NEORIS is a Digital accelerator that helps companies enter the future, having 20 years of experience as Digital Partners of some of the largest companies in the world. We have more than 4,000 professionals in 11 countries, with our multicultural startup culture where we cultivate innovation, continuous learning to create high-value solutions for our clients.
We are looking for a Senior Security Architect (Clowd & AWS) to lead the closure of AWS cybersecurity remediation tickets and subsequently operating as the account's permanent security lead for ongoing operations and cloud security governance.
The profile will own the security posture of a multi-account AWS environment, coordinate with global cybersecurity team, and ensure that all controls remain audit-ready on an ongoing basis.
Required Profile:
- 10+ years of professional experience in cybersecurity, cloud security, or information security roles
- Minimum 5 years of hands-on experience with AWS security services (GuardDuty, Security Hub, IAM, Secrets Manager, Inspector, CloudTrail, AWS Config)
- Demonstrated experience leading security remediation projects in regulated environments (banking, healthcare, or FMCG preferred)
- Experience working with audit frameworks and generating audit evidence packages (ISO 27001, SOC 2, or equivalent)
- Prior experience in client-embedded or staff augmentation roles is a strong plus
Technical Skills — Required
- AWS: IAM, GuardDuty, Security Hub, Inspector, CloudTrail, Secrets Manager, AWS Config, AWS Backup, Transfer Family
- EC2 and Elastic Beanstalk: platform management, Amazon Linux migration, patch management
- Encryption: KMS, RDS encryption at rest, S3 server-side encryption, certificate management
- Network security: Security Groups, NACLs, VPC architecture, WAF, NLB/ALB security
- Identity: SSO (AWS IAM Identity Center), MFA enforcement, privilege management (PAM)
- Threat frameworks: MITRE ATT&CK, STRIDE, NIST CSF, Zero Trust principles
- Security monitoring: SIEM integration (Splunk preferred), log aggregation, alert triage
Technical Skills — Desirable
- Qualys or equivalent vulnerability management tooling
- Endpoint Detection and Response (EDR/XDR) platforms
- IaC security scanning (Checkov, tfsec, or equivalent)
- DevSecOps practices: pipeline security gates, SAST/DAST integration
- Multi-cloud exposure (GCP or Azure) as secondary environment
- Advanced Level of English
-
Soft Skills & Mindset
- Autonomous and structured — able to manage multiple work streams without day-to-day supervision
- Strong written and verbal communication in English (minimum B2), with experience in weekly client-facing reporting.
- Comfortable operating in ambiguous, fast-paced environments with competing priorities
- Security-first mindset: able to say no and explain why, without blocking business delivery
- Collaborative: works effectively with infrastructure engineers, DevOps teams, and client-side stakeholders
Education
- Bachelor's degree in Systems Engineering, Computer Science, or related field — required
- Master's degree or postgraduate specialization in Cybersecurity — strongly preferred
Certifications — Required (at least one)
- AWS Certified Security – Specialty
- AWS Certified Solutions Architect – Professional
- CISSP (Certified Information Systems Security Professional)
Certifications — Desirable
- ISO 27001 Lead Implementer or Lead Auditor
- CISM (Certified Information Security Manager)
- CompTIA Security+ or equivalent baseline
- CEH, OSCP, or offensive security certifications
We offer:
- Statutory & Major benefits
- Personal Growth
- Competitive salary
- Attractive benefits plan
Come and meet us on: http://www.neoris.com, on Facebook, LinkedIn, Twitter, or Instagram @NEORIS.
Marina Molina
LI-MM3