Cloud Security Architect
$218.4k - $365.2kSalesforce.Com Inc
To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.
Job Category
Software EngineeringJob Details
About Salesforce
Salesforce is the #1 AI CRM, where humans with agents drive customer success together. Here, ambition meets action. Tech meets trust. And innovation isn't a buzzword - it's a way of life. The world of work as we know it is changing and we're looking for Trailblazers who are passionate about bettering business and the world through AI, driving innovation, and keeping Salesforce's core values at the heart of it all.
Ready to level-up your career at the company leading workforce transformation in the agentic era? You're in the right place! Agentforce is the future of AI, and you are the future of Salesforce.
Overview of the Role:
As a Cloud Security Architect, you will drive the security-related efforts for the design, implementation, and maintenance of secure cloud environments leveraging cloud-native services. Bridging the gap between Product Engineering, Compliance, and Cloud Infrastructure, you will develop and communicate a converged cloud security vision. You will build secure architectural blueprints, proactively identify and drive the resolution of systemic risks, and champion "Security by Design." By leveraging robust threat modeling, infrastructure as code, and AI-enabled automation, you will reduce tech debt and defend against modern threats across public cloud architectures, with a strong emphasis on GCP and foundational environments in AWS. Responsibilities: Cloud Infrastructure Security:- Security Baselines & Standards: Define foundational security baselines and design architectures that align with industry frameworks (NIST, CIS, ISO 27001) across multi-cloud environments, maintaining a primary focus on GCP alongside core baselines in AWS.
- Identity & Governance: Design scalable IAM structures and organizational hierarchies to enforce strict least-privileged access, including the retrofitting of legacy access models.
- Systemic Risk Mitigation: Partner with Offensive Security, Threat & Vulnerability Management (TVM), and engineering leadership to continuously identify and prioritize complex vulnerabilities and architectural tech debt. Drive overarching remediation strategies across current and legacy environments, ensuring systemic risks are reduced to acceptable levels.
- Detection & Response: Ensure seamless telemetry integration for the Cybersecurity Operations Center (CSOC) and Enterprise Security to enable actionable security posture management.
- Native Tooling & Guardrails: Important to have skills withy Google Cloud Native Security Services (e.g., Chronicle, Cloud Armor, Certificate Manager, KMS, Secret Manager, DLP).
Architecture & Threat Modeling:
- Comprehensive Threat Modeling: Lead deep-dive threat modeling sessions across both product architectures and cloud infrastructure. Analyze data flows, API integrations, and trust boundaries to identify key threats before deployment.
- Architecture Reviews: Conduct periodic security reviews of new product designs and cloud environment topologies, proposing concrete, architectural remediation guidance and "secure-by-default" design patterns.
- Security Advocacy: Serve as the primary Subject Matter Expert (SME), explaining complex technical security concepts to diverse technical and non-technical stakeholders to ensure seamless integration.
Modern Cloud Architecture & Automation:
- Infrastructure & Control Guidance: Develop actionable blueprints and provide strategic guidance to the engineering teams responsible for implementing and automating IAM, network security, and data protection controls.
- Pipeline Guardrails (CI/CD): Define strict security guardrails (e.g., policy-as-code, Terraform linters) and partner with DevOps to drive their integration directly into the CI/CD pipeline, ensuring all resources are provisioned securely by default.
- Container Security Posture: Establish the architectural standards for securing our Kubernetes (GKE) footprint, defining the requirements for pod security standards, network policies, and container image scanning.
- AI & Security Automation: Leverage AI-enabled security posture management tools to analyze security telemetry, scale the identification of systemic risks, and provide automated, actionable remediation guidance to developers.
Required Qualifications:
- 15+ years of progressive experience in cybersecurity, with significant time dedicated to Cloud Security Architecture or Senior Cloud Security Engineering.
