Cloud Security Architect - Director
Company: SMBC Group
Location: Charlotte
Posted on: December 2, 2025
|
|
|
Job Description:
SMBC Group is a top-tier global financial group. Headquartered
in Tokyo and with a 400-year history, SMBC Group offers a diverse
range of financial services, including banking, leasing,
securities, credit cards, and consumer finance. The Group has more
than 130 offices and 80,000 employees worldwide in nearly 40
countries. Sumitomo Mitsui Financial Group, Inc. (SMFG) is the
holding company of SMBC Group, which is one of the three largest
banking groups in Japan. SMFG’s shares trade on the Tokyo, Nagoya,
and New York (NYSE: SMFG) stock exchanges. In the Americas, SMBC
Group has a presence in the US, Canada, Mexico, Brazil, Chile,
Colombia, and Peru. Backed by the capital strength of SMBC Group
and the value of its relationships in Asia, the Group offers a
range of commercial and investment banking services to its
corporate, institutional, and municipal clients. It connects a
diverse client base to local markets and the organization’s
extensive global network. The Group’s operating companies in the
Americas include Sumitomo Mitsui Banking Corp. (SMBC), SMBC Nikko
Securities America, Inc., SMBC Capital Markets, Inc., SMBC
MANUBANK, JRI America, Inc., SMBC Leasing and Finance, Inc., Banco
Sumitomo Mitsui Brasileiro S.A., and Sumitomo Mitsui Finance and
Leasing Co., Ltd. The anticipated salary range for this role is
between $203,000.00 and $230,000.00. The specific salary offered to
an applicant will be based on their individual qualifications,
experiences, and an analysis of the current compensation paid in
their geography and the market for similar roles at the time of
hire. The role may also be eligible for an annual discretionary
incentive award. In addition to cash compensation, SMBC offers a
competitive portfolio of benefits to its employees. Role
Description The Director of Cloud Security Architecture will ensure
bank’s cloud infrastructures are securely architected, configured,
deployed in accordance with the approved polices and standards by
leveraging industry best practices and automation. You will be
expected to broaden and sharpen our capability to manage the
incoming security architecture needs while rapidly surfacing,
driving down, and reporting on cloud security issues across our
AWS, GCP, and Azure environments. This role is responsible for
identifying secure cloud architecture patterns, where appropriate
automate deployments using IaC and manage security projects. This
position requires participation in technical research and
development to enable continuous innovation for Cyber Security and
Information Risk department. Acts as a subject matter expert who
utilizes his/her Cloud Security Engineering expertise to resolve
complex problems in consideration of established policies,
guidelines, or processes. Role Objectives • Implement the banks
cybersecurity strategy by architecting, engineering, deploying, and
operating technical security controls as they related to virtual
machines, storage, key vault, database services infrastructures in
the Cloud. • Engineer and operate solutions that protect Cloud
resources from malicious internal and external threats by providing
additional preventative, detective, and hardening controls and by
enabling Real Time endpoint detection and response capabilities. •
You will automate security hardening tasks in Cloud to ensure gaps
are identified and addressed quickly with our standards. • Performs
as the Subject Matter expert focused on multiple technologies
within the Security domains (Security Engineering, IAM, Cloud
Security, Data Security, Network Security, Encryption, Privileged
Access Management, Federation etc.). • Establishes a strategic
security architecture vision, including standards and frameworks
for medium to large enterprises. • Review and analysis of security
logs from a wide variety of sources. • Coordinate and perform
security audits and vulnerability assessments to assess internal
security procedures and compliance requirements. • Work with
relevant internal IT Application, Infrastructure, Network and
Support teams to ensure that security controls are implemented at
all significant layers, test those controls and perform gap
analysis to find areas of improvement. • Perform testing to
evaluate new products for network and system security controls. •
Participate in the development of the security roadmap and
communicate the Technology Security vision to senior management and
technical departments. • Coordinates with project team the
implementation, upgrade and maintenance of security solutions.
Qualifications and Skills Critical Job Knowledge and Core
Competencies/Skills: • 7 Years of hands-on security architecture,
implementation and design experience required, designing globally
scalable Cloud security solutions. • Cloud Security and hands on
knowledge with Azure and AWS is highly desired. • Experience
delivering large and complex programs - where you own the business
or technical vision, collaborate with large cross-functional teams,
secure commitments on deliverables and unblock teams to land
business impact • Strong knowledge of enterprise Information
Security pillars (Perimeter security, Identity Management and
Governance, Privileged Account Management, Compliance, Penetration
testing, Encryption, Cloud Security, Incident Response,
Vulnerability Management) • Excellent written and verbal
communication skills; strong attention to detail. • Strong
executive reporting and narrative based presentation skills. •
Thirst for knowledge and constantly driven to stay current with
evolving threat landscapes. Hands-on experience with some of the
following: • Docker and Kubernetes • Developing & securing
Serverless applications • Security administration in AWS/GCP/Azure
• CI/CD and DevOps Tooling (Git, Jenkins, DevOps) • Infrastructure
as Code Tools (Terraform, CloudFormation) • Cloud native security
related tools (Azure Sentinel, AWS Guard Duty, AWS WAF, GCP
Security Center, WIZ.IO, CASB) • Cloud Network (VPC) engineering
The Nice to Haves • Azure Certifications – Solutions Architect, AWS
Security Specialty • GCP Certifications – Associate Cloud Engineer,
Professional Security Engineer • Security Engineer Certifications –
CISSP, CompTIA Security • Certifications in related areas (e.g.
SANS, OSCP, CEH) are a plus SMBC’s employees participate in a
Hybrid workforce model that provides employees with an opportunity
to work from home, as well as, from an SMBC office. SMBC requires
that employees live within a reasonable commuting distance of their
office location. Prospective candidates will learn more about their
specific hybrid work schedule during their interview process.
Hybrid work may not be permitted for certain roles, including, for
example, certain FINRA-registered roles for which in-office
attendance for the entire workweek is required. SMBC provides
reasonable accommodations during candidacy for applicants with
disabilities consistent with applicable federal, state, and local
law.
Keywords: SMBC Group, Charlotte , Cloud Security Architect - Director, IT / Software / Systems , Charlotte, North Carolina
