Security Architect Cloud & AWS

NEORIS is a Digital accelerator that helps companies enter the future, having 20 years of experience as Digital Partners of some of the largest companies in the world. We have more than 4,000 professionals in 11 countries, with our multicultural startup culture where we cultivate innovation, continuous learning to create high-value solutions for our clients. We are looking for a Senior Security Architect (Clowd & AWS) to lead the closure of AWS cybersecurity remediation tickets and subsequently operating as the account's permanent security lead for ongoing operations and cloud security governance. The profile will own the security posture of a multi-account AWS environment, coordinate with global cybersecurity team, and ensure that all controls remain audit-ready on an ongoing basis. Required Profile: 10+ years of professional experience in cybersecurity, cloud security, or information security roles Minimum 5 years of hands-on experience with AWS security services (GuardDuty, Security Hub, IAM, Secrets Manager, Inspector, CloudTrail, AWS Config) Demonstrated experience leading security remediation projects in regulated environments (banking, healthcare, or FMCG preferred) Experience working with audit frameworks and generating audit evidence packages (ISO 27001, SOC 2, or equivalent) Prior experience in client-embedded or staff augmentation roles is a strong plus Technical Skills — Required AWS: IAM, GuardDuty, Security Hub, Inspector, CloudTrail, Secrets Manager, AWS Config, AWS Backup, Transfer Family EC2 and Elastic Beanstalk: platform management, Amazon Linux migration, patch management Encryption: KMS, RDS encryption at rest, S3 server-side encryption, certificate management Network security: Security Groups, NACLs, VPC architecture, WAF, NLB/ALB security Identity: SSO (AWS IAM Identity Center), MFA enforcement, privilege management (PAM) Threat frameworks: MITRE ATT&CK, STRIDE, NIST CSF, Zero Trust principles Security monitoring: SIEM integration (Splunk preferred), log aggregation, alert triage Technical Skills — Desirable Qualys or equivalent vulnerability management tooling Endpoint Detection and Response (EDR/XDR) platforms IaC security scanning (Checkov, tfsec, or equivalent) DevSecOps practices: pipeline security gates, SAST/DAST integration Multi-cloud exposure (GCP or Azure) as secondary environment Advanced Level of English Soft Skills & Mindset Autonomous and structured — able to manage multiple work streams without day-to-day supervision Strong written and verbal communication in English (minimum B2), with experience in weekly client-facing reporting. Comfortable operating in ambiguous, fast-paced environments with competing priorities Security-first mindset: able to say no and explain why, without blocking business delivery Collaborative: works effectively with infrastructure engineers, DevOps teams, and client-side stakeholders Education Bachelor's degree in Systems Engineering, Computer Science, or related field — required Master's degree or postgraduate specialization in Cybersecurity — strongly preferred Certifications — Required (at least one) AWS Certified Security – Specialty AWS Certified Solutions Architect – Professional CISSP (Certified Information Systems Security Professional) Certifications — Desirable ISO 27001 Lead Implementer or Lead Auditor CISM (Certified Information Security Manager) CompTIA Security+ or equivalent baseline CEH, OSCP, or offensive security certifications We offer: Statutory & Major benefits Personal Growth Competitive salary Attractive benefits plan Come and meet us on: http://www.neoris.com, on Facebook, LinkedIn, Twitter, or Instagram @NEORIS. Marina Molina LI-MM3     Offices: (Global Sourcing, Colombia);