Broadridge Financial Solutions , Inc.
Cloud Security Architect (Hybrid/Remote)
Broadridge Financial Solutions , Inc., New York, New York, United States
Overview
At Broadridge, we aim to empower others to accomplish more. We are hiring a visionary Cloud Security Architect to drive the security of AWS and containerized environments, combining strategic design with hands-on engineering to build and automate scalable security controls. Youll partner with cloud, DevOps, and security teams to embed protections across identity, network, application, and data layers, including WAFs, IAM, CSPM, DSPM, CNAP, and infrastructure as code and DevSecOps automation to shape cloud security at scale. Responsibilities
Architect, configure, and maintain security solutions in AWS, including WAF and related web application protection technologies. Manage IAM roles, policies, and federation. Utilize CSPM and DSPM platforms for posture management and data security. Leverage CNAP tooling for container and workload protection. Provision and manage security infrastructure using Terraform (modular, reusable IaC); use Git for version control. Develop automation in Python or Golang to streamline deployment, monitoring, and remediation processes. Integrate security controls into CI/CD workflows for automated guardrails and compliance enforcement. Continuously tune security configurations based on real-world traffic analysis, vulnerability scanning, and compliance requirements. Collaborate with cross-functional teams to ensure security measures align with frameworks (NIST, CIS, PCI DSS, HIPAA) while maintaining operational efficiency. Document security configurations, operational runbooks, and troubleshooting procedures for consistent execution and knowledge sharing. Apply deep technical knowledge of HTTP request lifecycle, TLS encryption, and certificate management to secure workloads and services. Qualifications
5+ years in security engineering, infrastructure security, or cloud security, with 3+ years in AWS-focused roles. Hands-on expertise in AWS WAF configuration and rule tuning. IAM (least privilege, service roles, federation). CSPM/DSPM tools for posture and data protection. CNAP tools for workload and container protection. Cloud networking security (Transit Gateway, VPC Endpoints, PrivateLink). Encryption protocols, HTTP/TLS, and API/web security. Strong background in Terraform and Git workflows for secure, version-controlled deployments. Scripting proficiency in Python or Golang for automation and integration. Deep knowledge of security standards and frameworks (NIST, CIS, PCI DSS, HIPAA). Experience in cloud-native architectures, microservices, and operational best practices in cloud and container orchestration. Integration of enterprise-scale security solutions across identity, network, and workloads. Proficiency in full-stack cloud automation using tools like Git, Terraform, Chef, and Jenkins. Excellent communication skills to distill complex technical issues into actionable guidance for varied audiences. Ability to work independently, manage multiple priorities, and deliver results in fast-paced environments. Commitment to continuous learning and adapting to evolving requirements. Bachelor's degree in computer science or related field (advanced degree or certifications such as CISSP, CCSP, AWS Certified Security Specialty preferred). Flexibility to be remote or hybrid. Compensation and Benefits
Compensation Range: The salary range for this position is $145,000 - $165,000 USD. Final compensation is determined based on experience, skills, and education. Bonus Eligibility: Bonus Eligible Benefits: Please visit www.broadridgebenefits.com for information on our comprehensive benefit offerings. EEO and Accessibility
Broadridge is an equal opportunity employer. We provide accommodations for applicants and associates in accordance with applicable laws. If you need assistance during the application process, contact us at 888-237-7769 or BRcareers@broadridge.com. For more about our company and culture, follow our official channels and resources. #J-18808-Ljbffr
At Broadridge, we aim to empower others to accomplish more. We are hiring a visionary Cloud Security Architect to drive the security of AWS and containerized environments, combining strategic design with hands-on engineering to build and automate scalable security controls. Youll partner with cloud, DevOps, and security teams to embed protections across identity, network, application, and data layers, including WAFs, IAM, CSPM, DSPM, CNAP, and infrastructure as code and DevSecOps automation to shape cloud security at scale. Responsibilities
Architect, configure, and maintain security solutions in AWS, including WAF and related web application protection technologies. Manage IAM roles, policies, and federation. Utilize CSPM and DSPM platforms for posture management and data security. Leverage CNAP tooling for container and workload protection. Provision and manage security infrastructure using Terraform (modular, reusable IaC); use Git for version control. Develop automation in Python or Golang to streamline deployment, monitoring, and remediation processes. Integrate security controls into CI/CD workflows for automated guardrails and compliance enforcement. Continuously tune security configurations based on real-world traffic analysis, vulnerability scanning, and compliance requirements. Collaborate with cross-functional teams to ensure security measures align with frameworks (NIST, CIS, PCI DSS, HIPAA) while maintaining operational efficiency. Document security configurations, operational runbooks, and troubleshooting procedures for consistent execution and knowledge sharing. Apply deep technical knowledge of HTTP request lifecycle, TLS encryption, and certificate management to secure workloads and services. Qualifications
5+ years in security engineering, infrastructure security, or cloud security, with 3+ years in AWS-focused roles. Hands-on expertise in AWS WAF configuration and rule tuning. IAM (least privilege, service roles, federation). CSPM/DSPM tools for posture and data protection. CNAP tools for workload and container protection. Cloud networking security (Transit Gateway, VPC Endpoints, PrivateLink). Encryption protocols, HTTP/TLS, and API/web security. Strong background in Terraform and Git workflows for secure, version-controlled deployments. Scripting proficiency in Python or Golang for automation and integration. Deep knowledge of security standards and frameworks (NIST, CIS, PCI DSS, HIPAA). Experience in cloud-native architectures, microservices, and operational best practices in cloud and container orchestration. Integration of enterprise-scale security solutions across identity, network, and workloads. Proficiency in full-stack cloud automation using tools like Git, Terraform, Chef, and Jenkins. Excellent communication skills to distill complex technical issues into actionable guidance for varied audiences. Ability to work independently, manage multiple priorities, and deliver results in fast-paced environments. Commitment to continuous learning and adapting to evolving requirements. Bachelor's degree in computer science or related field (advanced degree or certifications such as CISSP, CCSP, AWS Certified Security Specialty preferred). Flexibility to be remote or hybrid. Compensation and Benefits
Compensation Range: The salary range for this position is $145,000 - $165,000 USD. Final compensation is determined based on experience, skills, and education. Bonus Eligibility: Bonus Eligible Benefits: Please visit www.broadridgebenefits.com for information on our comprehensive benefit offerings. EEO and Accessibility
Broadridge is an equal opportunity employer. We provide accommodations for applicants and associates in accordance with applicable laws. If you need assistance during the application process, contact us at 888-237-7769 or BRcareers@broadridge.com. For more about our company and culture, follow our official channels and resources. #J-18808-Ljbffr