CrawlJobs Logo
NTT DATA Logo NTT DATA · IT - Administration

Senior Cloud Security Assurance

Romania, Cluj · Job Posted March 21, 2026
Apply Position
Job Link Share

Job Description

The Senior Cloud Security Assurance role at NTT DATA involves developing secure architectural patterns in cloud environments, particularly AWS and GCP. Candidates should have a strong background in cybersecurity, with at least 5-10 years of experience and familiarity with frameworks like ISO 27001 and NIST. A bachelor's degree in Information Security or Cybersecurity is required, with a master's preferred. The role emphasizes collaboration, risk assessment, and providing strategic security recommendations to clients.

Job Responsibility

  • Translate business and compliance requirements into practical, well-documented security architecture designs using recognized frameworks (e.g., ISO 27001, NIST, CIS)
  • Develop, document, and maintain consistent secure architectural patterns with an emphasis on cloud security (AWS, GCP)
  • Implement threat-informed design principles, integrating zero trust architectures and defensive depth strategies to address security gaps and enhance resilience
  • Maintain alignment between security policies, enterprise architecture principles, and client expectations
  • Conduct comprehensive risk assessments and threat modeling to evaluate existing or proposed architectures for vulnerabilities
  • Provide actionable mitigation strategies informed by a risk-based approach and evolving threat intelligence data
  • Participate in or support incident response initiatives, aiding in root cause analysis and the development of post-incident recommendations
  • Act as a trusted advisor to clients by engaging in technical discussions to inform strategic security decisions
  • Collaborate cross-functionally with development, operations, and engineering teams to validate that security controls are effectively implemented across the development lifecycle
  • Deliver technical insights in presentations, workshops, and reports tailored to both technical and executive audiences
  • Engage in audits, assessments, and reviews to ensure delivery meets strict alignment with industry frameworks
  • Provide clients with guidance on the implementation and enforcement of technical standards and cloud-specific security policies
  • Maintain up-to-date knowledge of regulations and frameworks such as NIS2 and DORA to address compliance risks and initiatives
  • Recommend improvements in security policies based on compliance evaluations and evolving risks
  • Contribute to the development of security roadmaps by delivering expert recommendations tailored to each client’s security objectives
  • Assess emerging technologies and threats, identifying opportunities to evolve architectural strategies through innovation and cutting-edge tools
  • Participate as an SME in pre-sales activities, assisting in defining technical collateral that supports project delivery

Requirements

  • Bachelor’s degree in Information Security, Cybersecurity, or a relevant IT field (Master’s degree preferred)
  • Minimum 5-10 years experience in cybersecurity
  • Experience of at least 2+ years in security architecture, compliance, and cloud security roles
  • Working with frameworks such as ISO 27001, NIS/NIS2, or NIST CSF
  • Deep understanding of cloud security principles including management of GCP and AWS platforms
  • Familiarity with IAM, CASB, SIEM, and container security solutions
  • CISSP or SABSA certifications preferred
  • Cloud-specific certifications preferred (e.g., AWS Security Specialty, Azure Solutions ArchitectA)
  • Proven ability to collaborate across diverse technical teams, influencing senior stakeholders in an advisory capacity
  • Excellent communication and presentation skills for delivering complex technical concepts to non-specialist audiences
  • Strong analytical thinking and the ability to rapidly assess risks in a given architecture framework
  • Previous hands-on experience in developing security frameworks and implementing architectural changes at scale
  • Ability to conduct cloud security posture assessments to identify misconfigurations early
  • Excellent command of both spoken and written English

What we offer

  • Smooth integration and a supportive mentor
  • Choose from Remote, Hybrid or Office work opportunities
  • Projects have different working hours to suit your needs
  • Sponsored certifications, trainings and top e-learning platforms
  • Private Health Insurance
  • Individual coaching sessions or accredited Coaching School
  • Epic parties or themed events
NTT DATA - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Senior Cloud Security Assurance

