Security Architect - CNAPP

• Experience in CNAPP platforms such as Wiz, Prisma Cloud, Orca, Lacework, or Aqua Security and their capabilities across CSPM, CWPP, CIEM, DSPM and KSPM.
• Strong knowledge of public cloud platforms.
• Experience with container technologies and orchestration platforms including securing workloads and cluster configurations.
• Strong understanding of Infrastructure as Code (IaC) tools.
• Expertise in CI/CD pipeline integration, including embedding security controls into development toolkits.
• Ability to conduct threat modelling, risk assessment, and design secure architectures for cloud-native applications and workloads.
• Familiarity with runtime protection and workload scanning for VMs, containers, and serverless using CNAPP or CWPP features.
• Experience with identity and access management in the cloud, including least privilege design, CIEM tools, and federated identity models.
• Experience designing cloud-native security reference architectures, patterns, and reusable templates for development and platform teams.
• Familiarity with compliance frameworks and security benchmarks, including CIS, NIST, ISO 27001, and how they apply to cloud-native applications.

• Excellent communication and collaboration skills, with the ability to influence cross-functional teams and translate technical concepts to business stakeholders.
• Proactive, solution-oriented mindset with strong problem-solving abilities, a strategic approach to cloud security architecture, and a passion for continuous improvement.
• Uses compelling arguments to gain the support and commitment of others; stepping up to address difficult issues and saying what needs to be said.
• Ability to operate effectively even when things are not certain, or the way forward is not clear; holds self and others accountable to meet commitments.
• Ability to apply knowledge of business and the market to making good and timely decisions that keeps the organization moving forward.

• BizzDesign, Archi, or generic UML visualisation experience for high-level designs.
• Working proficiency in Jira for project & tasks management.
• Working proficiency in Confluence for documentation.

• Produce, manage, and update end-to-end solution designs in line with reference architecture & business requirements.
• Articulate and publish key design decision records and options to ensure all solutions follow a logical, transparent decision-making process.
• Articulate, publish, and ensure approval of any design deviations resulting in technical debt
• Ensure any technical risks or issues arising from a solution design are recorded and mitigated.
• Produces, manages and translates the requirements into the architecture for that solution, ensuring technology and services meet the customer needs and expected business outcomes.
• Ensures the design of the solutions are efficient, timely and cost effective throughout the project lifecycle.
• Clear understanding of both the motivations of the business and technical security.
• Promote strong documentation and clerkship.

• Ensures all high-level designs, architecture patterns, decision records, deviation requests, and technical risks or issue records undergo architectural and project governance processes.
• Ensure all architecture artefacts undergo appropriate peer review prior to design authority presentation.
• Present publications at technical design authorities for input, feedback, and approval.

• Effectively manages and escalates both technical and project risks or issues.
• Articulates solutions and remediation steps to technical risks & issues.
• Ability to map design decisions to resultant technical risks & issues to articulate the cause and rationale which leads to any negatively impacting change.

#LI-DNI