This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
Cap4 Lab is seeking a skilled Cloud Security expert to lead the end-to-end security architecture of our PaaS platform. In this role, you will bridge the gap between high-level strategic design and hands-on cloud-native engineering. You will be responsible for building a secure, automated, and compliant environment using Infrastructure-as-Code (IaC) and modern DevSecOps practices. As part of a lean, automation-driven team reporting directly to the CISO, you will have significant ownership over our security roadmap, focusing on multi-tenant isolation, zero-trust principles, and automated compliance. We are looking for a security leader who prefers code over spreadsheets. At Cap4 Lab, you won't just be managing security, you will be building it. You will own the end-to-end architecture of our PaaS, ensuring that our multi-tenant environment is resilient, automated, and compliant by design.
and implement automated evidence collection for audit readiness
Security Enablement: Mentor engineering teams on secure design patterns, review CI/CD pipeline security, and maintain comprehensive architecture decision records (ADRs)
Requirements
2+ years of experience in Security Architecture and Cloud-Native Engineering (AWS, Azure, Alibaba Cloud or GCP)
hands-on experience with Kubernetes (K8s), container security, multi-tenancy, and Zero Trust architecture
Proficiency in IaC (Terraform or CloudFormation) and Policy-as-Code within GitOps workflows
background in WAF, PKI/TLS, KMS, and SIEM/EDR integration
experience with threat modeling and frameworks like SOC 2 or ISO 27001