8 matching positions

Senior Cloud Security Assurance

NTT DATA is one of the world's largest global security service providers, partne...
Location
Location
Romania , Cluj
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Cybersecurity, or a relevant IT field (Master’s degree preferred)
  • Minimum 5-10 years experience in security architecture, compliance, and cloud security roles, working with frameworks such as ISO 27001, NIS/NIS2, or NIST CSF
  • Deep understanding of cloud security principles including management on AWS, and GCP platforms
  • Familiarity with IAM, CASB, SIEM, and container security solutions
  • CISSP or SABSA certifications required
  • Cloud-specific certifications preferred (e.g., AWS Security Specialty, zure Solutions ArchitectA)
  • Direct experience working in government, military, or intelligence organizations advantageous
  • Must meet UK SC Clearance eligibility guidelines
  • Proven ability to collaborate across diverse technical teams, influencing senior stakeholders in an advisory capacity
  • Excellent communication and presentation skills for delivering complex technical concepts to non-specialist audiences
Job Responsibility
Job Responsibility
  • Translate business and compliance requirements into practical, well-documented security architecture designs using recognized frameworks (e.g., ISO 27001, NIST, CIS)
  • Develop, document, and maintain consistent secure architectural patterns with an emphasis on cloud security (AWS, GCP)
  • Implement threat-informed design principles, integrating zero trust architectures and defensive depth strategies to address security gaps and enhance resilience
  • Maintain alignment between security policies, enterprise architecture principles, and client expectations
  • Conduct comprehensive risk assessments and threat modeling to evaluate existing or proposed architectures for vulnerabilities
  • Provide actionable mitigation strategies informed by a risk-based approach and evolving threat intelligence data
  • Participate in or support incident response initiatives, aiding in root cause analysis and the development of post-incident recommendations
  • Act as a trusted advisor to clients by engaging in technical discussions to inform strategic security decisions
  • Collaborate cross-functionally with development, operations, and engineering teams to validate that security controls are effectively implemented across the development lifecycle
  • Deliver technical insights in presentations, workshops, and reports tailored to both technical and executive audiences
What we offer
What we offer
  • Smooth integration and a supportive mentor
  • Pick your working style: choose from Remote, Hybrid or Office work opportunities
  • Projects have different working hours to suit your needs
  • Sponsored certifications, trainings and top e-learning platforms
  • Private Health Insurance
  • Individual coaching sessions or joining our accredited Coaching School
  • Epic parties or themed events
Read More
Arrow Right

Senior Cloud Security Assessment Authorization Specialist

Our client is seeking a Senior Cloud SA&A Consultant (CSAAS3) for a remote contr...
Location
Location
Canada , Ottawa
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
July 26, 2026
Flip Icon
Requirements
Requirements
  • 10+ years of experience in cloud security assessments and designing security controls for enterprise systems
  • Minimum 3 years of recent experience applying ITSG-33 in AWS and Azure environments
  • Strong knowledge of SA&A processes and security assurance frameworks
  • Experience developing key security artifacts (SRTM, risk assessments, Statements of Sensitivity, ATOs, Security Assessment Reports)
  • Experience with SAP security, including access controls, governance, and SoD conflict resolution
  • Solid understanding of cloud security best practices and enterprise ERP environments
  • Ability to perform risk analysis and present findings to technical and executive stakeholders
  • Strong communication skills and experience working with cross-functional teams in complex environments
Job Responsibility
Job Responsibility
  • Perform cloud security assessments for AWS and Azure environments using ITSG-33 frameworks
  • Conduct risk calculations and present findings to technical and executive stakeholders
  • Develop and tailor Security Control Profiles (SCPs) for cloud and legacy systems
  • Create and maintain SA&A artifacts (SRTM, Statements of Sensitivity, Security Assessment Reports, ATO documentation)
  • Assess and advise on SAP security controls, access governance, and SoD conflict resolution
  • Review and apply security standards, policies, and industry best practices
  • Identify security gaps, process improvements, and mitigation strategies
  • Support security assurance activities throughout the system development lifecycle
  • Provide guidance and knowledge transfer on ITSG-33 implementation and cloud security practices
What we offer
What we offer
  • Wider talent access: Enables hiring highly specialized cloud security and ITSG-33 experts regardless of location
  • Greater flexibility & efficiency: Reduces location constraints, speeds up onboarding, and supports effective collaboration with distributed teams
Read More
Arrow Right

