Role description
Cloud security architect
Location: Dublin Ireland with 2 days a week from office
FTE
About the Role
Cloud Security Analyst is a hands-on cloud and container security specialist This role is responsible for securing largescale multi cloud and Kubernetes based environments You will define and enforce security standards hardening baselines and detection capabilities partnering with DevOps networking and SOC teams to embed security into design and automation
Responsibilities
- Optimize cloud native security controls including Identity and Access Management IAM network security WAFs VPC controls and data protection KMS Vault
- Deploy and manage CSPM CNAPP and CWPP solutions for continuous posture management across multi cloud and Kubernetes environments
- Integrate cloud telemetry GCP Audit Logs CloudTrail Azure Monitor K8s audit logs with SIEMSOAR platforms for enhanced visibility
- Define and enforce cloud security reference architectures and guardrails based on Zero Trust and Least Privilege principles
- Build and maintain Security as Code using Terraform CloudFormation or Bicep and policy as code
- Own the security posture of containerized workloads GKE AKS EKS define security baselines for images registries and runtimes
- Harden clusters through secure configuration of RBAC Network Policies and Admission Controllers
- Investigate and respond to cloud security incidents providing triage containment and forensic support
- Stay up to date with current vulnerabilities attacks and countermeasures relevant to cloud native ecosystems
Qualifications
- Experience 5 years of progressive experience in Information Security with at least 3 years focused on Cloud security and 2 years on Kubernetes, Container security
- Cloud Expertise Handson experience with at least two major public clouds GCP and Azure preferred AWS and OCI a plus
- Container Security Strong expertise in Kubernetes security controls RBAC Secrets Ingress TLS and container runtime internals
- Technical Skills Proficiency in scripting Python preferred Bash or Go a plus and working knowledge of Infrastructure as Code IaC
- Compliance Frameworks Knowledge of information security standards eg ISO 27001 SOC 2 NIST and CIS Benchmarks for Cloud and Kubernetes
- Professional Certifications CISSP CKS Certified Kubernetes Security Specialist or cloud specific certifications GCP Professional Cloud Security Engineer Azure Security Engineer are highly desirable
- Soft Skills Proven ability to influence engineering teams without direct authority and experience working in multinational corporate environments
Nice to Have
- Professional certifications such as
- GCP Professional Cloud Security Engineer Microsoft Certified Azure Security Engineer Associate or Cybersecurity Architect Expert
- AWS Certified Security Specialty
- OCI security architect certifications
- Kubernetes certifications with security focus CKS CKA
- Experience securing microservices APIs and serverless workloads integrated with Kubernetes
- Background in penetration testing red teaming focused on cloud and container environments
- Prior experience in largescale SaaS networking or infrastructure companies where cloud native and Kubernetes are core to the product
Skills
Mandatory Skills : Network Security Architecture, Pen testing, Red testing
About LTM
LTM is an AI-centric global technology services company and the Business Creativity partner to the world’s largest and most disruptive enterprises. We bring human insights and intelligent systems together to help clients create greater value at the intersection of technology and domain expertise. Our capabilities span integrated operations, transformation, and business AI — enabling new ways of working, new productivity paradigms, and new roads to value. Together with over 87,000 employees across 40 countries and our global network of partners, LTM — a Larsen & Toubro company — owns business outcomes for our clients, helping them not just outperform the market, but to Outcreate it. Please also note that neither LTM nor any of its authorized recruitment agencies/partners charge any candidate registration fee or any other fees from talent (candidates) towards appearing for an interview or securing employment/internship. Candidates shall be solely responsible for verifying the credentials of any agency/consultant that claims to be working with LTM for recruitment. Please note that anyone who relies on the representations made by fraudulent employment agencies does so at their own risk, and LTM disclaims any liability in case of loss or damage suffered as a consequence of the same. Recruitment Fraud Alert - https://www.ltimindtree.com/recruitment-fraud-alert/
