CareerZen Logo
Company logo

DEVOPS ENGINEER

Palco

Full-time | Contract

Los Angeles, CA

Job description

Job Title: Principal Cloud Security Architect (IT - Solutions Architect III)

Location: Hybrid – On-site 3 days/week in Allentown, PA; Louisville, KY; or Providence, RI
Tax Work Location: Cumberland

Job Summary:

We are seeking a highly skilled Principal Cloud Security Architect to join our growing Cybersecurity organization. In this strategic role, you will partner closely with Cloud Engineering teams to ensure secure design, configuration, and ongoing operations of our cloud infrastructure across Azure, AWS, and other platforms.

As a thought leader in cloud security, you will help shape our security strategy, conduct assessments, lead incident response for cloud platforms, and ensure our environment aligns with industry best practices. This is an exciting opportunity to drive meaningful change in a modern, containerized, multi-cloud environment.

Key Responsibilities:

  • Design and implement secure cloud architectures across Azure, AWS, and GCP platforms.
  • Perform cloud security assessments, identify risk areas, and develop mitigation strategies.
  • Ensure alignment with industry security frameworks (e.g., NIST, CIS).
  • Lead and support incident response activities for cloud-based environments.
  • Drive secure DevOps practices, including CICD and Infrastructure-as-Code (IaC).
  • Manage and monitor Cloud Security Posture Management (CSPM) and container security technologies.
  • Advise on identity and access management (IAM) policies and privileged access across cloud platforms.
  • Partner with Governance, Risk & Compliance (GRC) teams to define cloud security policies and standards.
  • Provide technical leadership and mentorship to junior cybersecurity team members.
  • Stay current with emerging threats and evolving cloud security technologies.
  • Optimize cloud resource use and help manage cloud security costs.

Required Qualifications:

  • Bachelor’s Degree in Computer Science, Cybersecurity, or a related field – or equivalent work experience.
  • 10+ years of hands-on experience in cloud cybersecurity, with a strong background in Azure and AWS security.
  • Proven expertise in:
  • Microsoft 365 Security Tools: Microsoft Defender, Intune, Azure AD (Entra), ADFS
  • Azure services: Virtual Machines, Functions, Networking, Key Vault, NSGs, Azure VDI
  • DevOps and CI/CD pipelines
  • Infrastructure as Code (IaC) using tools like ARM, Terraform, or Bicep
  • Scripting languages: PowerShell, Azure CLI, or similar
  • Container security: Docker, Kubernetes
  • Network security: VNETs, VPNs, ExpressRoute, Firewalls
  • Strong knowledge of cloud security best practices, IAM policies, and security frameworks.
  • Excellent communication, leadership, and cross-functional collaboration skills.
  • Analytical mindset to assess risks in complex cloud environments.

Preferred Qualifications:

  • Experience with programming/scripting languages such as Python, .NET, or Java
  • Hands-on security testing experience in cloud platforms, especially Azure
  • Certifications (strongly preferred):
  • Microsoft Azure Security Engineer (AZ-500)
  • Microsoft Azure Administrator (AZ-104)
  • Microsoft 365 Security
  • Microsoft Azure Network Engineer
  • CISSP or other security credentials (e.g., SANS/GIAC)

Work Environment:

This is a hybrid role requiring on-site work three days per week in one of the following offices:

  • Allentown, PA (Lehigh Valley)
  • Louisville, KY
  • Providence, RI

Job Types: Full-time, Contract

Pay: $128.00 - $138.00 per hour

Benefits:

  • 401(k)
  • 401(k) matching
  • Dental insurance
  • Health insurance
  • Paid time off
  • Vision insurance

Work Location: In person

Apply