Description

Responsibilities

Responsible for designing, implementing, and maintaining the security architecture for UL Solutions' cloud environments. This includes designing and implementing security controls, conducting security assessments, managing security risks and ensuring the cloud environments follow a "security-by-design" methodology. The ideal candidate will have a strong understanding of cloud security governance, principles and best practices, as well as experience with a variety of cloud platforms. This position will report to the Global Cybersecurity Architect within the Cyber Architecture & Engineering domain of Global Cybersecurity.
 

  • Lead efforts to develop effective cloud security governance and security control recommendations in coordination with various IT teams and business units
  • Liaison with various application teams, document risks and needs and develop a security governance model that addresses risks for various environments, employing a "security-by-design" approach
  • Actively participate in cloud discovery and assessment projects
  • Conduct security assessments of our cloud environment, report risks and recommended mitigations
  • Manage security risks associated with our cloud environment
  • Design and implement secure cloud architectures that meet business and compliance requirements
  • Participate in developing security policies, standards, and procedures for cloud environments
  • Conduct meetings with key stakeholders regarding architectural discussions related to security and document decisions
  • Collaborate with other IT teams to ensure that security controls are integrated into cloud-based applications and infrastructure
  • Coordinate with the Global Cybersecurity Architect & Engineering team when evaluating new security technologies and recommend solutions that improve the security of cloud-based systems
  • Participate in Enterprise level policy creation and governance around cloud security (Azure, AWS, GCP, etc.)
  • Participate in the Enterprise architecture group regarding discussions that impact infrastructure, data security and cloud environments
  • Participate in change management around policy implementations in the cloud infrastructure
  • Familiarity with security, audit and compliance frameworks (e.g., NIST, CIS, ISO 27001/2, SOC 2, HIPAA, GDPR, PCI-DSS)
     

Qualifications
 

  • Bachelor's degree in computer science, information security, or a related field
  • 10+ years of experience in cloud security architecture
  • Experience with a variety of cloud platforms (AWS, Azure, GCP)
  • Experience with various cloud models (IaaS, PaaS, SaaS)
  • Strong understanding of cloud security principles and best security practices
  • Experience with security assessment tools and methodologies
  • Excellent analytical and problem-solving skills
  • Strong project management skills
  • Excellent written and verbal communication skills
  • Relevant cloud security certifications (e.g., AWS Certified Security Specialty, Azure Security Engineer, Certified Cloud Security Professional (CCSP), etc.) are highly desirable

Education

Any Graduate