Lead Development Specialist, Security
Johnson Controls
VP, Cloud Security Architecture
Synchrony
full-time
Posted on:
Location Type: Hybrid
Location: Stamford • Connecticut, Illinois • 🇺🇸 United States
Visit company websiteSalary
💰 $170,000 - $290,000 per year
Job Level
Lead
Tech Stack
AWSAzureCloudTerraform
About the role
- Secure Migration Architect (On-Prem to AWS Focus)
- Design secure pathways for migrating critical on-premises workloads and sensitive data to the AWS cloud environment.
- Architect and enforce robust security controls for hybrid cloud networking (e.g., Direct Connect, Transit Gateway) and virtual data center connectivity.
- Ensure data integrity and confidentiality during transfer by leveraging AWS services like DataSync or Transfer Family and implementing mandatory encryption via AWS KMS.
- Collaborate with Cloud IAM architects to engineer and proliferate stringent policies and roles that strictly enforce the Principle of Least Privilege (PoLP) across all AWS accounts.
- Use Infrastructure as Code (IaC) tools (e.g., Terraform or CloudFormation) to embed security guardrails and governance policies directly into all cloud infrastructure provisioning.
- Provide architectural guidance to SecOps for the configuration and integration of core security functions, including continuous monitoring, logging, SIEM ingestion, and automated alerting across the AWS footprint.
- Define and govern the strategy and standards for integrating security testing (SAST, DAST, and SCA) into CI/CD pipelines, advising and supporting AppSec, DevOps, and application development teams on "Shift Left" best practices.
Requirements
- Bachelor's degree in computer science, engineering, or related field (or equivalent practical experience); OR in lieu of a degree, 12+ years of experience in related field
- 4+ years of dedicated, hands-on experience designing, implementing, and securing large-scale production solutions on Amazon Web Services (AWS), Azure, or Google Cloud.
- Proven expertise in supporting on-premises to cloud migration efforts, specifically securing the data transfer and hybrid connectivity phases.
- Deep practical mastery of core AWS security services (IAM, KMS, VPC, Security Hub).
- High proficiency with Infrastructure as Code (IaC) tools such as Terraform or CloudFormation for security automation.
- Experience operating within a highly regulated industry (e.g., Financial Services) with practical knowledge of compliance frameworks such as PCI DSS, GDPR, or SOC 2.
Benefits
- Flexible work arrangements
- Professional development opportunities
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
AWScloud migrationsecurity controlsInfrastructure as CodeTerraformCloudFormationdata integrityencryptionsecurity testingCI/CD
Soft skills
collaborationarchitectural guidanceadvisingsupporting
