Job Summary

Neurealm is seeking a visionary Cybersecurity Solutions Architect to spearhead our transition to a resilient, cloud-native, and AI-enhanced security posture. In this role, you will be the principal technical authority designing our next-generation defenses. You will architect robust Cloud Security frameworks using CSPM and CASB, drive our network transformation via SASE and ZTNA, and leverage AI/ML to automate threat detection and response. You will act as the crucial link between business strategy and highly technical implementation, ensuring our distributed workforce and multi-cloud environments are secure by design.

Key Responsibilities:

1. Enterprise Cloud Security Architecture

• Lead the overarching cloud security strategy across multi-cloud and hybrid environments (AWS, Azure, GCP).
• Integrate cloud-native security controls into the CI/CD pipeline, ensuring Infrastructure as Code (IaC) is scanned and secure before deployment.
• Design robust identity-first security perimeters utilizing cloud-native IAM, role-based access control (RBAC), and least-privilege principles.

2. Cloud Security Posture & SaaS Governance (CSPM & CASB)

• Architect and implement Cloud Security Posture Management (CSPM) solutions to provide continuous compliance monitoring, automated remediation of misconfigurations, and threat detection across cloud workloads.
• Design Cloud Access Security Broker (CASB) architectures to gain visibility into Shadow IT, enforce granular data loss prevention (DLP) policies, and secure data in transit and at rest across all SaaS applications.

3. Network Transformation (SASE & ZTNA)

• Drive the architectural shift from legacy VPNs and perimeter firewalls to a Secure Access Service Edge (SASE) framework, integrating secure web gateways (SWG) and Firewall-as-a-Service (FWaaS).
• Design and implement Zero Trust Network Access (ZTNA) models that grant application-level access based on continuous contextual verification of user identity, device posture, and location.

4. AI/ML Security Integration & Defense

• Evaluate and integrate AI/ML-powered security platforms (e.g., advanced UEBA, AI-driven SIEM/SOAR) to enhance behavioral anomaly detection, reduce alert fatigue, and automate incident response playbooks.
• Develop architectural guardrails for the company’s internal use and development of Generative AI and Large Language Models (LLMs), securing them against prompt injection, data poisoning, and model inversion.

5. Strategic Leadership & Risk Management

• Conduct advanced threat modeling (e.g., STRIDE, MITRE ATT&CK) for complex cloud architectures and network deployments.
• Partner cross-functionally with DevOps, network engineering, and business units to ensure security solutions enable, rather than hinder, business agility.
• Evaluate emerging vendors, maintaining a technology roadmap that anticipates future cyber threats.

Required Qualifications:

Education & Experience

• Bachelor’s or Master’s degree in Computer Science, Cybersecurity, Cloud Computing, or a related technical discipline.
• 8+ years of progressive experience in IT infrastructure, network engineering, and information security.
• 4+ years of dedicated experience as a Security Architect focusing on cloud transformations and Zero Trust deployments.

Industry Certifications

• Foundational Architecture: CISSP, ISSAP, or TOGAF.
• Cloud/Specialized: CCSP (Certified Cloud Security Professional), AWS Certified Security - Specialty, Microsoft Cybersecurity Architect Expert, or equivalent.

Technical Skills Profile:

• SASE & ZTNA: Extensive architectural experience with industry-leading platforms (e.g., Zscaler Internet Access/Private Access, Palo Alto Prisma Access, Netskope, or Cloudflare One).
• Cloud Security (CSPM/CASB/CNAPP): Hands-on expertise configuring platforms like Wiz, Orca Security, Microsoft Defender for Cloud, or Palo Alto Prisma Cloud to secure IaaS, PaaS, and SaaS environments.
• AI & Automation: Strong grasp of machine learning concepts in a cybersecurity context, experience with Python/API integrations for automation, and familiarity with frameworks like MITRE ATLAS.
• Networking Foundations: Deep understanding of BGP, SD-WAN, micro-segmentation, and modern API security.

Soft Skills:

• Exceptional ability to translate highly technical concepts (like the nuances of SASE or AI models) into business risks and ROI for executive leadership.
• Strong leadership and mentoring capabilities to guide engineering teams through complex technical deployments.
• Strategic thinker with a problem-solving mindset and a collaborative approach.