Cadence Design Systems
Sr Cloud Security Architect
Cadence Design Systems, San Jose, California, United States, 95199
Sr Cloud Security Architect page is loaded## Sr Cloud Security Architectlocations:
SAN JOSEtime type:
Full timeposted on:
Posted Todayjob requisition id:
R52638## **At Cadence, we hire and develop leaders and innovators who want to make an impact on the world of technology.****Job Summary**
We are seeking a Senior Cloud Security Architect to define and lead security architecture across multi-cloud platforms (AWS, Microsoft Azure, and Google Cloud Platform) and AI/Generative AI (GenAI) workloads. This role will be responsible for designing secure cloud and AI architectures, establishing governance and guardrails, and partnering with engineering, data, and AI teams to securely enable innovation at scale.
The ideal candidate possesses deep cloud security expertise, strong architectural leadership, and recognized industry certifications, including CISSP, CCSP, and cloud-provider security credentials, with at least 8 years of hands-on experience in cloud security architecture.
**Key Responsibilities**
Cloud Security Architecture & Strategy
1.
Design and maintain secure, scalable, and resilient security architectures across AWS, Azure, and GCP.
2.
Define cloud and AI security reference architectures, patterns, and standards covering IaaS, PaaS, containers, serverless, and AI platforms.
3.
Lead security architecture reviews for cloud and AI initiatives, ensuring consistency, defense-in-depth, and least-privilege design.
4.
Managed AI services (e.g., Amazon Bedrock, Azure OpenAI, GCP Vertex AI), self-hosted and open-source models
**Identity, Network, and Data Security**
1.
Architect IAM strategies for cloud and AI services (human, workload, and service identities).
2.
Design network security architectures (segmentation, private endpoints, service perimeters, Zero Trust).
3.
Define data protection and key management strategies for cloud and AI workloads, including encryption, KMS/HSM, BYOK/HYOK, and secrets management.
**Risk Management, Compliance & AI Governance**
1.
Ensure cloud and AI architectures align with security and compliance frameworks (NIST, ISO 27001, SOC 2, CIS, GDPR, etc.).
2.
Contribute to AI governance programs, including:
1.
Responsible AI and ethical AI principles
2.
Model risk management and lifecycle controls
3.
Compliance with emerging AI regulations and standards (e.g., NIST AI RMF, EU AI Act readiness)
3.
Support threat modeling, risk assessments, and control mapping for both cloud and AI systems.
**Security Engineering & Automation (DevSecOps / MLOps)**
1.
Embed security into CI/CD and MLOps pipelines for cloud and AI workloads.
2.
Promote infrastructure-as-code and policy-as-code for consistent security enforcement.
3.
Define detection and response strategies using cloud-native and AI-aware security tooling, including logging, SIEM integration, and anomaly detection.
**Leadership & Collaboration**
1.
Serve as a senior security authority and trusted advisor for cloud, platform, data, and AI engineering teams.
2.
Mentor engineers and architects on cloud and AI security best practices.
3.
Evaluate and recommend cloud, AI, and security platforms and third-party solutions.
**Required Qualifications**
Experience
1.
8+ years of experience in cloud security architecture, security engineering, or related roles.
2.
Demonstrated experience securing multi-cloud environments (AWS, Azure, GCP).
3.
Hands-on experience designing security controls for AI/ML or GenAI workloads in production environments.
**Certifications (Required)**
1.
CISSP (Certified Information Systems Security Professional)
2.
CCSP (Certified Cloud Security Professional)
3.
Cloud security certifications, such as:
1.
AWS Certified Security – Specialty
2.
Microsoft Certified: Azure Security Engineer (Associate or Expert)
3.
Google Professional Cloud Security Engineer
**Technical Skills**
1.
Deep expertise in:
1.
Cloud IAM, networking, logging, and security services
2.
Encryption, PKI, KMS/HSM, and secrets management
3.
Kubernetes and container security
2.
Strong understanding of:
1.
AI/ML pipelines, GenAI architectures, and model lifecycle
2.
