Engineering - Cloud Security - Security Architecture & Platform Engineering - Vice President - Seattle
Goldman Sachs · Seattle, WA · 3 wk ago
Management$150k–$250k/yrFull-time
Key Responsibilities
- Cloud Security Architecture & Platform Leadership: Design, implement, and maintain secure cloud architecture aligned with NIST frameworks and industry-recognized cloud security standards, ensuring compliance, resilience, and least-privilege access across cloud environments.
- Lead deployment and integration of cloud security posture management platforms with enterprise services including risk management systems, monitoring infrastructure, security information and event management (SIEM), and compliance frameworks.
- Architect policy-as-code frameworks for infrastructure security controls, enabling shift-left security and automated compliance validation across multi-cloud environments.
- Define and implement secure-by-default infrastructure patterns for cloud account provisioning and service onboarding.
- Technical Leadership & Expertise: Demonstrates thought leadership; guides and upskills other engineers and clients in cloud best practices; demonstrates expertise with automation and infrastructure as code (IaC).
- Lead strategic initiatives for cloud-native authentication and authorization, including certificate-based service identity frameworks and fine-grained access control systems.
- Partner with middleware and platform engineering teams on secure messaging infrastructure migration from on-premise to cloud-native solutions.
- Provide regional timezone coverage for cloud access and security platform operational issues, participating in 24/7 follow-the-sun support model.
DevOps & Platform Engineering
- Past enterprise level experience in DevOps, Software, Infrastructure or Site Reliability Engineering.
- Proficient in infrastructure as code practices using technologies such as CDK, Terraform, AWS CloudFormation, and/or SaltStack.
- Experience building CI/CD pipelines from scratch with integrated security gates and automated policy enforcement.
- Hands-on experience developing and improving all phases of the software development/delivery lifecycle.
- Strong grasp of container technology and container orchestration.
Observability & Operational Excellence
- Proficient in one or more enterprise scale observability tools such as Splunk, Datadog, FluentD, ELK.
- Experience maintaining and improving the reliability of applications and infrastructure.
- Implement SLO/SLI frameworks, monitoring strategies, and automated remediation workflows.
- Lead root cause analysis for security and access control incidents, implementing preventive measures.
Collaboration & Documentation
- Able to document solutions, cloud architectural patterns, and best practices to ensure that clients have guidance as needed.
- Proven ability to partner with cloud hyperscale partners to define and troubleshoot cloud architectures and service enablements.
- Establish trusted partnerships with Tech Risk, Compliance, Platform Engineering, and business unit stakeholders.
- Mentor Associate and Analyst-level engineers on platform internals, security best practices, and operational excellence.
Software Development & Architecture
- Solid understanding of Microservices and APIs.
- Design and implement automated workflows for security finding management, remediation tracking, and compliance reporting.
- Build self-service capabilities for business units to manage security posture and access controls.
- Eager to problem solve and troubleshoot issues that may arise day to day.