Cyber Security Consultant (Architect)

We are a security and cloud advisory company composed of hands-on experts with deep technical experience.

We partner with organizations ranging from fast-growing startups to large enterprises, helping them design, implement, and operate secure systems end-to-end.

About the position

You will play a key role in shaping security architectures for a variety of environments, including cloud-native systems, product platforms, and transformation initiatives such as cloud migration and adoption of new technologies, including AI-driven systems.

Responsibilities:

• Design secure architectures for cloud infrastructure, applications, and modern systems, aligning security with business goals to deliver scalable, resilient, and secure solutions.
• Lead security architecture engagements end-to-end, from initial assessment through design and into implementation and validation.
• Conduct hands-on security reviews and structured threat modeling across distributed systems, cloud environments, and modern application architectures, including emerging risks in AI/LLM-based systems (e.g., prompt injection, data exposure, misuse of AI capabilities).
• Ensure security architectures align with standards and frameworks such as ISO 27001, SOC2, and industry best practices.
• Partner with engineering and product teams to design secure software and product architectures, embedding security into the SDLC through threat modeling, secure coding practices, and architecture reviews.
• Translate security risks into business impact, enabling informed, risk-based decision making.
• Communicate complex security concepts clearly to a wide range of stakeholders, from developers to leadership.
• Stay current with emerging technologies and evolving threat landscapes, continuously improving architecture practices and recommendations.

Qualifications (Must)

• 5+ years of experience in cybersecurity, with hands-on experience in cloud security and/or application security.
• Strong architectural understanding of at least one major cloud platform (AWS, Azure, or GCP), with the ability to design secure cloud-native solutions.
• Strong communication skills, with the ability to explain security concepts clearly to both technical and non-technical audiences.

Qualifications (Advantage)

• Experience designing and securing containerized applications and Kubernetes-based environments.
• Solid understanding of secure application and product design, threat modeling, and secure development practices, including the ability to read and reason about application code.
• Familiarity with DevSecOps practices and integrating security into CI/CD pipelines (e.g., SAST, DAST, container security).
• Familiarity with security considerations in AI-enabled applications, including risks related to LLMs and agent-based systems - advantage.
• Security certifications such as CISSP, CISM, or cloud security certifications .
• Background in penetration testing or offensive security