AI-specific threat models and mitigations
3.
DevSecOps and secure MLOps practices
**Preferred Qualifications**
1.
Experience securing regulated or high-risk environments (financial services, healthcare, government).
2.
Familiarity with Zero Trust and privacy-enhancing technologies.
3.
Knowledge of AI governance frameworks (NIST AI RMF, ISO/IEC 23894, EU AI Act).
4.
Strong communication skills with the ability to influence both technical and executive stakeholders.*The annual salary range for California is $185,500 to $344,500. You may also be eligible to receive incentive compensation: bonus, equity, and benefits. Sales positions generally offer a competitive On Target Earnings (OTE) incentive compensation structure. Please note that the salary range is a guideline and compensation may vary based on factors such as qualifications, skill level, competencies and work location. Our benefits programs include: paid vacation and paid holidays, 401(k) plan with employer match, employee stock purchase plan, a variety of medical, dental and vision plan options, and more.*## **We’re doing work that matters. Help us solve what others can’t.****Equal Employment Opportunity Policy:**Cadence is committed to equal employment opportunity throughout all levels of the organization.We welcome your interest in the company and want to make sure our job site is accessible to all. If you experience difficulty using this site or to request a reasonable accommodation, please contact staffing@cadence.com.**Privacy Policy:**Job Applicant If you are a job seeker creating a profile using our careers website, please see the .E-Verify Cadence participates in theE-Verify program in certain U.S. locations as required by law.Cadence plays a critical role in creating the technologies that modern life depends on. We are a global electronic design automation company, providing software, hardware, and intellectual property to design advanced semiconductor chips that enable our customers create revolutionary products and experiences. Thanks to the outstanding caliber of the Cadence team and the empowering culture that we have cultivated for over 25 years, Cadence continues to be recognized by Fortune Magazine as one of the 100 Best Companies to Work For. Our shared passion for solving the world’s toughest technical challenges, our dedication to pushing the limits of the industry, and our drive to do meaningful work differentiates the people of Cadence.
Cadence is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, basis of disability, or any other protected class. #J-18808-Ljbffr
SAN JOSEtime type:
Full timeposted on:
Posted Todayjob requisition id:
R52638## **At Cadence, we hire and develop leaders and innovators who want to make an impact on the world of technology.****Job Summary**
We are seeking a Senior Cloud Security Architect to define and lead security architecture across multi-cloud platforms (AWS, Microsoft Azure, and Google Cloud Platform) and AI/Generative AI (GenAI) workloads. This role will be responsible for designing secure cloud and AI architectures, establishing governance and guardrails, and partnering with engineering, data, and AI teams to securely enable innovation at scale.
The ideal candidate possesses deep cloud security expertise, strong architectural leadership, and recognized industry certifications, including CISSP, CCSP, and cloud-provider security credentials, with at least 8 years of hands-on experience in cloud security architecture.
**Key Responsibilities**
Cloud Security Architecture & Strategy
1.
Design and maintain secure, scalable, and resilient security architectures across AWS, Azure, and GCP.
2.
Define cloud and AI security reference architectures, patterns, and standards covering IaaS, PaaS, containers, serverless, and AI platforms.
3.
Lead security architecture reviews for cloud and AI initiatives, ensuring consistency, defense-in-depth, and least-privilege design.
4.
Managed AI services (e.g., Amazon Bedrock, Azure OpenAI, GCP Vertex AI), self-hosted and open-source models
**Identity, Network, and Data Security**
1.
Architect IAM strategies for cloud and AI services (human, workload, and service identities).
2.
Design network security architectures (segmentation, private endpoints, service perimeters, Zero Trust).
3.
Define data protection and key management strategies for cloud and AI workloads, including encryption, KMS/HSM, BYOK/HYOK, and secrets management.
**Risk Management, Compliance & AI Governance**
1.
Ensure cloud and AI architectures align with security and compliance frameworks (NIST, ISO 27001, SOC 2, CIS, GDPR, etc.).
2.
