Cloud Security Architect

As a Cloud Security Architect within Credera’s Security and Privacy capability group, you will serve as a senior subject matter expert responsible for evaluating, designing, and improving cloud security postures for multiple clients. You will provide security leadership across complex cloud environments, guide consultant teams on end-to-end delivery, and help clients identify and remediate cloud security exposures across identity, access, and workload configurations. This role focuses heavily on cloud security exposure management, cloud-native IAM, and the use of Cloud Access Security Broker (CASB) and Cloud Security Posture Management (CSPM) tools to proactively reduce risk. You will work closely with executive stakeholders to translate cloud security risks into actionable business decisions while enabling secure cloud adoption at scale. What You’ll Do Serve as a Cloud Security subject matter expert, advising clients on cloud security architecture, exposure management, and risk reduction strategies Lead cloud security maturity and exposure assessments, identifying misconfigurations, identity risks, and workload vulnerabilities across AWS and Azure environments Evaluate and implement Cloud Security Posture Management (CSPM) and CASB solutions, including tools such as Orca Security and Wiz, to identify and prioritize risk Design and assess cloud-based IAM and PAM solutions, including direct experience with platforms such as Okta and Delinea Partner with clients to remediate cloud security gaps related to identity, access, logging, monitoring, and least-privilege access Communicate cloud security findings and recommendations clearly to both technical teams and executive leadership Guide and mentor consulting teams through secure cloud delivery and best practices Contribute to the evolution of Credera’s cloud security methodologies, patterns, and points of view Support business development efforts by identifying opportunities to help clients secure and scale their cloud environments Who You Are You have 8+ years of hands‑on experience designing, assessing, or securing cloud environments You have deep experience with cloud-based Identity and Access Management (IAM) solutions, including Okta, and understand modern identity‑centric security models You have direct, practical experience using CASB / CSPM / Cloud Security Assessment tools, such as Orca Security and/or Wiz, or AWS GuardDuty You have experience securing workloads in at least one major cloud platform, with a strong preference for AWS and/or Microsoft Azure You understand cloud security risks related to identity sprawl, misconfiguration, excessive permissions, and workload exposure You are comfortable leading cloud security assessments, identifying risk, and prioritizing remediation efforts You can translate technical cloud security issues into clear business impact and value You have strong communication skills and can engage stakeholders at both the executive and engineering levels You enjoy mentoring others and helping grow cloud security capability within a consulting environment You are comfortable contributing to business cases, client proposals, and growth opportunities Certifications Certified Information Systems Security Professional (CISSP) AWS Certified Security Specialty (AWS SCS) – preferred Microsoft Azure Security Engineer Associate – preferred For individuals hired to work in Colorado, Credera is required by law to include a reasonable estimate of the compensation range for this role. This compensation range is specific to the State of Colorado and includes the range of factors considered in making compensation decisions including but not limited to skill sets; experience and training; certifications; etc. We would not anticipate that the individual hired into this role would be near the top end of the compensation range, but that decision will be dependent on the facts associated with each specific individual’s relevant experience for the role. Denver Pay Range $130,000 — $170,000 USD Benefits Credera provides a competitive salary and a comprehensive benefits plan. Benefits include health, mental health, vision, dental, and life insurance, prescriptions, fertility and adoption benefits, community service days, paid parental leave, PTO, 14 paid holidays, matching 401(k), Healthcare & Dependent Flexible Spending Accounts, and disability benefits. Hybrid Working Model Our employees have the flexibility to work remotely two days a week. We expect team members to spend three days in person, with the freedom to choose the days and times that best suit them, their project, and their teams. You will collaborate with your project team to balance flexibility with the benefits of in-person connection, delivering outstanding results for our clients. In-person engagement is essential for building strong relationships with clients and colleagues. It fosters trust, encourages learning, and helps us grow as consultants and professionals. Travel For our consulting roles, our goal is to minimize travel, and most projects do not require extensive travel. While some projects may involve up to 80% travel for a period, the annual average for team members is typically 10%–30%. We take a personal approach to travel by considering your submitted preferences when assigning roles. Applicants must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future; Credera will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT, or any employment-based visa). All qualified applicants will receive consideration for employment without regard to race, color, religion, gender identity, sexual orientation, national origin, age, genetic information, veteran status, or disability. #J-18808-Ljbffr