Cooley
Senior Cloud Security Architect
Cooley is looking for a dedicated Cloud Security Architect to become a vital part of our Security team.
Position Summary:
At Cooley, we prioritize a culture of exceptional customer service within our Technology department. All team members are expected to embody this commitment. The Cloud Security Architect will play a critical role in ensuring the security of our cloud environments as we strive to mitigate cyber threats while minimizing architectural and operational risks. This position demands extensive expertise in cloud architectures, threat detection methods, strong analytical abilities, and a collaborative spirit to work alongside fellow security professionals and Cloud Architects. Position Responsibilities: Design and maintain a robust security architecture framework aligned with enterprise strategy and objectives. Architect, design, prioritize, coordinate, and communicate essential security technologies to ensure a secure yet user-friendly cloud environment. Craft and implement architectural reference patterns guiding the selection, development, deployment, and use of Technology systems. Conduct risk and security assessments, enhancing the security solutions lifecycle from evaluation to integration in cloud environments. Devise strategies for managing security incidents and coordinate responses to breaches. Recommend and implement identity and access management controls for cloud services. Provide security guidance throughout the system development life cycle with architectural reviews. Contribute to the development of security technology solutions for complex environments and architecture. Analyze risks, vulnerabilities, and emerging security threats, recommending technologies to mitigate them. Ensure cloud systems comply with industry security standards and regulatory requirements. Engage in R&D for Cloud security solutions, evaluating cutting-edge tools to fulfill strategic security needs. Serve as a subject matter expert on the deployment and capabilities of existing security controls. Provide leadership and direction to enterprise-wide initiatives incorporating security principles. Identify and design new security technology solutions while reviewing and collaborating on deployment. Stay informed about the latest developments in security technologies to strengthen the organization’s security posture. Collaborate with technology architects to ensure security is integrated into project planning. Communicate effectively with stakeholders to raise awareness of security architecture roadmaps. Deliver training and guidance on cloud security best practices to Technology staff and employees. Participate in a 7x24 on-call rotation. Perform additional duties as assigned. Skills and Experience: Required: Proficiency in the Microsoft Office suite, iManage, and other firm applications after orientation at Cooley LLP. Flexibility to work extended hours and travel as required. 3+ years of relevant experience in cloud architecture security. Eligible for consideration of Senior designation with 5+ years of applicable experience. Strong expertise in configuring security controls and secure migration of applications to major cloud providers such as Azure (preferred) and AWS. Experience in developing Cloud Security Frameworks using best practices from the Cloud Security Alliance (CSA) and NIST CSF. Implementation experience of security tools and architecture in Cloud environments, including: Access Controls Data Loss Prevention (DLP) Web Application Firewalls (WAF) Secure SDLC and Software Security Firewalls Anti-malware and anomaly detection controls Data encryption in transit and at rest Network security Monitoring tools Preferred: Bachelor's degree in information technology or computer information systems. Knowledge of the MITRE ATT&CK framework and NIST Cyber Security Framework. Familiarity with enterprise security controls (Firewall, Proxy, AV, SIEM, etc.). Experience with incident response procedures. Deep knowledge of security issues and techniques across various platforms. Proven ability to lead and develop teams by providing technical guidance. Understanding of security regulations and best practices like ISO 27000 family standards. Familiarity with systems development life cycle (SDLC). Ability to translate business requirements into architectural deliverables. Experience communicating technical information to both business clients and less experienced technologists. CISSP, CISM, or equivalent certification. Experience with CI/CD pipelines. Cloud Architecture and/or Security Certifications (AWS, Azure, GCP). Relevant Cloud Security Alliance certifications (CCSP, CCSK) and other security certifications. Competencies: Exceptional customer service skills. Outstanding analytical, problem-solving, project management, and communication abilities. Goal-oriented with a proven track record of excellent decision-making. Strong oral and written communication skills, including documentation. Organizational skills with the ability to thrive under pressure and meet deadlines. Ability to engage with all levels of business professionals. Active listening and interpersonal skills. Adaptability and patience in process development. Detail-oriented and capable of managing multiple tasks successfully. Professional demeanor at all times. Cooley offers a competitive compensation package and excellent benefits. We are committed to equitable employment practices. EOE. The expected annual pay range for this position is $115,000 - $170,000, with final amounts dependent on location, experience, and skills. Senior candidates may qualify for a higher salary range. We provide a comprehensive benefits package, including medical, dental, vision, flexible spending accounts, life insurance, paid time off, and parental leave, among others. New employees will receive a thorough orientation to our benefits offerings.