Contribute to AI governance programs, including:
1.
Responsible AI and ethical AI principles
2.
Model risk management and lifecycle controls
3.
Compliance with emerging AI regulations and standards (e.g., NIST AI RMF, EU AI Act readiness)
3.
Support threat modeling, risk assessments, and control mapping for both cloud and AI systems.
**Security Engineering & Automation (DevSecOps / MLOps)**
1.
Embed security into CI/CD and MLOps pipelines for cloud and AI workloads.
2.
Promote infrastructure-as-code and policy-as-code for consistent security enforcement.
3.
Define detection and response strategies using cloud-native and AI-aware security tooling, including logging, SIEM integration, and anomaly detection.
**Leadership & Collaboration**
1.
Serve as a senior security authority and trusted advisor for cloud, platform, data, and AI engineering teams.
2.
Mentor engineers and architects on cloud and AI security best practices.
3.
Evaluate and recommend cloud, AI, and security platforms and third-party solutions.
**Required Qualifications**
Experience
1.
8+ years of experience in cloud security architecture, security engineering, or related roles.
2.
Demonstrated experience securing multi-cloud environments (AWS, Azure, GCP).
3.
Hands-on experience designing security controls for AI/ML or GenAI workloads in production environments.
**Certifications (Required)**
1.
CISSP (Certified Information Systems Security Professional)
2.
CCSP (Certified Cloud Security Professional)
3.
Cloud security certifications, such as:
1.
AWS Certified Security – Specialty
2.
Microsoft Certified: Azure Security Engineer (Associate or Expert)
3.
Google Professional Cloud Security Engineer
**Technical Skills**
1.
Deep expertise in:
1.
Cloud IAM, networking, logging, and security services
2.
Encryption, PKI, KMS/HSM, and secrets management
3.
Kubernetes and container security
2.
Strong understanding of:
1.
AI/ML pipelines, GenAI architectures, and model lifecycle
2.
AI-specific threat models and mitigations
3.
DevSecOps and secure MLOps practices
**Preferred Qualifications**
1.
Experience securing regulated or high-risk environments (financial services, healthcare, government).
2.
Familiarity with Zero Trust and privacy-enhancing technologies.
3.
Knowledge of AI governance frameworks (NIST AI RMF, ISO/IEC 23894, EU AI Act).
4.
Strong communication skills with the ability to influence both technical and executive stakeholders.*The annual salary range for California is $185,500 to $344,500. You may also be eligible to receive incentive compensation: bonus, equity, and benefits. Sales positions generally offer a competitive On Target Earnings (OTE) incentive compensation structure. Please note that the salary range is a guideline and compensation may vary based on factors such as qualifications, skill level, competencies and work location. Our benefits programs include: paid vacation and paid holidays, 401(k) plan with employer match, employee stock purchase plan, a variety of medical, dental and vision plan options, and more.*## **We’re doing work that matters. Help us solve what others can’t.****Equal Employment Opportunity Policy:**Cadence is committed to equal employment opportunity throughout all levels of the organization.We welcome your interest in the company and want to make sure our job site is accessible to all. If you experience difficulty using this site or to request a reasonable accommodation, please contact staffing@cadence.com.**Privacy Policy:**Job Applicant If you are a job seeker creating a profile using our careers website, please see the .E-Verify Cadence participates in theE-Verify program in certain U.S. locations as required by law.Cadence plays a critical role in creating the technologies that modern life depends on. We are a global electronic design automation company, providing software, hardware, and intellectual property to design advanced semiconductor chips that enable our customers create revolutionary products and experiences. Thanks to the outstanding caliber of the Cadence team and the empowering culture that we have cultivated for over 25 years, Cadence continues to be recognized by Fortune Magazine as one of the 100 Best Companies to Work For. Our shared passion for solving the world’s toughest technical challenges, our dedication to pushing the limits of the industry, and our drive to do meaningful work differentiates the people of Cadence.
Cadence is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, basis of disability, or any other protected class. #J-18808-Ljbffr