Information Security Expert overseeing ISMS development and IT security compliance in Germany. Collaborates with management and leads regulatory requirements implementation.
BG
Hybrid Director, Cloud Security Architecture – Engineering
Posted last week
About the role
- Director of Cloud Security Architecture at Breakthru Beverage leading cloud security architecture and engineering initiatives. Engaging in strategic direction while providing technical guidance and security integration across platforms.
Responsibilities
- Own and evolve the enterprise cloud security architecture across AWS, SaaS platforms, hybrid infrastructure, applications, networking, and operational technologies, ensuring alignment with business strategy and risk tolerance.\n• Define and implement AWS-native security architectures including identity, encryption, network segmentation, logging, detection, and governance capabilities, to enable secure and scalable cloud adoption.\n• Support the re-architecture and migration of Azure workloads to AWS, ensuring security-by-design principles are embedded throughout the migration lifecycle.\n• Design, implement and enforce Zero Trust security models to ensure protection of cloud and hybrid environments.\n• Integrate AWS with enterprise security platforms such as Zscaler, Splunk, and BeyondTrust to enable centralized visibility, control and response.\n• Collaborate with DevOps and cloud infrastructure teams to embed security into DevOps pipelines, leveraging automation for vulnerability management, code scanning, configuration validation and continuous compliance.\n• Support the establishment and oversee cloud identity and access management (IAM) strategies, including federation, least privilege, just in time access, identity governance, and Zero Trust principles.\n• Integrate with multiple IdPs including Entra ID and SAP IAS.\n• Establish tailored governance, risk, and compliance (GRC) frameworks for cloud adoption, including policy-as-code and automated compliance monitoring aligned to industry standards and regulatory requirements.\n• Develop templates, accelerators, and reusable security artifacts that improve delivery speed, consistency, and compliance across cloud initiatives for BBG.\n• Monitor emerging cloud services, regulatory changes, and threat trends to proactively assess risk and advise leadership on security posture and mitigation strategies.\n• Lead and develop cloud security architecture and engineering teams, setting technical direction, delivery priorities, and performance expectations.\n• Provide architectural oversight and subject matter expertise for enterprise and cross-functional initiatives, ensuring security outcomes are consistently achieved.\n• Own and evolve the cloud security tools, platforms, and services portfolio to maximize effectiveness and return on investment.\n• Oversee cloud incident response and forensics capabilities, leveraging native cloud telemetry and SIEM integrations to enable rapid detection, investigation, and recovery.\n• Deliver thought leadership through executive briefings, architecture reviews, and security workshops, influencing stakeholders and driving secure cloud transformation.
Requirements
- Bachelor's degree in computer science, information systems, or information technology, or equivalent work experience.\n• Minimum 12 years of IT Security experience, with 5 years focused on AWS architecture\n• AWS Solutions Architect – Associate Certification\n• AWS Security Specialty\n• CISSP Certification\n• Deep expertise in AWS-native and third-party security tools\n• Strong understanding of cloud governance, infrastructure as code (IaC), encryption, networking, and identity management.\n• Strong experience with Snowflake and S/4HANA\n• Hands-on scripting and automation (Python, Terraform)\n• Strong experience with Splunk\n• Experience with multi-cloud environments (AWS, Azure, M635)\n• Strong writing and communication skills across technical and executive audiences\n• Experience with leading and team management\n• Ability to multi-task, work independently and/or within a team, pay attention to detail and meet deadlines.\n• Utilize sound judgement, business acumen and problem-solving skills and ability to work in fast-paced, high-volume, team environment.\n• Ability to work nights, weekends and holidays.
Benefits
- This position is eligible to participate in a bonus program.\n• This position is eligible for health care benefits, life insurance, time off benefits and participation in the Company’s 401(k) plan
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
IT Professional responsible for implementing innovative industrial IT solutions. Working in an agile environment while ensuring IT and OT security for production networks.
Security Compliance Specialist enhancing cybersecurity and compliance framework at Trezor. Collaborating across teams to shape security and compliance operations in the tech sector.
Cyber Security Specialist focusing on IT security measures and infrastructure protection for a motivated team. Engaging in both project work and internal security processes.
IT & Cybersecurity Intern assisting with help desk support and IT system maintenance at OBDeleven. Collaborating with teams and improving IT documentation in a fun workplace culture.
Werkstudent supporting information security management and business continuity projects for Syneco's energy operations. Engaging in the development and upkeep of management systems and reporting tools.
Security Consultant providing IT - Security Consulting by leveraging knowledge and skills to assist clients. Involved in diverse projects from analysis to execution and results presentation.
Lead functional safety for product development in PEM electrolyzers at Quest One. Collaborate with teams and support certification processes in the field of green hydrogen technology.
(Senior) Consultant in Automotive - & Product Security at Wavestone, focusing on cyber security solutions for clients in innovative projects. Collaborative work in a vibrant team environment across multiple German cities.
Consultant specializing in Cyber & Product Security for clients in a hybrid role. Focused on implementing security strategies and conducting assessments with a collaborative approach.