Cloud Security Architect
Location: San Francisco, California, United States
Agency: Data & Tech Global - United States
Job Function: Technology
Type of Contract: Regular
Business Overview
KINESSO is the technology-driven performance marketing agency that sits at the very heart of IPG Mediabrands, providing actionable growth for both our agency partners and clients. We turn 'action' into 'outcome' for our clients, leveraging our unique capabilities in optimization, analytics, AI, and experimentation. KINESSO has brought together the collective power of what was formerly Matterkind, Reprise, P3, and Kinesso under one collective entity that will serve as the most powerful delivery engine in the industry. We have extensive offerings spanning across performance marketing and data and technology. Fueled by a deep understanding of consumer behavior, we offer an end-to-end engine of planning and optimization while also delivering on data-driven strategy for social platforms, actionable growth in e-commerce, and creating curated marketplaces specific to each client's function and needs. The company has more than 6,000 employees operating in more than 60 countries. Learn more at www.KINESSO.com.
Position Summary
We are seeking a Cloud Security Architect to design and implement security strategies for our cloud environments. The ideal candidate will have deep expertise in cloud security technologies and a strong understanding of cloud platforms such as AWS or Google Cloud. You will work closely with cloud engineers, application developers, DevOps, and IT teams to ensure that our cloud infrastructure is secure, compliant, and resilient. Additionally, you will play a critical role in establishing a DevSecOps practice within the organization, including building automated security pipelines and managing cloud security posture.
Responsibilities
- Lead the design and implementation of security architectures for large, multi-cloud (AWS, GCP), and complex environments, ensuring they align with industry best practices, IPG's standards, and Kinesso's strategic objectives.
- Develop and help enforce security best practices and guidelines for software development, system architecture, and network infrastructure across the company.
- Conduct threat modeling, risk assessments and vulnerability assessments to identify and mitigate potential security threats.
- Collaborate with cloud engineers and application developers to integrate security into the design and development processes.
- Establish and lead the implementation of a DevSecOps practice within the organization.
- Build and maintain automated security pipelines within the CI/CD process.
- Implement and manage Cloud Security Posture Management (CSPM) tools to continuously monitor and improve the security posture of cloud environments.
- Work with DevOps teams to embed security controls into the CI/CD pipeline.
- Monitor cloud environments for security incidents and respond to security breaches. Additionally, collaborate with central CISO team in the response efforts.
- Ensure compliance with relevant regulatory frameworks, including GDPR, CCPA, and ISO 27001.
- Provide guidance and mentorship to other team members on cloud security, DevSecOps, CSPM, and regulatory compliance best practices.
- Stay up-to-date with the latest security trends, vulnerabilities, and technologies.
Required Skills & Experience
- Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience).
- Minimum of 8 years of experience in information security, with at least 3 years focused on cloud security.
- Strong knowledge of cloud platforms (AWS, Azure, Google Cloud) and their security features.
- Experience with security tools such as SIEM, IDS/IPS, CSPM, and vulnerability management systems.
- Proven experience in establishing DevSecOps practices and building automated security pipelines.
- Deep understanding of regulatory frameworks such as GDPR, CCPA, and ISO 27001.
- Familiarity with other security compliance standards and frameworks (e.g., NIST, SOC 2) is a plus.
- Proficiency in scripting and automation (e.g., Python, Terraform, Ansible) is a plus.
- Relevant certifications such as AWS Certified Security - Specialty, Certified Information Systems Security Professional (CISSP), or Certified Cloud Security Professional (CCSP) are highly desirable.
- Excellent communication skills, with the ability to explain complex security concepts to both technical and non-technical stakeholders.
Wage and Benefits
We offer a Total Rewards package that includes medical and dental coverage, 401(k) plans, flex spending, life insurance, disability, employee discount program, employee stock purchase program and paid family benefits to support you and your family. To give you the ability to better meet your personal needs, and in support of your physical and emotional well-being, you will receive discretionary time off days and company-wide Appreciation Weeks and Wellness Days.
We also offer a competitive Total Compensation package, including a competitive salary and eligibility for an annual discretionary incentive award or a relevant incentive award.
The salary range for this position is posted below.
Salary Range: $160,000 - $190,000 USD
#J-18808-Ljbffr