Director, Cloud Security Architecture & Engineering
Job Description
This role follows a flexible hybrid schedule - two days per week in the office and three days working from home. This role can be performed from any Breakthru Beverage office location.
Job Responsibilities
- Own and evolve the enterprise cloud security architecture across AWS, SaaS platforms, hybrid infrastructure, applications, networking, and operational technologies, ensuring alignment with business strategy and risk tolerance.
- Define and implement AWS-native security architectures including identity, encryption, network segmentation, logging, detection, and governance capabilities, to enable secure and scalable cloud adoption.
- Support the re-architecture and migration of Azure workloads to AWS, ensuring security-by-design principles are embedded throughout the migration lifecycle.
- Design, implement and enforce Zero Trust security models to ensure protection of cloud and hybrid environments.
- Integrate AWS with enterprise security platforms such as Zscaler, Splunk, and BeyondTrust to enable centralized visibility, control and response.
- Collaborate with DevOps and cloud infrastructure teams to embed security into DevOps pipelines, leveraging automation for vulnerability management, code scanning, configuration validation and continuous compliance.
- Establish tailored governance, risk, and compliance (GRC) frameworks for cloud adoption, including policy-as-code and automated compliance monitoring aligned to industry standards and regulatory requirements.
- Develop templates, accelerators, and reusable security artifacts that improve delivery speed, consistency, and compliance across cloud initiatives for BBG.
- Monitor emerging cloud services, regulatory changes, and threat trends to proactively assess risk and advise leadership on security posture and mitigation strategies.
- Lead and develop cloud security architecture and engineering teams, setting technical direction, delivery priorities, and performance expectations.
- Provide architectural oversight and subject matter expertise for enterprise and cross-functional initiatives, ensuring security outcomes are consistently achieved.
- Own and evolve the cloud security tools, platforms, and services portfolio to maximize effectiveness and return on investment.
- Oversee cloud incident response and forensics capabilities, leveraging native cloud telemetry and SIEM integrations to enable rapid detection, investigation, and recovery.
- Deliver thought leadership through executive briefings, architecture reviews, and security workshops, influencing stakeholders and driving secure cloud transformation.
Minimum Qualifications
- Bachelor's degree in computer science, information systems, or information technology, or equivalent work experience.
- Minimum 12 years of IT Security experience, with 5 years focused on AWS architecture.
- AWS Solutions Architect – Associate Certification.
- AWS Security Specialty Certification.
- CISSP Certification.
- Deep expertise in AWS-native and third-party security tools.
- Strong experience with Snowflake and S/4HANA.
- Strong scripting and automation skills (Python, Terraform).
- Strong experience with Splunk.
- Strong experience with multi-cloud environments (AWS, Azure, M635).
- Strong writing and communication skills across technical and executive audiences.
- Ability to multi-task, work independently and/or within a team, pay attention to detail and meet deadlines.
- Utilize sound judgement, business acumen and problem-solving skills and ability to work in fast-paced, high-volume, team environment.
- Ability to work nights, weekends and holidays.
Preferred Qualifications
- AWS Solutions Architect – Professional Certification.
- CCSP Certification.
- Master’s degree.
Physical Requirements
While performing the duties of this job, the employee is required to remain in a stationary position at times; communicate, and operate a computer and telephone.
Salary And Benefit Statement
Any offered salary is determined based on internal equity, internal salary ranges, market data/ranges, applicant’s skills and prior relevant experience. Salary Range: $175,000.00 - $200,000.00 This position is eligible to participate in a bonus program. Metrics and level of participation are determined annually This position is eligible for health care benefits, life insurance, time off benefits and participation in the Company’s 401(k) plan