • Implement threat-informed design principles, integrating zero trust architectures and defensive depth strategies to address security gaps and enhance resilience • Maintain alignment between security policies, enterprise architecture principles, and client expectations • Conduct comprehensive risk assessments and threat modeling to evaluate existing or proposed architectures for vulnerabilities • Provide actionable mitigation strategies informed by a risk-based approach and evolving threat intelligence data • Participate in or support incident response initiatives, aiding in root cause analysis and the development of post-incident recommendations • Act as a trusted advisor to clients by engaging in technical discussions to inform strategic security decisions • Collaborate cross-functionally with development, operations, and engineering teams to validate that security controls are effectively implemented across the development lifecycle • Deliver technical insights in presentations, workshops, and reports tailored to both technical and executive audiences • Engage in audits, assessments, and reviews to ensure delivery meets strict alignment with industry frameworks • Provide clients with guidance on the implementation and enforcement of technical standards and cloud-specific security policies • Maintain up-to-date knowledge of regulations and frameworks such as NIS2 and DORA to address compliance risks and initiatives • Recommend improvements in security policies based on compliance evaluations and evolving risks • Contribute to the development of security roadmaps by delivering expert recommendations tailored to each client’s security objectives • Assess emerging technologies and threats, identifying opportunities to evolve architectural strategies through innovation and cutting-edge tools • Participate as an SME in pre-sales activities, assisting in defining technical collateral that supports project delivery
Job Requirements
- Bachelor’s degree in Information Security, Cybersecurity, or a relevant IT field (Master’s degree preferred)
- Minimum 5-10 years experience in security architecture, compliance, and cloud security roles, working with frameworks such as ISO 27001, NIS/NIS2, or NIST CSF
- Deep understanding of cloud security principles including management on AWS, Azure, and GCP platforms
- Familiarity with IAM, CASB, SIEM, and container security solutions
- CISSP or SABSA certifications required
- Cloud-specific certifications preferred (e.g., AWS Security Specialty, Azure Solutions Architect)
- Direct experience working in government, military, or intelligence organizations advantageous
- Proven ability to collaborate across diverse technical teams, influencing senior stakeholders in an advisory capacity
- Excellent communication and presentation skills for delivering complex technical concepts to non-specialist audiences
- Strong analytical thinking and the ability to rapidly assess risks in a given architecture framework
- Previous hands-on experience in developing security frameworks and implementing architectural changes at scale
- Ability to conduct cloud security posture assessments to identify misconfigurations early
- Excellent command of both spoken and written English.
Benefits
- New beginnings can be a challenge. We promise a smooth integration and a supportive mentor
- Pick your working style: choose from Remote, Hybrid or Office work opportunities
- Early bird or night owl? Our projects have different working hours to suit your needs
- Nobody is born an expert. Sharpen your tech skills with our sponsored certifications, trainings and top e-learning platforms
- We want you to stay healthy! Enjoy our Private Health Insurance – it’s custom-made for you
- A clear mind is a healthy mind. Attend individual coaching sessions or go one step further by joining our accredited Coaching School
- Make the most of our epic parties or themed events – they’re lovingly designed for our people and their families
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
• Performs Command Cyber Readiness Inspections and cybersecurity vulnerability evaluations • Uses a variety of security techniques, technologies, and tools to evaluate security posture in highly complex computer systems and networks • Performs vulnerability and risk analysis and participates in a variety of computer security penetration studies • Analyzes and defines security requirements for computer and networking systems, to include mainframes, workstations, and personal computers • Recommends solutions to meet security requirements • Gathers and organizes technical information about an organization's mission goals and needs and makes recommendations to improve existing security posture • Provides enterprise-wide technical analysis and direction for problem definition, analysis and remediation for complex systems and enclaves • Provides workable recommendations and advice to client executive management on system improvements, optimization, and maintenance in the following areas: Information Systems Architecture, Automation, Telecommunications, Networking, Communication Protocols, Application Software, Electronic Email, VOIP and VTC • Competent to work at the highest level of all phases of information systems auditing
• Lead cybersecurity design practice for Federal and DoD clients • Oversee technical execution and documentation for projects • Manage staff and drive business development efforts • Ensure compliance with cybersecurity standards and conduct quality reviews
Information Assurance, Security Specialist
MBL Technologies Inc.Digital Solutions, Risk Management, Compliance & Advisory, and Management Consulting
• Conduct independent security assessments of information systems and cloud environments, including IaaS, PaaS, and SaaS service models. • Apply comprehensive information assurance and cybersecurity knowledge to high-impact, complex technical assignments. • Plan, lead, and support major technology and security initiatives, ensuring alignment with organizational goals. • Evaluate security performance, risk posture, and assessment results; recommend corrective actions and improvements to support project success. • Serve as a technical expert across multiple concurrent security projects and initiatives. • Develop, implement, and maintain enterprise information assurance and security standards, policies, and procedures. • Coordinate, develop, and evaluate organizational security programs, ensuring compliance with regulatory and contractual requirements. • Recommend information assurance and security solutions to meet customer and mission needs. • Identify, document, report, and support the resolution of security incidents, violations, and vulnerabilities. • Support customers and stakeholders at senior levels in the development and implementation of security doctrine, policies, and procedures. • Apply cybersecurity expertise to government and commercial systems, including common user systems and specialized systems requiring enhanced security controls. • Provide integration and implementation support for computer system security solutions throughout the system lifecycle. • Analyze general information assurance-related technical issues and provide engineering and technical support to resolve identified problems. • Ensure all information systems remain secure, compliant, and operational, supporting continuous monitoring and risk management activities.
Enterprise Account Director, Data Security
Capital OneAt Capital One, we think and work like a tech company, using our digital fluency to transform everything about the customer experience. We’re bending data to our will, and turning a stodgy industry on its head. That’s reflected in our ranking as the number one business technology innovator in the U.S. in the 2016 InformationWeek Elite 100.
• Own enterprise deals end-to-end : Source, develop, and close ARR through new logo acquisition and strategic expansion • Navigate complex buying centers : Build and execute multi-stakeholder strategies across security, data platform, compliance, legal, and procurement organizations • Run disciplined proof of concept : Lead technical evaluations with clear success criteria, tight timelines, and executive alignment to accelerate deals • Master security reviews : Guide customers through vendor risk assessments, architecture reviews, penetration tests, and compliance validation (SOC2, ISO, PCI-DSS, HIPAA) • Build compelling business cases : Quantify value across risk reduction (PCI scope reduction, breach prevention) and enablement outcomes (faster analytics, safe AI access, compliant data sharing) • Negotiate complex contracts : Navigate DPAs, security exhibits, BAAs, indemnities, and enterprise licensing terms to mutually beneficial close • Drive expansion : Develop land-and-expand strategies that grow initial deployments across lines of business, environments, and use cases • Partner strategically : Leverage cloud ecosystem relationships (AWS, Snowflake, Databricks, etc.) and GSI partnerships to accelerate deals
