Cloud Security Architect

IDEXX

Cloud Security Architect leading multi-cloud security architecture across AWS, Azure, and GCP at IDEXX Laboratories. Responsible for implementing security solutions that protect global veterinary diagnostics applications.

Posted 5/15/2026full-timeMaine, New Hampshire • 🇺🇸 United StatesSeniorLead💰 $120,000 - $150,000 per yearWebsite

Tech Stack

Tools & technologies

AWSAzureCloudGoogle Cloud PlatformTerraform

About the role

Key responsibilities & impact

Architect, implement, and continuously improve cloud security posture management across AWS, Azure, and GCP environments supporting hundreds of applications
Lead the migration from AquaSec to CrowdStrike Falcon CSPM, ensuring continuity of visibility and compliance enforcement
Establish and maintain compliance with CIS Benchmarks Level 1 standards across all cloud platforms
Design monitoring and alerting strategies that surface actionable security gaps to both security and engineering teams
Implement automated security scanning and policy enforcement for Terraform, CloudFormation, and other IaC frameworks
Integrate tools like CrowdStrike Falcon, Checkov and Trivy into CI/CD pipelines to prevent misconfigurations before deployment
Embed security controls directly into cloud deployment pipelines using native platform capabilities and third-party tooling
Partner with DevOps teams to build secure-by-default infrastructure templates and golden paths
Conduct architecture reviews for new cloud services and deployment patterns
Identify and prioritize security risks based on business impact, exploitability, and compensating controls
Manage and optimize cloud-native security tooling including CSPM, CNAPP, and secret scanning solutions
Build automation to reduce manual security work and improve consistency of controls
Establish metrics and reporting that demonstrate security posture improvement and compliance trends

Requirements

What you’ll need

7 to 10+ years of experience in information security with at least 5 years focused on cloud security architecture
Hands-on experience implementing and operating CSPM solutions in multi-cloud environments
Proven track record architecting security controls for large-scale cloud deployments (1,000+ resources)
Experience with CIS Benchmarks implementation and compliance enforcement
Strong understanding of cloud-native architecture patterns and security implications
Bachelor's degree in Computer Science, Information Security, or equivalent practical experience
Relevant cloud security certifications (AWS Certified Security – Specialty, Azure Security Engineer Associate, GCP Professional Cloud Security Engineer, CCSP)
Experience with CrowdStrike Falcon CSPM or other leading CSPM/CNAPP platforms
Background in DevSecOps, SRE, or cloud platform engineering
Familiarity with OWASP SAMM or similar security maturity frameworks
Prior experience in regulated industries (healthcare, financial services) with SOC 2, HIPAA, or PCI-DSS compliance requirements
Contributions to open-source security tools or cloud security communities.

Benefits

Comp & perks

Opportunity for annual cash bonus
Health / Dental / Vision Benefits Day-One
5% matching 401k
Additional benefits including but not limited to financial support, pet insurance, mental health resources, volunteer paid days off, employee stock program, foundation donation matching, and much more!

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

cloud security architectureCSPM solutionsTerraformCloudFormationautomated security scanningpolicy enforcementsecurity controlscloud-native security toolingsecurity posture managementcompliance enforcement

Soft Skills

leadershipcollaborationrisk assessmentcommunicationproblem-solvingprioritizationarchitecture reviewmetrics establishmentreportingautomation

Certifications

AWS Certified Security – SpecialtyAzure Security Engineer AssociateGCP Professional Cloud Security EngineerCCSP