Cloud Security Architect

Summary: The Cloud Security Architect role focuses on designing secure cloud environments specifically for financial services clients using Google Cloud Platform (GCP). The position requires extensive experience in cloud security architecture, Zero Trust principles, and collaboration with various stakeholders to ensure compliance and governance. The architect will also lead workshops and develop reusable security blueprints tailored for regulated environments. A strong background in cybersecurity and hands-on expertise with GCP security tools is essential for success in this role.

Key Responsibilities:

• Architect secure cloud environments for financial services clients leveraging GCP security services and best practices.
• Design and implement Zero Trust Architecture, identity and access management strategies, and secure networking models.
• Advise on data protection, encryption strategies, regulatory compliance (e.g., FCA, GDPR), and risk mitigation frameworks.
• Perform security assessments and threat modeling for cloud-native applications and hybrid environments.
• Collaborate with enterprise architects, risk officers, and compliance teams to ensure governance and audit readiness.
• Lead security architecture workshops and technical discussions with CISO-level stakeholders.
• Develop reusable blueprints and reference architectures for regulated financial environments.

Key Skills:

• Bachelor's or Master’s degree in Computer Science, Information Security, or a related technical field, or equivalent practical experience.
• 10+ years of experience in cybersecurity, with at least 3 years focused on cloud security architecture.
• 5+ years of experience in cloud security engineering, with a strong focus on Google Cloud Platform (GCP).
• Extensive experience in the financial services industry including banking, insurance, or capital markets.
• Hands-on expertise with GCP security tools (e.g., Identity Aware Proxy, BeyondCorp Enterprise, VPC SC, Cloud Armor).
• Proven experience with Zero Trust Architecture and secure design principles for cloud and hybrid systems.
• Proven experience with DevSecOps methodologies and integrating security into CI/CD pipelines.
• Hands-on experience with GCP security services including IAM, VPC Service Controls, Cloud Armor, KMS, Security Command Center.
• Fluency in designing security policies using IAM, KMS, DLP, and SIEM/SOAR tools.
• Strong understanding of network security principles (firewalls, VPNs, load balancing, DNS) and their implementation on GCP.
• Proficiency in at least one scripting language (e.g., Python, Go, Bash) for automation and security tool development.
• Experience with Infrastructure as Code (IaC) tools, particularly Terraform.
• Solid understanding of security monitoring, logging, and alerting concepts.
• Familiarity with common security frameworks (e.g., NIST, MITRE ATT&CK, OWASP Top 10).

Salary (Rate): undetermined

City: London Area

Country: United Kingdom

Working Arrangements: remote

IR35 Status: undetermined

Seniority Level: undetermined

Industry: IT