We are seeking an experienced AWS Security Architect in the banking sector who will be responsible for designing, implementing, and overseeing cloud security architectures that ensure the integrity, confidentiality, and availability of banking data in AWS environments. The role involves collaborating with multiple teams, such as development, operations, and compliance, to enforce cloud security best practices and regulatory requirements.
Work at Exadel - Who We Are
Since 1998, Exadel has been engineering its products and custom software for clients of all sizes. Headquartered in Walnut Creek, California, Exadel has 2,000+ employees in development centers across America, Europe, and Asia. Our people drive Exadel’s success and are at the core of our values.
About the Customer
The client is the largest Google digital consulting agency in Europe, operating only in the Google cloud.
Requirements
- 5+ years in cloud security, with a strong focus on AWS environments, and at least 3 years in financial or banking security
- In-depth knowledge of AWS security services (IAM, KMS, GuardDuty, WAF, etc.)
- Experience with regulatory frameworks such as PCI-DSS, GDPR, or SOX
- Familiarity with DevSecOps practices and tools like Jenkins, GitLab, or Terraform
- Certifications: AWS Certified Security Specialty, AWS Certified Solutions Architect (Associate or Professional), CISSP (Certified Information Systems Security Professional) or equivalent
Nice to have
- Experience with serverless security and microservices in AWS
- Knowledge of compliance automation using AWS Config and Lambda
- Familiarity with securing hybrid cloud environments and multi-cloud strategies
English level
Advanced
Responsibilities
- Cloud Security Architecture:
- Design and implement robust AWS security architectures that meet both banking sector regulations (such as PCI-DSS GDPR) and the organization's internal security policies
- Develop solutions for secure data storage, encryption, and secure networking in AWS
- Risk Management & Compliance:
- Conduct security risk assessments for cloud environments and implement controls to mitigate identified risks
- Ensure compliance with industry standards, regulatory requirements, and internal policies
- Collaborate with legal and compliance teams to align security policies with financial regulations
- Identity and Access Management (IAM):
- Design and manage secure Identity and Access Management (IAM) strategies, ensuring appropriate user permissions and roles are defined and enforced
- Implement multi-factor authentication (MFA) and manage access control mechanisms across AWS services
- Threat Detection & Incident Response:
- Implement AWS-native security tools such as AWS GuardDuty, AWS Security Hub, and Amazon Macie to monitor, detect, and respond to security threats
- Lead incident response and forensic investigations in the case of security breaches
- Data Protection & Encryption:
- Architect encryption mechanisms for data at rest and in transit using AWS KMS and other encryption services
- Develop and enforce policies for secure data lifecycle management, including backup and disaster recovery strategies
- DevSecOps & Automation:
- Integrate security into CI/CD pipelines, ensuring automated security testing and vulnerability scanning are part of the deployment process
- Collaborate with DevOps teams to ensure security controls are automated and scalable in the AWS cloud environment
- Continuous Improvement & Security Awareness:
- Stay updated with the latest AWS security features, banking regulations, and cyber threats
- Provide security training and awareness sessions for development, operations, and executive teams
Advantages of Working with Exadel
Exadel is a global company, and benefits can vary depending on your location and contract type. Your recruiter will provide specific information about the benefits available to you.
- International projects
- In-office, hybrid or remote mode
- Medical healthcare
- Recognition program
- Professional & personal development opportunities
- Foreign languages classes
- Well-being program
- Corporate events
- Sports compensation
- Referral program
- Equipment provision
- Paid vacation & sick days
