Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Cloud Security Architect

$120k - $150k

IDEXX

IDEXX Laboratories is seeking a **Cloud Security Architect** to lead our multi-cloud security architecture across AWS, Azure, and GCP environments. This senior-level position will architect and implement cloud security posture management (CSPM) solutions, drive security standards enforcement, and partner with engineering teams to embed security controls directly into cloud deployment pipelines. You will play a critical role in protecting applications that serve our global veterinary diagnostics business while enabling development teams to move fast without compromising security.This position reports to the Senior Manager of Product & Application Security and works closely with DevOps engineers and cloud platform owners across the organization.**In this role, you will be responsible for...****Cloud Security Architecture & CSPM*** Architect, implement, and continuously improve cloud security posture management across AWS, Azure, and GCP environments supporting hundreds of applications* Lead the migration from AquaSec to CrowdStrike Falcon CSPM, ensuring continuity of visibility and compliance enforcement* Establish and maintain compliance with CIS Benchmarks Level 1 standards across all cloud platforms* Design monitoring and alerting strategies that surface actionable security gaps to both security and engineering teams**Infrastructure-as-Code Security*** Implement automated security scanning and policy enforcement for Terraform, CloudFormation, and other IaC frameworks* Integrate tools like CrowdStrike Falcon, Checkov and Trivy into CI/CD pipelines to prevent misconfigurations before deployment* Develop policy-as-code frameworks that codify security requirements and enable self-service compliance**DevOps Partnership & Enablement*** Embed security controls directly into cloud deployment pipelines using native platform capabilities and third-party tooling* Partner with DevOps teams to build secure-by-default infrastructure templates and golden paths* Conduct architecture reviews for new cloud services and deployment patterns* Translate complex security requirements into practical, actionable guidance for engineering teams**Security Assessments & Risk Management*** Conduct cloud security assessments, threat modeling, and architecture reviews for critical workloads* Identify and prioritize security risks based on business impact, exploitability, and compensating controls* Work with product teams to implement mitigations that balance security effectiveness with operational feasibility**Tooling, Automation & Metrics*** Manage and optimize cloud-native security tooling including CSPM, CNAPP, and secret scanning solutions* Build automation to reduce manual security work and improve consistency of controls* Establish metrics and reporting that demonstrate security posture improvement and compliance trends**What You Will Need to Succeed****Technical Expertise*** Deep hands-on experience architecting security controls in AWS, Azure, and GCP production environments* Demonstrated proficiency with CSPM tools (CrowdStrike Falcon, Wiz, Prisma Cloud, or similar platforms)* Strong knowledge of CIS Benchmarks, cloud security frameworks (CSA CCM, NIST), and compliance standards (SOC 2, GDPR, HIPAA)* Expertise in Infrastructure-as-Code security scanning and policy enforcement (Checkov, Trivy, Terraform Sentinel, OPA)* Experience integrating security controls into CI/CD pipelines (GitHub Actions, GitLab CI, Jenkins, Azure DevOps)* Solid understanding of container security, Kubernetes security, and serverless security patterns* Proficiency with scripting and automation (Python, Bash, PowerShell)**Strategic & Operational Skills*** Proven ability to design security architectures that scale across large, complex cloud environments* Track record of successfully partnering with DevOps and engineering teams to implement security without blocking delivery* Experience driving security tool migrations and consolidations with minimal disruption* Strong analytical skills to assess risk, prioritize work, and make pragmatic security decisions* Ability to translate technical security concepts into language that resonates with both technical and business stakeholders**Leadership & Communication*** Excellent written and verbal communication skills; able to produce concise architecture documentation and executive summaries* Demonstrated ability to influence engineering teams through technical credibility rather than authority* Comfortable presenting security recommendations to senior technical leadership and defending design decisions* Self-directed and outcome-focused; able to identify problems, propose solutions, and drive them to completion with minimal supervision**Required*** 7 to 10+ years of experience in information security with at least 5 years focused on cloud security architecture* Hands-on experience implementing and operating CSPM solutions in multi-cloud environments* Proven track record architecting security controls for large-scale cloud deployments (1,000+ resources)* Experience with CIS Benchmarks implementation and compliance enforcement* Strong understanding of cloud-native architecture patterns and security implications* Bachelor's degree in Computer Science, Information Security, or equivalent practical experience**Preferred*** Relevant cloud security certifications (AWS Certified Security – Specialty, Azure Security Engineer Associate, GCP Professional Cloud Security Engineer, CCSP)* Experience with CrowdStrike Falcon CSPM or other leading CSPM/CNAPP platforms* Background in DevSecOps, SRE, or cloud platform engineering* Familiarity with OWASP SAMM or similar security maturity frameworks* Prior experience in regulated industries (healthcare, financial services) with SOC 2, HIPAA, or PCI-DSS compliance requirements* Contributions to open-source security tools or cloud security communities**What you can expect from us:** • Base annual salary target: $120000 - $150000 (yes, we do have flexibility if needed) • Opportunity for annual cash bonus • Health / Dental / Vision Benefits Day-One • 5% matching 401k • Additional benefits including but not limited to financial support, pet insurance, mental health resources, volunteer paid days off, employee stock program, foundation donation matching, and much more!**What Success Looks Like****90 Days**Complete CrowdStrike Falcon CSPM migration from AquaSec with full visibility across AWS, Azure, and GCPEstablish baseline metrics for CIS Benchmarks Level 1 compliance across all cloud accountsConduct architecture reviews for 3-5 high-priority workloads and deliver actionable security recommendations Build relationships with key DevOps and platform engineering stakeholders**6 Months**Achieve 80% CIS Benchmarks Level 1 compliance for existing cloud accounts and 95% for new accountsImplement IaC security scanning in CI/CD pipelines for Terraform and CloudFormation with clear remediation workflowsReduce cloud security findings requiring manual triage by 30% through automation and policy-as-codeDeliver secure-by-default infrastructure templates adopted by at least 5 product teams**12 Months**Demonstrate measurable improvement in cloud security posture through reduced CSPM findings and faster remediation times (MTTR)Establish cloud security architecture review process integrated into product development lifecycleBuild reusable security automation that reduces repetitive manual work and improves consistencyBe recognized by engineering teams as a trusted partner who enables secure, fast delivery rather than blocking progressWe’re proud of the work we do, because our work matters. An innovation leader in every industry we serve, we follow our Purpose and Guiding Principles to help pet owners worldwide keep their companion animals healthy and happy, to ensure safe drinking water for billions, and to help farmers protect #J-18808-Ljbffr

