Cloud Security Architect

HCLTech is a global technology company, spread across 60 countries, delivering industry-leading capabilities centered around digital, engineering, cloud and AI, powered by a broad portfolio of technology services and products. We work with clients across all major verticals, providing industry solutions for Financial Services, Manufacturing, Life Sciences and Healthcare, Technology and Services, Telecom and Media, Retail and CPG, and Public Services. We re powered by our people a global, diverse, multi-generational talent - representing 161 nationalities whose unique spark, perspective and boundless passion drive our culture of proactive value creation and problem-solving.

Our purpose is to bring together the best of technology and our people to supercharge progress for everyone, everywhere our clients, partners, their stakeholders, communities, and the planet. As a company, we are deeply focused on accelerating our ESG agenda. We are also creating technology-enabled sustainable solutions with and for our clients and partners. We embed ESG imperatives into every aspect of our business and ensure that the progress we supercharge is responsible, inclusive and beneficial to all our stakeholders in the long term. We have committed to achieving net zero by 2040.

To learn more about how we can supercharge progress for you, visit www.hcltech.com

Job Title- Cloud Security Architect

Location- Manchester

Hybrid mode- 2 days week (Work from client location)

We’re looking for a Cloud Security Architect to shape the future of cloud security architecture and deliver secure, resilient, and scalable solutions.

Skills & Experience

We’re looking for someone with strong technical expertise and a passion for security! Here’s what we need:

• Governance, Risk & Compliance: Risk-based decisions, adherence to regulatory and internal security standards.

• Threat Modelling and Risk Management: Identify threats and mitigations for complex cloud systems.

• Cloud Security Expertise: broad knowledge across the following Security Domains and their capabilities within Azure/GCP and SME experience in at least one area. Familiarity in AWS is also desirable.

• AI/ML security: Knowledge of AI/ML threats and risks, with experience applying security controls for secure deployment of AI services in cloud platforms.

• Application Security: CI/CD Security including secure software supply chain.

• Data Security: Key, certificate and secrets Management. • Identity and Access Management: Securing user/non-user access at scale.

• Infrastructure Security: Kubernetes (AKS/GKE/Istio), API Security, IaC security (e.g. Terraform, ARM templates).

• Network Security: Zero Trust, firewalls, segmentation, DDoS Protection.

• Security Logging and Monitoring: Security logging, SIEM integration, event correlation. Responsibilities

• Develop and enforce reference architectures, patterns, and blueprints for secure cloud adoption across Azure, GCP and hybrid environments.

• Conduct threat modelling and security assessments for new cloud services, defining preventative and detective controls (via security guardrails) to maintain secure posture and detect drift.

• Partner with engineering and product teams to embed security guardrails early in design, ensuring compliance and resilience.

• Review external architecture proposals and identify security gaps.

• Document and uphold secure-by-design principles and architecture governance.

• Collaborate with senior partners to articulate security risks and mitigations.

• Anticipate customer needs taking proactive steps to address them.

Desirable Certifications

• CISSP, CCSP, or equivalent certifications.

• Azure Security Engineer Associate, Google Professional Cloud Security Engineer.

• Microsoft Certified: Azure Solutions Architect Expert, Google Professional Cloud Architect.