Cloud Security Architect

Robert Walterts is working in partnership with a Global IT services and consulting firm. They are recognised as industry leaders in delivering technology, digital transformation, and outsourcing solutions across industries. They operate globally, with services across software development to cloud and cybersecurity services.

As part of expansion across technology, they are keen to appoint a Cloud Security Architect, with a hybrid working model from the Coventry offices, paying a salary range of £60,000 to £70,000 plus bonus and benefits.

As an experienced Cloud Security Architect, you will lead as the SME for Secure Web Gateway (SWG), Cloud Access Security Broker (CASB) and Data Loss Prevention (DLP) technologies. You will work cross functionally to architect scalable security solutions, lead incident response efforts and drive continuous improvement across cloud security posture.

Cloud Security Architect: Duties

• Work to understand product requirements and build Internet Security policies to protect corporate endpoints.
• Define, enable, and review Internet Security policies and traffic steering configurations using Secure Web Gateway (SWG) and Cloud Access Security Broker (CASB).
• Analyse data exfiltration risks and design Data Loss Prevention (DLP) policies to mitigate threats.
• Collaborate with Security Operations to enhance security requirements, apply ad-hoc site restrictions, and manage exception requests.
• Apply advanced knowledge of SSL inspection to define secure decryption bypass policies without compromising protection.
• Resolve DLP and SSL inspection issues by working closely with end users and SOC teams.
• Administer and maintain the Netskope tenant, including upgrades and performance optimization.
• Design and build a Quantum-ready Internal PKI, addressing gaps in existing infrastructure and integrating with Certificate Lifecycle Management solutions.
• Define certificate templates and integrate cloud Hardware Security Modules (HSM) with Certificate Authorities for enhanced cryptographic security.
• Establish infrastructure and rulesets for Zero Trust Network Access (ZTNA) and future VPN solutions.
• Discover VPN-dependent applications and plan Firewall changes to support ZTNA implementation.
• Collaborate with stakeholders and application support teams to deliver ZTNA solutions.
• Support network segmentation projects with kill-switch requirements for cyber resilience.
• Manage EntraID enterprise apps required for Internet Security tools, ensuring SSO, SCIM, and IDP functionality.

Cloud Security Architect: Experience

• Strong expertise in Internet Security architecture, including policy design, SSL inspection, and Data Loss Prevention strategies.
• Proven ability to implement advanced security solutions, such as Secure Web Gateway, CASB, Netskope administration, and EntraID integration.
• Skilled in PKI design and life cycle management, with knowledge of quantum-resistant cryptography and cloud HSM integration.
• Experience in Zero Trust Network Access (ZTNA) implementation, network segmentation, and VPN migration planning.
• Collaborative and detail-oriented, with a track record of working across security operations, networks, and enterprise compute teams to deliver robust, future-ready security frameworks.

The permanent opportunity for a Cloud Security Architect will pay a salary range of £60,000 to £70,000 plus bonus and benefits with a hybrid working model out of the Coventry offices.

For further information, please apply with an updated CV and reach out to Ajay Hayre on (see below)

Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates