Senior Security Architect @EPAM
All Others
Salary unspecified
Remote Location
Employment Type full-time
Posted 5d ago

[Hiring] Senior Security Architect @EPAM

5d ago - EPAM is hiring a remote Senior Security Architect. πŸ’Έ Salary: unspecified πŸ“Location: Colombia

Role Description

We are looking for a Senior Security Architect (Cloud & AWS) to lead the closure of AWS cybersecurity remediation tickets and subsequently operate as the account's permanent security lead for ongoing operations and cloud security governance. The profile will own the security posture of a multi-account AWS environment, coordinate with the global cybersecurity team, and ensure that all controls remain audit-ready on an ongoing basis.

  • Lead the closure of AWS cybersecurity remediation tickets, ensuring timely and effective resolution across the multi-account environment.
  • Own the overall security posture of the AWS environment, acting as the account's permanent security lead for ongoing operations and cloud security governance.
  • Design, implement, and maintain security controls across AWS services (IAM, GuardDuty, Security Hub, Inspector, CloudTrail, Secrets Manager, AWS Config).
  • Coordinate with the global cybersecurity team to align on standards, policies, and remediation priorities.
  • Ensure all security controls remain audit-ready on an ongoing basis and generate audit evidence packages for frameworks such as ISO 27001 and SOC 2.
  • Manage identity and access controls, including SSO, MFA enforcement, and privilege management (PAM).
  • Oversee security monitoring, SIEM integration, log aggregation, and alert triage to detect and respond to threats.
  • Collaborate with infrastructure engineers, DevOps teams, and client-side stakeholders to embed security-first practices without blocking business delivery.
  • Deliver weekly client-facing reporting on security posture, remediation progress, and risk status.
  • Apply threat frameworks (MITRE ATT&CK, STRIDE, NIST CSF, Zero Trust) to continuously improve the environment's resilience.

Qualifications

  • 10+ years of professional experience in cybersecurity, cloud security, or information security roles.
  • Minimum 5 years of hands-on experience with AWS security services (GuardDuty, Security Hub, IAM, Secrets Manager, Inspector, CloudTrail, AWS Config).
  • Demonstrated experience leading security remediation projects in regulated environments (banking, healthcare, or FMCG preferred).
  • Experience working with audit frameworks and generating audit evidence packages (ISO 27001, SOC 2, or equivalent).
  • Prior experience in client-embedded or staff augmentation roles is a strong plus.

Requirements

  • AWS: IAM, GuardDuty, Security Hub, Inspector, CloudTrail, Secrets Manager, AWS Config, AWS Backup, Transfer Family.
  • EC2 and Elastic Beanstalk: platform management, Amazon Linux migration, patch management.
  • Encryption: KMS, RDS encryption at rest, S3 server-side encryption, certificate management.
  • Network security: Security Groups, NACLs, VPC architecture, WAF, NLB/ALB security.
  • Identity: SSO (AWS IAM Identity Center), MFA enforcement, privilege management (PAM).
  • Threat frameworks: MITRE ATT&CK, STRIDE, NIST CSF, Zero Trust principles.
  • Security monitoring: SIEM integration (Splunk preferred), log aggregation, alert triage.
  • Candidates must hold at least one of the following certifications: AWS Certified Security - Specialty, AWS Certified Solutions Architect - Professional, or CISSP (Certified Information Systems Security Professional).
  • Advanced proficiency in English (C1+).

Benefits

  • Nice to have: ISO 27001 Lead Implementer or Lead Auditor.
  • CISM (Certified Information Security Manager).
  • CompTIA Security+ or equivalent baseline.
  • CEH, OSCP, or offensive security certifications.
  • Qualys or equivalent vulnerability management tooling.
  • Endpoint Detection and Response (EDR/XDR) platforms.
  • IaC security scanning (Checkov, tfsec, or equivalent).
  • DevSecOps practices: pipeline security gates, SAST/DAST integration.
  • Multi-cloud exposure (GCP or Azure) as secondary environment.
Before You Apply
️
remote Be aware of the location restriction for this remote position: Colombia
β€Ό Beware of scams! When applying for jobs, you should NEVER have to pay anything. Learn more.
Senior Security Architect @EPAM
All Others
Salary unspecified
Remote Location
Employment Type full-time
Posted 5d ago
Apply for this position
Did not apply βœ“
Applied βœ“
Sent Follow-Up βœ“
Interview Scheduled βœ“
Interview Completed βœ“
Offer Accepted βœ“
Offer Declined βœ“
Application Denied βœ“
Unlock 135,000+ Remote Jobs
️
remote Be aware of the location restriction for this remote position: Colombia
β€Ό Beware of scams! When applying for jobs, you should NEVER have to pay anything. Learn more.
Apply for this position
Did not apply βœ“
Applied βœ“
Sent Follow-Up βœ“
Interview Scheduled βœ“
Interview Completed βœ“
Offer Accepted βœ“
Offer Declined βœ“
Application Denied βœ“
Unlock 135,000+ Remote Jobs
Γ—

Apply to the best remote jobs
before everyone else

Access 135,000+ vetted remote jobs and get daily alerts.

4.9 β˜…β˜…β˜…β˜…β˜… from 500+ reviews
Unlock All Jobs Now

Maybe later