- Deep, demonstrable understanding of public cloud platforms with a primary focus on GCP and foundational knowledge of AWS, including native security services, complex IAM trust policies, and network perimeters.
- Experience leveraging AI-enabled security platforms and automation strategies to scale risk identification and integrate security guardrails into engineering workflows
- Proven track record of leading deep-dive threat modeling sessions and bridging the gap between product requirements and infrastructure implementation.
- Strong proficiency with Infrastructure as Code (specifically Terraform) and securing containerized workloads (Kubernetes/GKE).
- Deep knowledge of security frameworks (NIST, CIS, ISO 27001), compliance regulations, and modern cloud security best practices.
Preferred Qualifications:
- Strategic Influence: Ability to define security strategy for multiple business units and influence stakeholders from DevOps to the C-Suite.
- Communication: Skilled at translating "security-speak" into actionable business logic for non-technical partners.
- Analytical Rigor: A proactive problem-solver who doesn't just find holes but builds the patches and the processes to prevent them
LI-Y*
Unleash Your Potential
When you join Salesforce, you'll be limitless in all areas of your life. Our benefits and resources support you to find balance and be your best , and our AI agents accelerate your impact so you can do your best . Together, we'll bring the power of Agentforce to organizations of all sizes and deliver amazing experiences that customers love. Apply today to not only shape the future - but to redefine what's possible - for yourself, for AI, and the world.
Accommodations
If you need a reasonable accommodation during the application or the recruiting process, please submit a request via this Accommodations Request Form.
Please note that Salesforce uses artificial intelligence (AI) tools to help our recruiters assess and evaluate candidates' resumes and qualifications throughout the recruiting process. Humans will always make any candidate selection and hiring decisions. Please see our Candidate Privacy Statement for more information about how we use your personal data and your rights, including with regard to use of AI tools and opt out options.
Posting Statement
Salesforce is an equal opportunity employer and maintains a policy of non-discrimination with all employees and applicants for employment. What does that mean exactly? It means that at Salesforce, we believe in equality for all. And we believe we can lead the path to equality in part by creating a workplace that's inclusive, and free from discrimination. Know your rights: workplace discrimination is illegal. Any employee or potential employee will be assessed on the basis of merit, competence and qualifications - without regard to race, religion, color, national origin, sex, sexual orientation, gender expression or identity, transgender status, age, disability, veteran or marital status, political viewpoint, or other classifications protected by law. This policy applies to current and prospective employees, no matter where they are in their Salesforce employment journey. It also applies to recruiting, hiring, job assignment, compensation, promotion, benefits, training, assessment of job performance, discipline, termination, and everything in between. Recruiting, hiring, and promotion decisions at Salesforce are fair and based on merit. The same goes for compensation, benefits, promotions, transfers, reduction in workforce, recall, training, and education.
