Cloud Security Architect

Argentina / Brazil / Colombia
Cyber Security – Cyber Security /
Full-time /
Remote
We are seeking an experienced Cloud Security Architect with deep expertise in Cloud-Native Application Protection Platforms (CNAPP) and multi-cloud environments (Azure and AWS). This role will lead the design, implementation, and optimization of secure cloud architectures, ensuring strong alignment with industry frameworks, compliance requirements, and organizational security strategy. The Cloud Security Architect will partner closely with engineering, DevSecOps, and compliance teams to embed security into cloud-native workloads at scale. 

What we offer

    • Opportunity to drive cloud security transformation across multi-cloud enterprises. 
    • Work with cutting-edge CNAPP technologies and influence security strategy. 
    • Collaborative environment with engineering, data, and DevOps teams. 
    • Competitive compensation, benefits, and career development opportunities.

Key Responsibilities

    • Architecture & Design 
    • Define and implement secure cloud reference architectures across AWS and Azure environments. 
    • Architect, configure, and optimize CNAPP solutions (CSPM, CWPP, CIEM, KSPM, and container security) to protect applications and workloads. 
    • Design security patterns for multi-cloud networking, IAM, data protection, and application security. 
    • Security Engineering 
    • Integrate DevSecOps pipelines with automated security testing, IaC scanning, and vulnerability remediation. 
    • Collaborate with application and infrastructure teams to embed shift-left security into CI/CD. 
    • Provide expertise in securing containers, serverless workloads, Kubernetes, and data lakes. 
    • Governance & Risk Management 
    • Map cloud security controls to NIST CSF, ISO 27001, SOC 2, CIS Benchmarks, and regulatory frameworks (HIPAA, GDPR, etc.). 
    • Conduct risk assessments and security reviews of new cloud workloads and architectures. 
    • Drive identity and access governance across hybrid and multi-cloud environments. 
    • Thought Leadership 
    • Serve as a subject matter expert on CNAPP strategy and adoption, helping stakeholders understand capabilities and gaps. 
    • Stay ahead of evolving cloud threat landscapes, compliance mandates, and security technologies. 
    • Mentor engineers and architects in cloud security best practices. 

Mandatory requirements

    • 7+ years of experience in cloud security architecture or engineering, with at least 3 years in multi-cloud (AWS + Azure) environments. 
    • Hands-on experience with CNAPP platforms (e.g., Prisma Cloud, Wiz, Orca, Check Point, Lacework, Defender for Cloud). 
    • Strong technical background in: 
    • Cloud IAM (Azure AD, AWS IAM, federated identity, conditional access). 
    • Network security (firewalls, VPCs, private endpoints, service mesh, zero trust). 
    • Data security (encryption, tokenization, DLP, KMS). 
    • Container & Kubernetes security. 
    • Familiarity with IaC security scanning (Terraform, Bicep, CloudFormation). 
    • Strong knowledge of compliance and security frameworks (NIST CSF, CIS, ISO 27001, SOC 2). 
    • Ability to translate business and regulatory requirements into technical security architectures. 

Optional requirements

    • Certifications: AWS Security Specialty, Azure Security Engineer Associate, CCSP, CISSP. 
    • Experience with SIEM, SOAR, and XDR integration for cloud workloads. 
    • Background in threat modeling, penetration testing, or red/purple teaming for cloud applications.