Cloud Security Architect (IAM) (100% Remote)

Hash Technologies - Cloud Security Architect (IAM) (100% Remote)

Cloud Security Architect: Wolters Kluwer is seeking a Cloud Security Architect responsible for leading, guiding, designing and developing security strategies and solutions in our DevOps and Cloud agnostic initiatives. The Cloud Security Architects a highly technical and creative contributor to our Engineering and Architecture team enabling the agile development of secure and reliable cloud-based solutions. Responsibilities:

• Architect and provide guidance, and direction in the design, develop and implement automated solutions, based on a set of standards and processes, that enable Wolters Kluwer Technical and DevOps teams to easily consume security and compliance services delivered by the Global Information Security.
• Collaborate and support Wolters Kluwer Technology Engineers, Architects, and teams in implementing a comprehensive cloud and application security program with a focus on DevOps and Cloud environments.
• Leverage DevOps tools to build, harden, maintain and instrument a comprehensive cloud-based security orchestration platform to be consumed in product CI/CD pipelines.
• Architect automated security and compliance services which support DevOps processes and other Cloud environments.
• Review code, which are used to support infrastructure as code, work with mutable and immutable environments, and build the supporting automated toolsets necessary to support the secure continuous delivery pipeline.
• Integrate security practices across the continuous delivery pipeline to provide a comprehensive automated cloud and application security solution from the epic definition, development, test and deploy of WK Applications within Azure, AWS and Softlayer environments.
• Create and maintain of DevOps and Cloud security standards by creating templates and patterns for ease of use and increase the productivity of the security program

• Deep understanding of Cloud Services for Amazon Web Services (AWS), Azure and Softlayer. Including, but not limited to, Infrastructure as a Service (VPC/VNET, EC2/Virtual Machines, Security Groups, Network ACL, ELB/ALB/NLB, etc), Platform as a Service (EBS/S3/Blob, Database, Route53, CDN, etc), Serverless Services (Lambda/Functions, etc), Micro Services (Docker, ECS, etc), Security Services (GuardDuty, WAF, HSM, KMS, etc)
• Extensive experience with automation systems, and version control systems such as, but not limited to Saltstack, Ansible, Jenkins, Terraforms, CloudFormation, Puppet, GIT, Bitbucket, AWS/Azure management tools - AWS Config, CloudTrail, CloudWatch, Systems Manager, Trusted Advisor, Security Center etc)
• Experience with scripting and coding using, but not limited to, Python, or PowerShell, Bash
• Proficiency with AWS and Azure CLI and SDKs.
• Working knowledge of IP networking, VPNs, DNS, load balancing and firewalling
• Experience building infrastructure as code using AWS CloudFormation, Terraform or similar automated techniques
• Experience in documenting security controls for DevOps and Cloud environments using industry standard guidelines such as Center for Internet Security (CIS), Cloud Security Alliance (CSA) in conjunction with business requirements
• Knowledge of current and emerging DevOps and Cloud security trends.
• A professional certification in an information security domain such as CISSP, CISM, or CISA preferred but not required.
• Ability to work within an agile project management methodology

• Wolters Kluwer is seeking an Identity and Access Management (IAM) Security Architect to be responsible for further enhancement of IAM technologies within Wolters Kluwer. Must be able to form tight coordination with the Global Information Security organisation and be familiarity working with a matrixed organisation to meet customer demands. You will be working across multiple work streams with engineering and be able to communicate effectively with senior technology leaders and business partners. Organised evidence of compliance and producing documentation will also be key to this role.

• Define, document, and publicise strategic roadmap for various IAM technology stacks and how these contribute to Wolters Kluwer Cloud Strategy.
• Influence stakeholders to ensure alignment & effective prioritisation of product roadmaps in relation to IAM strategy
• Continuously follow and evaluate IAM technology landscape (market/best practice) for gap/opportunity development with a Public Cloud first approach (Azure & AWS)
• Bridge the gap between various development teams designing solutions and business partners to fully understand their requirements
• Define enterprise wide standards and policies in respect to emerging technologies and provide the control framework to ensure adherence

• Strong understanding of existing (LDAP, SAML, WS-, Kerberos) and emerging (OAuth, OpenID Connect, SCIM, FIDO) industry protocols which shape the authentication and identity landscape
• Experience with authentication concepts (Multi-Factor Authentication, Adaptive/Contextual Authentication, Risk-Based Authentication) and the supporting strong authentication technologies (FIDO U2F/UAF/FIDO2, Hard Tokens, Soft Tokens, Biometrics)
• Familiarity with IAM vendor landscape and experience with defining stakeholder requirements and performing assessment.
• Experience with directory server technology and concepts.
• Prior experience doing product evaluations and documenting requirements for emerging technologies
• Understanding of API design concepts and modern application interaction patterns
• Knowledge across the technology stack such as web protocols, multiple operating systems, hypervisors and distributed systems architecture.
• Proficient in both Windows, Linux and Midrange platforms
• Familiarity with deployments and integrations patterns in regards to IAM solutions within the cloud (Azure, AWS, Softlayer)
• Experience deploying large-scale, global projects and programs
• Familiarity with IT security and risk management practices
• 5+ years working in Information Technology
• 3+ years working in Identity & Access Management
• 3+ years of experience with attribute and role based access controls
• CISSP Certification desired
• Bachelor's degree in Information Technology or related field