In the United States, compensation offered will be determined by factors such as location, job level, job-related knowledge, skills, and experience. Certain roles may be eligible for incentive compensation, equity, and benefits. Salesforce offers a variety of benefits to help you live well including: time off programs, medical, dental, vision, mental health support, paid parental leave, life and disability insurance, 401(k), and an employee stock purchasing program. More details about company benefits can be found at the following link: to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants with arrest and conviction records. At Salesforce, we believe in equitable compensation practices that reflect the dynamic nature of labor markets across various regions. The typical base salary range for this position is $218,400 - $365,200 annually. In select cities within the San Francisco and New York City metropolitan area, the base salary range for this role is $263,200 - $401,400 annually. The range represents base salary only, and does not include company bonus, incentive for sales roles, equity or benefits, as applicable.- ...Sr. Cloud Security Architect The Sr. Cloud Security Architect will act as a cloud security subject matter expert, responsible for designing, reviewing, and improving secure cloud architectures across enterprise environments. The role focuses on reducing cloud security...Suggested
$133.14k - $247.26k
...celebrated, here you can thrive. *Must work a hybrid schedule (3 days onsite) out of our DC or Silver Spring office.* The Cloud Security Architect (AWS) is a hands-on security leader with deep expertise in designing, securing, and assessing enterprise-scale public...SuggestedTemporary workWork at officeLocal area$91.3k - $184.9k
...ingenuity for clients across defense, national security, public safety, civilian, and military... ...for securing and governing enterprise cloud data environments, with a core emphasis... .... The ideal candidate will proactively architect future-proof protections for hybrid...SuggestedLive inWork at officeLocal area- ...Role : Cloud Security Architect Hands on Experience in Azure Security (Azure Bastion, Gateway/VNet Peering etc.,) Azure IAM and Identity Governance Experience Hands-on development experience on Azure Functions/DB's/Network management Experience with...Suggested
- Bank of America is looking for a Sr. Information Security Architect in Washington, DC. This senior role involves defining secure architecture... ...ensuring compliance with security policies while evaluating AI and cloud security solutions. The ideal candidate should have 8+ years...Suggested
- Hobbsnews is looking for a Cloud Security Solution Architect in Washington, DC. This role emphasizes designing and securing the bank’s cloud platforms, requiring broad knowledge of cloud services, relevant regulations, and hands-on application security experience. Candidates...
- KellyMitchell Group is seeking a Security Infrastructure Support AWS Infrastructure and Cloud Security Support SME to join their team in Bethesda, Maryland. This position requires expertise in architecting and managing AWS services, compliance reporting, and DevSecOps...
- A cybersecurity firm is seeking a Cybersecurity Architect & Engineer SME to develop secure enterprise architectures and ensure compliance with federal cybersecurity... ...systems, providing security architectural input for cloud services across environments, and improving the...Remote work
- Barbaricum is seeking an experienced Senior Cloud Security Architect in Washington, DC, to lead the design and implementation of secure cloud security architectures. This role involves defining compliance standards, developing security frameworks, and supporting cybersecurity...
- International Executive Service Corps is hiring a Cloud & Security Architecture Lead in Arlington, VA. This role involves designing secure cloud environments and leading DevSecOps integration while ensuring compliance with federal security standards. The ideal candidate...
- Akima Data Management is seeking a mission‑driven Senior Zero Trust Cloud Security Architect to lead the design, implementation, and maturation of Zero Trust and cloud‑security architectures across Department of War (DOW) classified cloud, hybrid, and on‑premise environments...For contractorsLocal areaRemote work
- Overview Tier One Technologies has an immediate need for a Cloud Security Engineer/Architect for our US Government client. This hybrid Contract-to-Hire position will be available to start in Falls Church, VA, Morrisville, NC or Eagan, MN SELECTED CANDIDATES WITHOUT REQUIRED...Permanent employmentContract workImmediate start
- General Dynamics Information Technology seeks a Security Infrastructure Support Security Architect in Bethesda, MD. This hybrid role requires expertise in architecting cybersecurity for cloud-based federal systems. The successful candidate will have over 10 years of related...
- A leading cloud security firm is seeking a Senior Zero Trust Cloud Security Architect. This role involves designing and implementing Zero Trust architectures across various environments. The ideal candidate has deep expertise in Zero Trust and cloud security engineering...
- A.C. Coy is seeking a Cloud Security Engineer/Architect to join their team in Falls Church, VA. This hybrid role involves developing a comprehensive Zero Trust architecture and ensuring security compliance across cloud infrastructures. Candidates should have over 12 years...
- Bank of America is seeking an experienced Cloud Security Solution Architect to join their Global Information Security team. This position will design secure cloud solutions and ensure robust cloud security posture across hybrid platforms. The ideal candidate will have over...
- Apogee Global RMS is seeking a Cloud Security Architect / FedRAMP Advisor to support federal mission-critical cloud security initiatives. This role combines cloud engineering and compliance, guiding programs through secure cloud adoption. Successful candidates will architect...
