BlueSky Resource Solutions is hiring: Principal Cybersecurity Architect in Atlan

Principal Integrated Cybersecurity Architect

Direct message the job poster from BlueSky Resource Solutions.

Primary Responsibilities

• Communicate cybersecurity guidelines to engineering and business teams, supporting their adoption through process, procedural, and technical guidance.
• Lead discussions with product and engineering teams to drive adoption of cybersecurity best practices.
• Align architectural direction with business and portfolio stakeholders to ensure solution intent and compliance.
• Serve as the cybersecurity lead for large‑scale workloads and complex solutions, collaborating with cross‑functional leaders to ensure understanding, alignment, and shared outcomes.
• Partner closely with engineering teams to assess cybersecurity risks in architecture decisions and assist with control implementation.
• Lead threat modeling workshops for products and enterprise tools, identifying and mitigating potential risks.
• Provide security guidance for new business and technical projects to ensure adherence to corporate security standards.
• Act as the on‑the‑ground cybersecurity representative for engineering and product teams, maintaining alignment with enterprise cybersecurity initiatives.
• Participate in security events and incident response efforts to identify architectural gaps and recommend long‑term remediation.
• Mentor and educate software engineers on cybersecurity best practices, secure coding, and architectural standards.
• Collaborate with legal, compliance, and governance teams to ensure architectural designs support relevant regulatory and contractual requirements.

Minimum Qualifications

• Bachelor’s degree in a related discipline and 10+ years of relevant professional experience. Equivalent combinations include:
• Master’s degree with 8 years’ experience,
• Ph.D. with 5 years’ experience, or
• 14 years’ total experience in a related field.

At least 7 years focused on cybersecurity.

Hands‑on experience designing, securing, or operating AWS infrastructure and services.

Ability to clearly articulate the objectives of cybersecurity policies to both technical and non‑technical stakeholders.

Exceptional communication, executive presentation, and customer service skills.

Proven ability to build strong working relationships with key stakeholders and collaborate with multiple cybersecurity teams to implement best practices.

Consultative and diplomatic approach to resolving complex or controversial technical issues.

Strong risk assessment and mitigation skills, balancing business impact and likelihood.

Knowledge of cybersecurity and technology architectures, including zero trust, IaaS, PaaS, SaaS, virtualization, containerization, DevSecOps, and software‑defined networking.

Demonstrated ability to creatively solve complex cybersecurity challenges while maintaining business alignment.

Experience with Agile methodologies and delivering change within large enterprise environments.

Familiarity with the AWS Well‑Architected Framework and cloud security patterns.

Familiarity with cybersecurity frameworks (e.g., NIST, ISO 27000, FFIEC) and regulatory standards (e.g., GDPR, GLBA).

Preferred Qualifications

• Experience developing and designing cybersecurity standards across hosting and application stacks in both cloud and on‑premises environments.
• Strong knowledge of Identity and Access Management (IAM), cryptography, key management, secrets management, access controls, and security protocols (e.g., MFA, SAML, OAuth, OIDC).
• Expertise in application security implementation and best practices.
• Technical fluency in multiple technologies such as Python, .NET, Java, Spring Frameworks, Oracle, serverless architectures, and authentication models.
• Experience with firewalls, WAFs, and edge security services, along with strong understanding of DMZ and network architectures.
• Proven ability to develop and implement enterprise‑scale cloud solutions across AWS, Azure, or GCP.
• Understanding of containers and serverless platforms (e.g., EKS, ECS, Lambda, Fargate).
• Experience in regulated or critical infrastructure industries such as financial services, telecommunications, defense, or government.
• Background in Big Four consulting or Fortune 500 environments.
• Relevant industry certifications (e.g., CISSP, CEH, OSCP, CISM, CISA, AWS, or Azure).