Senior Security Assurance Engineer

Microsoft is seeking a Industrial Senior Security Assurance Engineer to support ...
Location
Location
United States , Reston
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field AND 3+ years experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field AND 4+ years experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection
  • OR equivalent experience
  • Active U.S. Government Top Secret Clearance with access to Sensitive Compartmented Information (SCI) based on a Single Scope Background Investigation (SSBI) with Polygraph
  • U.S. citizenship
  • Ability to pass Microsoft Cloud background check upon hire/transfer and every two years thereafter
Job Responsibility
Job Responsibility
  • Execute industrial security operations for assigned classified programs, SCIFs, and secure environments in accordance with NISPOM (32 CFR Part 117) and customer requirements
  • Maintain SCIF and SAPF accreditation, including Fixed Facility Checklists (FFCs), self inspections, co utilization agreements, and coordination of material changes
  • Oversee safeguarding practices including access controls, classified storage, visitor management, and security awareness activities
  • Manage personnel access requests for classified and special access programs
  • Coordinate clearance and access activities with FSOs, CPSOs, and government security offices
  • Provide guidance to employees and managers on security responsibilities, reporting obligations, and compliance expectations
  • Investigate and report security incidents, violations, and infractions in accordance with regulatory and customer requirements
  • Maintain auditable security documentation and compliance artifacts to support government inspections, reviews, and internal audits
  • Support inspections and remediation of findings within assigned authority
  • Partner with Physical Security, HR, Legal, IT, Facilities, and Program teams to resolve operational security issues impacting classified environments
  • Fulltime
Read More
Arrow Right

Senior Cloud Security Engineer

The Cyber Security Engineer will support the Information Security team in safegu...
Location
Location
United States , Fremont
Salary
Salary:
137000.00 - 287000.00 USD / Year
lamresearch.com Logo
Lam Research
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Solid foundation in Information Security Engineering with deep hands-on experience in Azure security
  • Experience in one or more of the following tools: Defender for Cloud, Wiz, Orca
  • Bachelor’s degree or Advanced Degree in Computer Science, Information Technology, Cybersecurity, or related discipline
  • 7+ years of experience in an Information Security role
  • 5+ years of experience with Microsoft Azure
  • Strong vulnerability management fundamentals
  • At least one of the following processional certifications required: Security+, CISSP, CISA, CISM, CEH, OSCP, GMON
  • Ability to communicate effectively, both verbal and written to a variety of audiences (immediate team, management, other business units) to provide guidance and direction when resolving technical challenges
Job Responsibility
Job Responsibility
  • Own configuration, policy, and governance for Microsoft Defender for Cloud or other CSPM tools
  • Manage and operate cloud security posture management (CSPM) platforms (such as Wiz, Orca, or Defender for Cloud) including configuring policies, monitoring findings, analyzing risks, and working with stakeholders to remediate vulnerabilities
  • Provide technical expertise in interpreting findings, correlating them to risk and translating them into actionable remediation plans
  • Perform security reviews and architecture assessments of cloud solutions to identify gaps and recommend mitigation strategies
  • Develop KPIs and executive reporting metrics to measure cloud security program effectiveness and communicate outcomes to leadership
  • Work closely with Information Systems, Cloud Operations, and other Infosec teams to assure remediation and architecture changes to align with security recommendations
  • Contribute to the development and implementation of security principles, standards, baselines, and blueprints tailored for Azure
  • Fulltime
Read More
Arrow Right

