About
Working closely with IT Infrastructure, OT (Operational Technology), Cloud Engineering, Technology, and Digital teams, the Cloud Security Architect ensures the confidentiality, integrity, and availability of TITAN's cloud and hybrid environments. The role guides the secure design of enterprise systems, industrial IoT, data platforms, and production environments across the Group's global footprint.
Responsibilities
Define and maintain the enterprise cloud security architecture, ensuring alignment with business strategy, IT/OT integration, and corporate security frameworks.
Design secure cloud and hybrid environments that support interoperability between on-premise IC/SCADA systems and cloud-based analytics or IoT platforms.
Develop and enforce cloud security standards, reference architectures, and design patterns across Azure, AWS, GCP, and private cloud environments.
Establish security baselines and guardrails for infrastructure-as-code, network design, IAM, encryption, and data protection.
Collaborate with Cloud Engineering and DevOps teams to embed secure-by-design principles into CI/CD pipelines and deployment processes.
Conduct architecture reviews, threat modeling, and risk assessments for digital manufacturing and enterprise initiatives.
Lead cloud security assessments and manage remediation efforts stemming from penetration tests, audits, and compliance reviews.
Evaluate and select cloud security technologies (CSPM, CWPP, CASB, SIEM, DLP, Zero Trust frameworks).
Drive the adoption of Zero Trust principles across hybrid and OT-connected environments.
Provide expert guidance on secure network segmentation between IT and OT systems.
Support compliance with standards such as ISO 27001, NIST 800-82, IEC 62443, and GDPR.
Develop automation strategies for monitoring, compliance, and incident response in multi-cloud environments.
Act as a trusted advisor to business units and engineering teams on secure cloud migration and adoption projects.
Develop and maintain cloud security logging and monitoring requirements, ensuring integration with SIEM/SOAR and enabling threat detection in cloud and edge environments.
Define and manage cloud security posture for SaaS adoption, including secure configuration baselines and third‑party risk assessments.
Qualifications Candidate Profile
Bachelor's degree in Computer Science, Information Security, or related field.
5+ years of experience in Cloud Security Architecture or similar roles.
Experience collaborating with IT, OT, DevOps, and Cloud Engineering teams.
Strong communication and stakeholder‑management skills.
Relevant certifications (e.g., CCSP, CISSP, AWS/Azure/Google Security Specialist).
Fluent in English.
Military obligations fulfilled (where applicable).
Preferred: Master's degree; experience in manufacturing environments; knowledge of IEC 62443/NIST standards; certifications such as CISSP, CISM, CCSP; experience with secure SaaS adoption and cloud vendor assessments.
Technical Expertise
Proven experience with multi‑cloud and hybrid security architecture (Azure, AWS, GCP).
Strong knowledge of IAM, encryption, network security, and cloud‑native controls.
Hands‑on experience with Terraform, Ansible, or similar IaC tools.
Understanding of DevSecOps and securing CI/CD pipelines.
Experience with IT/OT security integration and Zero Trust principles.
Familiarity with CSPM, CWPP, CASB, SIEM, DLP, and similar platforms.
Knowledge of serverless security, API security, and microservice architecture best practices.
Understanding of data lake, data fabric, and cloud analytics platform security.
Behavioral Competencies
Strategic, analytical, and solution‑oriented mindset.
Clear communicator across technical and non‑technical teams.
Collaborative and supportive team player.
Continuous improvement and innovation mindset.
Ability to balance security and operational requirements in fast‑moving manufacturing or industrial environments.
#J-18808-Ljbffr
Languages
- English
Notice for Users
This job comes from a TieTalent partner platform. Click "Apply Now" to submit your application directly on their site.