L&

Cloud Security Architect (L2)

Accepting applications

Larsen & Toubro-Vyoma · Chennai, Tamil Nadu, India

Full-Time Associate ARMPythonSOC
Estimated market salary
₹31-56 LPA

This is a SiliconBoard market estimate, not an employer-posted salary.

Posted
5d ago
Category
Design
Experience
Associate
Country
India
Job Purpose
The Cloud Security Architect (L2) is responsible designing, implementing, and supporting cloud security solutions across multi-cloud environments. The role focuses on cloud security architecture, governance, compliance, security controls implementation, and operational support to ensure secure adoption of cloud technologies while supporting SOC and security engineering teams.

Roles & Responsibilities
Design and implement cloud security architectures across AWS, Azure, and GCP environments.
Support deployment and management of cloud-native security controls, including CSPM, CWPP, CNAPP, CASB and Zero Trust architectures.
Implement and maintain cloud network security controls such as security groups, firewalls, WAF, DDoS, micro-segmentation, EDR, DLP, PIM/PAM and secure connectivity etc.
Review cloud environments for compliance with security standards, policies, and best practices.
Perform cloud security assessments, risk analyses, and security architecture reviews.
Support DevSecOps initiatives by integrating security controls into CI/CD pipelines.
Assist in incident response, forensic investigation, and remediation activities for cloud security incidents.
Collaborate with SOC, Infrastructure, Network, Application, and DevOps teams to address cloud security requirements.
Ensure cloud deployments comply with regulatory and industry frameworks.
Develop cloud security documentation, standards, architecture diagrams, and operating procedures.
Participate in onboarding customers onto cloud security services and managed security platforms.
Support cloud security monitoring, logging, and integration with enterprise SIEM solutions.

Experience & Educational Requirement
BE/B-Tech or equivalent with Computer Science or Electronics & Communication
Certifications :- CISSP, CCSP, Microsoft SC-100 (Cybersecurity Architect), Microsoft AZ-500, AWS Security Specialty, Google Cloud Security Engineer, CISM

RELEVANT EXPERIENCE
5–8 years of cybersecurity experience with at least 3 years in cloud security.
Hands-on experience with E2E , AWS, Azure, and/or Google Cloud security services.
Experience implementing IAM, PAM, MFA, Zero Trust, and cloud governance controls.
Knowledge of cloud security frameworks such as CIS Benchmarks, NIST, ISO 27001, PCI-DSS.
Experience with cloud logging, monitoring, and SIEM integrations.
Knowledge of container security and Kubernetes security fundamentals.
Exposure to Infrastructure as Code (Terraform, ARM, CloudFormation).
Experience supporting cloud migration and security transformation projects.

Tools / Tech
Splunk Enterprise Security, IBM QRadar, Elastic Security (ELK), Cortex XSOAR, Splunk SOAR, CrowdStrike Falcon, Palo Alto Networks, Fortinet FortiGate, Cisco Secure Firewall, Check Point, F5 BIG-IP, Imperva WAF, F5 Advanced WAF, Cloudflare WAF, CyberArk, Tenable Nessus, Qualys VMDR, Rapid7 InsightVM, VirusTotal, Syslog, Logstash, PowerShell, Python, Bash, REST APIs, Git, Docker, Kubernetes, Terraform, Ansible.
Show more Show less