Vacancy posted 5 days ago
Similar jobs that could be interesting for youBased on the Cloud Security Architect in Westbrook, ME vacancy
  • $104k - $156k

     ...Posting Type Remote/Hybrid Job Overview The Advanced Security Engineer is a technically deep, hands-on practitioner who forms...  ..., discovery, and data security posture management across cloud and on-premises stores. Deploy and tune data loss prevention... 
    Suggested
    Remote work

    Relativity

    Portland, ME
    3 days ago
  • Software Programmers SYNERGISTICIT wants every candidate to know that the job market is challenging and to stand out you need to have exceptional skills and technologies and that's where we come in to make sure you get the attention which you need. Position open for...
    Suggested
    H1b

    SynergisticIT

    Portland, ME
    4 days ago
  •  ...seeking a Senior Golang Software Engineer to join their innovative VSaaS engineering team. This role involves architecting and building scalable data systems for cloud-based video surveillance. The ideal candidate will have over 5 years of experience in Go programming,... 
    Suggested
    Remote work

    Milestone Systems Inc

    Portland, ME
    5 days ago
  •  ...federal partner supporting mission‑critical programs across national security, defense, and public service delivery. Our work focuses on...  ...requires familiarity with security operations processes, cloud and infrastructure fundamentals, and the ability to follow established... 
    Suggested
    Minimum wage
    Full time
    Contract work
    Temporary work
    Work experience placement
    Remote work

    Maximus

    South Portland, ME
    4 days ago
  •  ...Cloud Analyst Scarborough, Trinidad and Tobago About The Job Cloud Analyst Job Overview: We are seeking a highly skilled...  ...with business objectives and ensure that cloud environments are secure, scalable, and cost-effective. Qualifications: Education... 
    Suggested
    Work experience placement

    The Hive Careers Ltd

    Scarborough, ME
    1 day ago
  •  ...Requirements Maximus is currently seeking a Cloud Platform Engineer. This is a remote...  ...‑critical programs across national security, defense, and public service delivery. Our...  .... - Collaborate with cloud engineers, architects, and enterprise teams to align cloud... 
    Minimum wage
    Full time
    Contract work
    Temporary work
    Work experience placement
    Remote work

    Maximus

    Portland, ME
    2 days ago
  •  ...federal partner supporting mission‑critical programs across national security, defense, and public service delivery. Our work focuses on...  ...execute, and support upgrades, patches, and migrations across cloud and hybrid environments while minimizing user impact and service... 
    Minimum wage
    Full time
    Contract work
    Temporary work
    Work experience placement

    Maximus

    South Portland, ME
    3 days ago
  • $40 - $50 per hour

     ...support responsibilities Job Summary BCM Controls is seeking a Security Systems Engineer - Remote Support to provide advanced technical...  ...detection systems Intercom systems Visitor management platforms Cloud-based security platforms Windows Server environments TCP/IP... 
    Hourly pay
    Full time
    Work at office
    Remote work
    Monday to Friday

    BCM Controls Corporation

    Scarborough, ME
    18 hours ago
  • $134k - $158k

     ...just managing infrastructure; you are the architect of our reliability strategy. Your...  ...Azure Policies that prevent "drift" from security and compliance baselines. Experience...  ...Experience: 5+ years in SRE, DevOps, or Cloud Engineering, with 2+ years leading technical... 
    Flexible hours

    WEX

    Portland, ME
    more than 2 months ago
  •  ...meets their expectations around availability, performance and security. Configuring a software system, setting up the environments the...  ...with high availability hosting configurations using AWS, Google Cloud or Azure Experience with Active Directory, LDAP and SSO solutions... 
    Work experience placement

    Portland Webworks

    Portland, ME
    20 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Cloud Security Architect. Be the first to apply!