At Cooley, we prioritize a culture of exceptional customer service within our Technology department. All team members are expected to embody this commitment. The Cloud Security Architect will play a critical role in ensuring the security of our cloud environments as we strive to mitigate cyber threats while minimizing architectural and operational risks. This position demands extensive expertise in cloud architectures, threat detection methods, strong analytical abilities, and a collaborative spirit to work alongside fellow security professionals and Cloud Architects. Position Responsibilities: Design and maintain a robust security architecture framework aligned with enterprise strategy and objectives. Architect, design, prioritize, coordinate, and communicate essential security technologies to ensure a secure yet user-friendly cloud environment. Craft and implement architectural reference patterns guiding the selection, development, deployment, and use of Technology systems. Conduct risk and security assessments, enhancing the security solutions lifecycle from evaluation to integration in cloud environments. Devise strategies for managing security incidents and coordinate responses to breaches. Recommend and implement identity and access management controls for cloud services. Provide security guidance throughout the system development life cycle with architectural reviews. Contribute to the development of security technology solutions for complex environments and architecture. Analyze risks, vulnerabilities, and emerging security threats, recommending technologies to mitigate them. Ensure cloud systems comply with industry security standards and regulatory requirements. Engage in R&D for Cloud security solutions, evaluating cutting-edge tools to fulfill strategic security needs. Serve as a subject matter expert on the deployment and capabilities of existing security controls. Provide leadership and direction to enterprise-wide initiatives incorporating security principles. Identify and design new security technology solutions while reviewing and collaborating on deployment. Stay informed about the latest developments in security technologies to strengthen the organization’s security posture. Collaborate with technology architects to ensure security is integrated into project planning. Communicate effectively with stakeholders to raise awareness of security architecture roadmaps. Deliver training and guidance on cloud security best practices to Technology staff and employees. Participate in a 7x24 on-call rotation. Perform additional duties as assigned. Skills and Experience: Required: Proficiency in the Microsoft Office suite, iManage, and other firm applications after orientation at Cooley LLP. Flexibility to work extended hours and travel as required. 3+ years of relevant experience in cloud architecture security. Eligible for consideration of Senior designation with 5+ years of applicable experience. Strong expertise in configuring security controls and secure migration of applications to major cloud providers such as Azure (preferred) and AWS. Experience in developing Cloud Security Frameworks using best practices from the Cloud Security Alliance (CSA) and NIST CSF. Implementation experience of security tools and architecture in Cloud environments, including: Access Controls Data Loss Prevention (DLP) Web Application Firewalls (WAF) Secure SDLC and Software Security Firewalls Anti-malware and anomaly detection controls Data encryption in transit and at rest Network security Monitoring tools Preferred: Bachelor's degree in information technology or computer information systems. Knowledge of the MITRE ATT&CK framework and NIST Cyber Security Framework. Familiarity with enterprise security controls (Firewall, Proxy, AV, SIEM, etc.). Experience with incident response procedures. Deep knowledge of security issues and techniques across various platforms. Proven ability to lead and develop teams by providing technical guidance. Understanding of security regulations and best practices like ISO 27000 family standards. Familiarity with systems development life cycle (SDLC). Ability to translate business requirements into architectural deliverables. Experience communicating technical information to both business clients and less experienced technologists. CISSP, CISM, or equivalent certification. Experience with CI/CD pipelines. Cloud Architecture and/or Security Certifications (AWS, Azure, GCP). Relevant Cloud Security Alliance certifications (CCSP, CCSK) and other security certifications. Competencies: Exceptional customer service skills. Outstanding analytical, problem-solving, project management, and communication abilities. Goal-oriented with a proven track record of excellent decision-making. Strong oral and written communication skills, including documentation. Organizational skills with the ability to thrive under pressure and meet deadlines. Ability to engage with all levels of business professionals. Active listening and interpersonal skills. Adaptability and patience in process development. Detail-oriented and capable of managing multiple tasks successfully. Professional demeanor at all times. Cooley offers a competitive compensation package and excellent benefits. We are committed to equitable employment practices. EOE. The expected annual pay range for this position is $115,000 - $170,000, with final amounts dependent on location, experience, and skills. Senior candidates may qualify for a higher salary range. We provide a comprehensive benefits package, including medical, dental, vision, flexible spending accounts, life insurance, paid time off, and parental leave, among others. New employees will receive a thorough orientation to our benefits offerings.