Cloud Security Assurance Architect

The Cloud Security Assurance Architect will lead security assessments and archit...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, or Cybersecurity
  • 6+ years in information security with cloud security focus
  • 3+ years conducting cloud security assessments and architecture reviews
  • Proven multi-cloud experience (AWS, Azure, GCP) in production environments
  • Technical Skills: AWS: Security Hub, GuardDuty, IAM Access Analyzer, KMS, CloudTrail
  • Azure: Defender for Cloud, Sentinel, Azure Policy, Key Vault
  • GCP: Security Command Center, Cloud Armor, IAM, Cloud KMS
  • Tools: Prisma Cloud, Wiz, Pacu, ScoutSuite, Prowler, Terraform
  • Cloud penetration testing and threat modeling
  • Mandatory Certifications: CISSP or CCSP
Job Responsibility
Job Responsibility
  • Lead cloud security assessments and architecture reviews across AWS, Azure, and GCP
  • Validate security implementations, provide expert guidance on cloud security posture, and support enterprise cloud transformation initiatives
  • Lead security architecture reviews for cloud-native and hybrid solutions
  • Execute cloud security assessments across AWS, Azure, and GCP environments
  • Validate designs against NIST CSF, CIS Benchmarks, and CSA CCM
  • Conduct cloud penetration testing following (CREST/CHECK methodologies)
  • Assess container/Kubernetes security, serverless and microservices implementations
  • Validate IaC security controls and CI/CD pipeline security
  • Lead compliance assessments: ISO 27017/27018, SOC 2, GDPR, NIS2, DORA
  • Assess cloud governance frameworks and CSPM implementations
What we offer
What we offer
  • We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing
  • Our Learning and Development team ensure that there are continuous growth and development opportunities for our people
  • We also offer the opportunity to have flexible work options
Read More
Arrow Right

Senior System Information Assurance and Security Engineer

Barbaricum is seeking a highly skilled System Information Assurance and Security...
Location
Location
United States , Tampa
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active DoD TS/SCI Clearance
  • Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or related field (Master’s preferred)
  • 10+ years of experience in enterprise identity and access management architecture
  • Demonstrated expertise with Zero Trust frameworks and DoD ICAM standards
  • Hands-on experience with SAML, OAuth2.0, OpenID Connect, PKI, and certificate management
  • Experience with DoD enterprise solutions such as Radiant Logic, Okta, Ping Identity, SailPoint, ForgeRock, Microsoft Entra ID (Azure AD), or equivalent
  • Deep knowledge of Privileged Access Management and Identity Governance & Administration solutions
  • Strong understanding of DoD cybersecurity compliance frameworks (RMF, NIST SP 800-53, 800-207, 8140/8570)
  • IAM / DoD Certification IAT Level II (e.g., Security+ CE, SSCP, GSEC)
Job Responsibility
Job Responsibility
  • Execute engineering solutions for identity credential and access management for Zero Trust implementation across enterprise systems
  • Design and maintain an enterprise-wide identity and access management strategy aligned with DoD Zero Trust principles, NIST 800-207, and DoD ICAM Reference Design
  • Lead integration of federated identity, single sign-on (SSO), and multi-factor authentication (MFA) across cloud and on-prem environments
  • Develop and maintain policies, standards, and reference architectures to enforce least-privilege and attribute-based access control (ABAC)
  • Conduct the implementation of Privileged Access Management (PAM) and Identity Governance and Administration (IGA) solutions
  • Collaborate with cybersecurity, network, and cloud teams to align ICAM solutions with Zero Trust pillars (identity, device, network, application, and data)
  • Ensure compliance with DoD 8140/8570, RMF, FedRAMP, and other applicable frameworks
  • Lead proof-of-concepts (POCs) and technology evaluations for emerging identity
Read More
Arrow Right