$140.5k - $205k
Job Description We are seeking an experienced Cloud Security Solution Architect to join an exciting team within Global Information Security (GIS). The Cloud Security Solution Architect is responsible for designing, strengthening, and securing the Bank’s use of external...Shift workDay shift- Apogee Global RMS is seeking a Cloud Security Architect / FedRAMP Advisor to support federal and mission‑critical cloud security initiatives. This role is built for architects who understand the intersection of cloud engineering, compliance frameworks, and real‑world security...
$185k - $190k
Morgan Stanley is seeking a Vice President, Lead Cybersecurity Engineer in Arlington, VA to serve as a cloud security expert. You'll influence secure design patterns and risk remediation across cloud programs while ensuring compliance with security policies. This role...- ...PenFed is hiring a (Hybrid) Enterprise Security Architect at our Tysons, Virginia location. The Enterprise IT Security Architect is a senior... ...understanding of enterprise security domains, including IAM, cloud security, application security, infrastructure security, and...Work at office
- ...a cybersecurity role requiring at least one year of specialized experience at the GS-13 level. Responsibilities include approving security designs, developing security architectures, and overseeing cybersecurity projects. Applicants must demonstrate a strong focus on various...
$175k - $225k
...leading data center management company is seeking an IT Cyber Security Architect to oversee its enterprise IT security architecture. The role... ...enterprise cybersecurity architecture and a strong background in cloud security and identity management. The architect will be...$175k - $225k
A leading data center company is seeking an IT Cyber Security Architect in Alexandria, Virginia. The ideal candidate will have over 12 years of experience in cybersecurity architecture, focusing on enterprise IT security across various platforms. Responsibilities include...$99k - $225k
...CANDIDATE JOURNEY Discover what to expect during your journey as a candidate with us. Compliance ISSO and Enterprise Cybersecurity Security Architect Enterprise Cybersecurity (ECS) Governance, Risk and Compliance (GRC) plays a pivotal role in safeguarding the organization’s...Full timeContract workPart timeWork at officeLocal areaRemote work- ...inspiration and expand your capabilities, then consider a career in Advisory. KPMG is currently seeking a Director, ServiceNow Security Operations Architect to join our Advisory Services practice. Responsibilities: Serve as the primary technical expert to drive the sales...H1bLocal area
- ...Job Description Job Description The Enterprise Cloud Security Architect will serve as a multicloud architecture SME across AWS, Azure, and GCP, providing design level leadership and guidance to engineering teams. Lead the interpretation and adoption of multicloud...Temporary workRelocation package
$154.05k - $278.48k
...Leidos has an exciting opening for you as our next TS/SCI Security Engineer Architect working across several Task Orders under the DOMEX Technology... ...your job is to provide technical security expertise in our cloud and on-premise infrastructure with focus on leading teams...Contract workLocal areaImmediate startRemote workFlexible hours$170k - $180k
...About the Role SteerBridge Strategies is seeking an experienced Security Architect to support our Payments and Aviation FinTech initiatives.... ...design, compliance alignment, and risk mitigation efforts across cloud and hybrid environments. This role requires deep expertise in...- ...Cyber Security Architect Altamira Technologies has a long and successful history providing innovative solutions throughout the U.S. National... ...authentication (MFA) systems. Must possess a working knowledge of cloud‑native security (e.g., AWS IAM, Azure AD, Google Cloud IAM)...Worldwide
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cloud Security Architect. Be the first to apply!
- cloud engineer intern McLean, VA
- senior cloud solutions architect McLean, VA
- cloud engineering manager McLean, VA
- senior principal cloud computing engineer McLean, VA
- cloud architect McLean, VA
- aws cloud infrastructure engineer McLean, VA
- principal cloud engineer McLean, VA
- senior aws cloud engineer McLean, VA
- principal cloud computing engineer McLean, VA
- google cloud engineer McLean, VA


