EY - Cyber Security - Cloud Security Architect - Manager

EY – Cyber Security – Cloud Security Architect – Manager

Job Listing Detail

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. We’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all.

The Opportunity

We’re looking for a Manager in our Cyber Security team with a strong focus on Cloud Security Architecture. In this role, you will be responsible for designing, governing, and assuring secure cloud and hybrid architectures, enabling organizations to adopt and scale cloud technologies securely across IaaS, PaaS, SaaS, and cloud native platforms.

You will work with global clients to define secure cloud landing zones, reference architectures, and security by design patterns, supporting large scale cloud transformation, modernization, and migration programs while addressing evolving cyber, regulatory, and business risks.

Your Key Responsibilities

• Design and define cloud security architectures for hybrid and multi cloud environments across Azure, AWS, and GCP.
• Develop secure cloud reference architectures and landing zone designs, incorporating identity, network segmentation, encryption, logging, monitoring, and governance controls.
• Lead cloud security architecture reviews and design assurance activities for client cloud programs.
• Apply Zero Trust Architecture principles across cloud, identity, network, and workload layers.
• Architect security controls for cloud native services, including containers, Kubernetes, serverless, and PaaS offerings.
• Oversee the integration of cloud native security services such as CSPM, CWPP, CIEM, CASB, and cloud native SIEM/SOAR.
• Conduct cloud threat modeling and risk assessments, addressing shared responsibility models and platform specific risks.
• Support secure adoption of DevSecOps practices, including infrastructure as code (IaC) and policy as code.
• Review and assess cloud configurations for compliance with organizational standards, regulatory requirements, and industry best practices.
• Collaborate with enterprise security architecture, data, privacy, and AI teams to ensure end to end security alignment.
• Engage senior client stakeholders to align cloud security strategy with business objectives and risk appetite.
• Mentor and guide junior consultants and architects, fostering strong cloud security capabilities.
• Contribute to solution development, go to market assets, RFPs, and proposals.

Skills and Attributes for Success

• Strong experience in cloud security architecture and design.
• Deep understanding of cloud shared responsibility models and defense in depth.
• Strong knowledge of identity centric security, network security, encryption, and key management in cloud environments.
• Experience securing cloud native workloads (containers, serverless, PaaS).
• Familiarity with CSPM, CWPP, CIEM, CASB, and cloud native security tooling.
• Strong understanding of Zero Trust Architecture in cloud contexts.
• Ability to translate complex cloud security risks into clear, actionable guidance.
• Excellent communication and stakeholder management skills.
• Ability to manage multiple engagements in a fast paced consulting environment.

To Qualify for the Role, You Must Have

• 10–14 years of experience in Information Technology, with specialization in Cloud and Cyber Security.
• Proven experience designing and reviewing cloud security architectures across Azure, AWS, and/or GCP.
• Hands on exposure to cloud IAM, network security, encryption, logging, and monitoring services.
• Experience implementing or integrating cloud security tooling (CSPM, CWPP, CIEM).
• Experience supporting cloud risk assessments, architecture reviews, and transformation programs.
• Relevant certifications such as CISSP, CCSP, Azure/AWS/GCP Security certifications, or equivalent.

Ideally, You’ll Also Have

• Experience working in a consulting or professional services environment.
• Exposure to multi cloud and hybrid cloud operating models.
• Familiarity with DevSecOps, IaC, and CI/CD security practices.
• Experience aligning cloud security with privacy, data protection, and regulatory requirements.
• Strong interpersonal skills and ability to build trusted client relationships.
• A proactive mindset toward emerging cloud security threats and innovations.

What We Look For

• Professionals with strong cloud architecture depth and consulting mindset.
• Ability to lead cloud security discussions with CISOs, CTOs, Cloud Architects, and senior stakeholders.
• Comfort working across technology, risk, and business teams.
• Experience supporting RFP responses, proposals, and solution shaping is a plus.
• Passion for enabling secure, scalable, and resilient cloud adoption.