Share this Job

Principal Cloud Platform Architect - Security (AWS) (Remote) 1

Date: Jun 3, 2021

Location: remote, MA, US, 01938

Company: EBSCO Industries Inc

EBSCO Information Services (EIS) provides a complete and optimized research solution comprised of e-journals, e-books, and research databases — all combined with the most powerful discovery service to support the information needs and maximize the research experience of our end-users. Headquartered in Ipswich, MA, EIS employs more than 3,300 people worldwide. We are the leader in our field due to our cutting-edge technology, forward-thinking philosophy, and top-notch workforce. EIS, a division of EBSCO Industries Inc., based in Birmingham, AL, is ranked in the top 200 of the nation’s largest, privately held corporations according to Forbes magazine. EBSCO is a company that will motivate you, inspire you, and allow you to grow. We are looking for the best. If you are too, we encourage you to explore our unique opportunities.



We are looking for a seasoned technologist to join our Platform Architecture team to represent the security aspects of our public-cloud (AWS) infrastructure and operations domain. This person will help drive our strategy with risk-appropriate security controls, threat modeling, security best practices and implicit/frictionless governance in AWS. Platform Architects serve as the primary architectural coach for a domain, spanning teams across multiple Agile Release Trains (ARTs), ensuring that team-led design runs in sync with the underlying platform architecture. Platform Architects are Lean-Agile leaders who work across the organization, partnering with development teams, enterprise and system architects, product management, and leadership to help drive architectural alignment in support of EBSCO’s cloud-first mission. They are focused on both near-term support on tactical challenges, and evaluations in support of building architectural runway for the platform’s roadmap.


Primary Responsibilities

· Evaluate technology choices supported by proof-of-concept exercises to make impactful decisions about systems and security — their edge cases, failure modes, and lifecycles.

· Partner with engineering teams, product managers and the community of architects to identify patterns and platform enablers across the organization.

· Act as an advocate and thought leader of information security policies, standards, and controls and as an enabler to the business while managing risk appropriately.

· Design, document and implement procedures and techniques that are consistent with best practices for analyzing and evaluating the risk (software & business), accuracy, completeness, internal integrity/consistency, testability, and overall quality of system.

· Evolve and standardize AWS Organizations and IAM reference architectures, to include multiple accounts, policies, roles, federation, and data protection.

· Aid vulnerability management and help resolve findings of security assessments and other risk management activities.

· Influence the planning and execution of incident response and postmortem efforts related to the cloud, with a focus on creating transparency and measuring progress when resolving deficiencies.

· Partner with InfoSec & Operations to align on approaches to cloud-first security practices.

· Provide consultation and support to audit & compliance activities (ISO27001, HIPAA, etc.)

· Drive a DevSecOps focus for teams delivering solutions in the public cloud through security architecture, automation, integration, and distribution.

· Contribute to reference architectures for EBSCO’s cloud platforms that meet the needs of our business initiatives and help inform/influence the platform evolution roadmaps.

· Drive alignment on the organization’s long-range plans and support the migration between reference architectures.

· Engage with the internal development community to guide, inform and influence the architectural alignment of our technology platform.

· Effectively communicate our infrastructure strategy, benefits of technology and platform capabilities to business partners, stakeholders and senior management.

· Participate in and contribute to architecture design reviews and CoPs.

· Promote a culture of feedback loops, trust and partnership with our internal community.



· Bachelor’s Degree in Computer Information Systems, Computer Science, or related field of study.

· 8+ years software engineering experience in production environments, with distributed applications.

· 5+ years’ experience architecting/developing/maintaining cloud solutions in virtualized environments.

· Advanced knowledge of the AWS services, with 3+ years’ experience architecting/operating solutions built on AWS.

· 3+ years’ experience with Cloud-native architectures, AWS, VPC, Security Groups, IAM, Docker, Encryption, HTTPS, TLS Certificates, API Gateway, Lambda, Egress proxies, PCI architectures, application security, domain segmentation, authentication, data protection, and automation of processes

· 3+ years’ working with AWS security, identity and compliance related disciplines such as IAM, Organizations, S3 bucket policies, Config, WAF, Shield, ACM, KMS, etc.


Preferred Skills

· Deep understanding of cloud native design, and K8S/EKS and related technologies; AWS certifications a plus.

· Extensive knowledge of traditional security controls and technologies, such as Security Information and Event Management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), public key infrastructure (PKI), identity and access management (IDAM) systems, antivirus and firewalls, in addition to newer offerings such as endpoint detection and response (EDR), threat intelligence platforms, security automation and orchestration, deception technologies and application controls.

· Security, Cloud, Networking Certs strongly preferred (CCSP, SSCP, CISSP.CCSK, CCNA)

· Experience with operating and satisfying compliance audits (IS27001, FedRAMP, HIPAA)

· Strong hands-on experience with Terraform/ CloudFormation to manage infrastructure-as-code.

· Can write high-quality code in a programming language (e.g. Java, Python, Ruby, Scala, Go) that addresses real-world engineering problems.

· Industry expert in AWS Public Cloud Security

· A sense of urgency, and a strong bias for action.

· Strong communication skills and a natural inclination to collaborate.

· Knowledge of one or more project management technologies (Rally, Jira, etc.).

· Experience leading strong personalities by influence.

· Experience with web-based tools for collaboration and communication.

· Exhibits sound judgement and is able to make wise decisions despite ambiguity, identifies root causes and gets beyond treating symptoms.

EBSCO Industries, an equal opportunity employer and complies with all applicable federal, state, and local fair employment practices laws.  EBSCO strictly prohibits and does not tolerate discrimination against employees, applicants, or any other covered persons because of race, color, sex (including pregnancy), age, national origin or ancestry, ethnicity, religion, creed, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class.  This policy applies to all terms and conditions of employment, including, but not limited to, hiring, training, promotion, discipline, compensation, benefits, and termination of employment.

EBSCO complies with the Americans with Disabilities Act (ADA), as amended by the ADA Amendments Act, and all applicable state or local law.


Nearest Major Market: Boston

Job Segment: Architecture, Cloud, Engineer, Cisco, Information Systems, Engineering, Technology