Information Security Assurance Analyst

Information Security Assurance Analyst
Location
Location
United Kingdom , Portsmouth
Salary
Salary:
Not provided
talenthawk.com Logo
TalentHawk
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • CISM/CISSP/CCSP/TOGAF/CRISC/AWS Solution Architect or equivalent certified or willing to undergo certification on the job
  • Must have Security Clearance or be eligible for security cleared
  • Must have experience in Cloud (IaaS, Paas, SaaS)
  • Must have proven expertise in three of the following security areas: identity and access management, network security, end user security, threat modelling, Security Risk and Compliance, penetration testing
  • Must have at least 3 years’ cyber security experience
  • Good understanding and practical experience of Cyber Security Frameworks and standards such as NCSC CAF, NIST Framework, ISO 27001, ISO27005, IEC62443 etc.
  • Good understanding of Cyber Assurance Framework and experience with working with Regulators and providing compliance updates
  • The individual should be educated to degree level in a relevant discipline
Job Responsibility
Job Responsibility
  • Perform a threat modelling exercise of all projects and provide mitigating cyber security requirements to help ensure the secure delivery of compliant systems, applications and business processes
  • Review both high/low level architecture definition documents for compliance against security policies, standards and regulatory requirements, defining Cyber non-functional requirements
  • Attend Technical Design Authority (TDA meeting to provide security signoffs
  • Work within the Security Assurance team consisting of security assurance analyst / consultants providing thought leadership across several assurance functions, and helping smooth engagements with project delivery teams
  • Perform cyber security risk assessments, compliance checks, audits and reviews to ensure that appropriate security controls are in place and highlight any deficiencies and gaps for management consideration
  • Provide support in scoping and overseeing pen tests and re-tests
  • Review recommendations and collaborate with the relevant teams to support remediation efforts
  • Provide cyber security assurance activities by ensuring implemented solutions are a replica of agreed and approved architecture definition documents, helping to facilitate penetration testing, whilst providing security advice and guidance
  • Support to management, BAU and projects to comply with legal and regulatory requirements
  • Where required, propose solutions and coordinate delivery of mitigating actions to ensure risk levels are aligned with risk appetite
  • Fulltime
Read More
Arrow Right

Senior Security Consultant - Public Sector

The Security Consultant - Public Sector role at NTT DATA involves providing secu...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 5 years’ experience working with Public Sector clients, preferably in the Health, Central Government or Public Safety domains
  • Minimum of 5 years’ security consulting experience in a multi-tiered IT enterprise environment / Governance, Risk and Compliance role
  • Minimum of 5 years’ experience in a Governance, Risk and Compliance role
  • A track record of delivering security solutions for large-scale infrastructure, transformation or integration programmes
  • Practical knowledge and understanding of industry security frameworks and guidance such as NIST CSF, NIST 800-53, NCSC CAF and other NCSC guidelines
  • Experience identifying sales opportunities and supporting Public Sector RFP / RFI / tender responses
  • Good knowledge of networking (switching, routing, firewalls)
  • Experience with the design concepts associated with adoption of Cloud platforms (AWS and/or Microsoft Azure)
  • An understanding of the native security capabilities and good practice within Cloud platforms (AWS and/or Microsoft Azure)
  • In-depth knowledge of modern security concepts, common attack vectors, malware, security analytics and threat intelligence
Job Responsibility
Job Responsibility
  • Ensure solutions are designed, delivered and operated securely
  • Contribute to business growth by identifying and shaping opportunities
  • Provide security leadership and guidance throughout the project lifecycle (from design to implementation and handover), and managed services (IT support and maintenance)
  • Embed security by design and ensure solutions meet compliance, regulatory and client-specific security requirements
  • Review and assess solution architectures and live systems from a security perspective, to identify and mitigate security risks
  • Work with Service Management to ensure that partners and suppliers adhere to agreed standards, policies and verify/evidence appropriate compliance and security KPIs
  • Be a trusted advisor to senior clients on security topics
  • Conduct risk assessments and assurance reviews to validate that our solutions and services meet the required security standards
  • Ensure compliance with UK Government standards and frameworks
  • Support the development and maintenance of security policies and guidelines for the Public Sector
What we offer
What we offer
  • Tailored benefits that support your physical, emotional, and financial wellbeing
  • Continuous growth and development opportunities
  • Flexible work options
  • Inclusive work environment prioritises mutual respect, accountability, and continuous learning
  • Range of Inclusion Networks such as: the Women’s Business Network, Cultural and Ethnicity Network, LGBTQ+ & Allies Network, Neurodiversity Network and the Parent Network
  • Fulltime
Read More
Arrow Right