Senior Cloud Security Architect

Full Time
Newton, MA
report a problem
Virtual / Telecommute
Remote work is frequently a way to describe working from a home office or being a telecommuter. Depending on the job and company, remote work offers the ability to work from anywhere in the world. To do a remote job, professionals need access to tools like phone/internet service and a quiet place to work without distraction.

CyberArk was named a 2016 Best Workplace in Technology by Fortune Magazine and global research and consulting firm Great Place to Work. 


CyberArk is looking for an hand-on Cloud Security Architect to own, drive and lead security processes, tools, methods, knowledge and security enhancements in our Cloud Engineering team. The Cloud Security Architect will architect, design, implement and review security solutions on CyberArk Cloud environments. The Cloud Security Architect will work closely with and follow the professional guidance by the R&D Security Leader.

The ideal candidate is familiar with Security policies and best practices, modern automation tools and IaaS services. We are looking for someone with a security mindset who “thinks like a hacker”.

Responsibilities may include, but are not limited to:

  • Leading all technical activities around SaaS security offering such as
    • Plan security systems by evaluating network and security technologies for SaaS environment
    • Develop security requirements for SaaS multi tenants security systems
    • Maintain security by monitoring and ensuring compliance with industry best standards, policies, and procedures.
    • Initiate and participate in code reviews, design reviews, etc.
    • Conduct incident response analyses
  • Working closely with Dev and Product Management on defining and developing SaaS offerings
  • Conduct while-box security testing assessments. Including infrastructure and web application assessments.
  • Implement application and infrastructure security controls and security enhancements
  • Audit, test, or review system architecture for compliance with security best practices. Review and recommend technical, administrative and physical controls to mitigate identified risk.
  • Prepare and deliver trainings and security awareness activities to the development teams and to other security architects
  • Contribute to CyberArk’s secure-DevSecOps guidelines and standards
  • Manage security tools, train and help the team in using these tools and reports
  • Acquire relevant knowledge, be updated, go to security conferences and be involved with the security community
  • Additional responsibilities as assigned.

Required of all CyberArk employees:

The Senior Cloud Security Architect must adhere to the business and cultural goals required by all employees of CyberArk.


  • Excellent communication skills;
  • Think like a hacker
  • Strong attention to detail;
  • Strong hands-on technical abilities;
  • Strong computer literacy and/or the comfort, ability and desire to advance technically;
  • Strong understanding of Information Security in various environments.

Position Requirements:

  • 4+ years of experience with software security (security researcher, security engineer, security architect).
  • Vast experience in application security and security SDLC
  • Experience as a security engineer in DevOps teams is an advantage
  • Hand-on experience with AWS security best practices and AWS services is a plus.
  • Hands-on experience with the following scripting technologies:
    • Automation/Configuration management using either Ansible, Puppet, Chef or an equivalent
    • Python, Ruby, Bash
    • Bash is a plus
    • Ansible is a plus
    • PowerShell is a plus
  • Vast knowledge and experience in the following:
    • Strong background in securing Linux/Unix and Windows OS
    • Secure SaaS practices
    • Severity assessment and Risk management
    • Threat Modeling
    • Security reviews for Code/Design/Architecture and requirements
  • Knowledge in the following:
    • Security standards and practices (OWASP, NIST, SANS, etc.)
    • Hardening procedures
    • Network and Network security
  • Experience with Security audits and frameworks such as SOC2 or CSA is a plus
  • Strong understanding of network architecture and security configurations
  • Experience with Identity Management and Authentication systems such as Active Directory, LDAP, SAML, Radius
  • Demonstrated ability to assume sole and independent responsibilities
  • Ability to keep track of numerous detail-intensive, interdependent tasks and ensure their accurate completion;
  • Experience with Security of Relational Databases (MySQL, MS SQL Server, Oracle) is a plus
  • Bachelor’s Degree in Computer Science or related field.
  • Advantage:
    • Security management certificates (CISSP, CSSLP, CISM, etc.)
    • Have lectured at security conferences (BlackHat, OWASP, etc.)
    • Security testing/research hands-on experience
CyberArk provides equal opportunities in employment, development, and advancement to all employees, applicants for employment and all qualified persons without regard to race, color, sex, pregnancy, age, religion, national origin, ancestry, sexual orientation, gender identity, physical or mental disability, veteran status, military service, application for military service, genetic information, or any other characteristic protected under federal and applicable state law. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, transfer, leaves of absence, compensation and training.

Share this job:


CyberArk is the only security company laser-focused on striking down targeted cyber threats, those that make their way inside to attack the heart of the enterprise. Dedicated to stopping attacks before they stop business, CyberArk is trusted by the world’s leading companies — including 45% of the Fortune 100 companies — to protect their highest-value information assets, infrastructure and applications.

For over a decade CyberArk has led the market in securing enterprises against cyber attacks that take cover behind insider privileges and attack critical enterprise assets. Today, only CyberArk is delivering a new category of targeted security solutions that help leaders stop reacting to cyber threats and get ahead of them, preventing attack escalation before irreparable business harm is done. At a time when auditors and regulators are recognizing that privileged accounts are the fast track for cyber attacks and demanding stronger protection, CyberArk’s security solutions master high-stakes compliance and audit requirements while arming businesses to protect what matters most.

With offices and authorized partners worldwide, CyberArk is a vital security partner to more than 2,800 global businesses, including:

45% of the Fortune 100
More than 25% of the Global 2000

CyberArk has offices in the U.S., Israel, Australia, France, Germany, Italy, Japan, Netherlands, Singapore, Spain, Turkey and the U.K.

Privileged Account Security, Advanced Threat Protection, Insider Threat Protection, Privileged Identity Management, Privileged Session Management, SSH Key Management, Highly Sensitive Information Management, and Information Security Software

Visit CyberArk's Social Media pages:
Company Industry: Computer Software
Company Size: 501-1000