• Director, Cloud Security Architecture…

    Breakthru Beverage Group (Tampa, FL)


    Time Type:

    Full time

    Remote Type:

    Job Family Group:

    Information Technology

    Job Description Summary:

    Job Description:

    Job Overview:

    We are seeking an experienced Director, Cloud Security Architecture and Engineering to serve as a hands-on leader, providing both strategic direction and active technical contribution.

     

    This role will lead and work alongside a cloud security architecture and engineering team, directly designing, implementing, and evolving a multi-cloud, hybrid security architecture across AWS, Azure, multiple SaaS providers, and operational technology environments

     

    This role follows a flexible hybrid schedule, with two days per week in the office and three days working from home. This role can be performed from any Breakthru Beverage Office Location.

    Job Responsibilities:

    1. Cloud Security Architecture and Engineering

    + Own and evolve the enterprise cloud security architecture across AWS, SaaS platforms, hybrid infrastructure, applications, networking, and operational technologies, ensuring alignment with business strategy and risk tolerance.

    + Define and implement AWS-native security architectures including identity, encryption, network segmentation, logging, detection, and governance capabilities, to enable secure and scalable cloud adoption.

    + Support the re-architecture and migration of Azure workloads to AWS, ensuring security-by-design principles are embedded throughout the migration lifecycle.

    + Design, implement and enforce Zero Trust security models to ensure protection of cloud and hybrid environments.

    2. Integration & Engineering Collaboration

    + Integrate AWS with enterprise security platforms such as Zscaler, Splunk, and BeyondTrust to enable centralized visibility, control and response.

    + Collaborate with DevOps and cloud infrastructure teams to embed security into DevOps pipelines, leveraging automation for vulnerability management, code scanning, configuration validation and continuous compliance.

    + Support the establishment and oversee cloud identity and access management (IAM) strategies, including federation, least privilege, just in time access, identity governance, and Zero Trust principles. Integrate with multiple IdPs including Entra ID and SAP IAS.

    3. Governance, Risk and Compliance (GRC)

    + Establish tailored governance, risk, and compliance (GRC) frameworks for cloud adoption, including policy-as-code and automated compliance monitoring aligned to industry standards and regulatory requirements.

    + Develop templates, accelerators, and reusable security artifacts that improve delivery speed, consistency, and compliance across cloud initiatives for BBG.

    + Monitor emerging cloud services, regulatory changes, and threat trends to proactively assess risk and advise leadership on security posture and mitigation strategies.

    4. Leadership, Delivery & Response

    + Lead and develop cloud security architecture and engineering teams, setting technical direction, delivery priorities, and performance expectations.

    + Provide architectural oversight and subject matter expertise for enterprise and cross-functional initiatives, ensuring security outcomes are consistently achieved.

    + Own and evolve the cloud security tools, platforms, and services portfolio to maximize effectiveness and return on investment.

    + Oversee cloud incident response and forensics capabilities, leveraging native cloud telemetry and SIEM integrations to enable rapid detection, investigation, and recovery.

    + Deliver thought leadership through executive briefings, architecture reviews, and security workshops, influencing stakeholders and driving secure cloud transformation.

    5. Other duties, as assigned by the jobholder’s supervisor, may also be required.

    Minimum Qualifications:

    + Bachelor's degree in computer science, information systems, or information technology, or equivalent work experience.

    + Minimum 12 years of IT Security experience, with 5 years focused on AWS architecture

    + AWS Solutions Architect – Associate Certification

    + AWS Security Specialty

    + CISSP Certification

    + Deep expertise in AWS-native and third-party security tools

    + Strong understanding of cloud governance, infrastructure as code (IaC), encryption, networking, and identity management.

    + Strone experience with Snowflake and S/4HANA

    + Hands-on scripting and automation (Python, Terraform)

    + Strong experience with Splunk

    + Experience with multi-cloud environments (AWS, Azure, M635)

    + Strong writing and communication skills across technical and executive audiences

    + Experience with leading and team management

    + Ability to multi-task, work independently and/or within a team, pay attention to detail and meet deadlines.

    + Utilize sound judgement, business acumen and problem-solving skills and ability to work in fast-paced, high-volume, team environment.

    + Ability to work nights, weekends and holidays

    Preferred Qualifications:

    + AWS Solutions Architect – Professional Certification

    + CCSP Certification

    + Master’s degree

    Physical Requirements:

    + While performing the duties of this job, the employee is required to remain in a stationary position at times; communicate, and operate a computer and telephone.

    Competencies:

    + May help coordinate the work of junior members of the team.

    + Resolves issues which are often varied and non-routine. Undertakes analysis and investigation to solve issues.

     

    _This job description is only a summary of the typical functions of this position, not an exhaustive or comprehensive list of all possible job responsibilities, tasks and duties. Responsibilities, tasks, and duties of individual jobholders may vary from the above description._

     

    _Salary and Benefit Statement:_

     

    Any offered salary is determined based on internal equity, internal salary ranges, market data/ranges, applicant’s skills and prior relevant experience.

     

    + Salary/Rate Range: $175,000.00 - $200,000.00

    + This position is eligible to participate in a bonus program. Metrics and level of participation are determined annually.

    + This position is eligible for health care benefits, life insurance, time off benefits and participation in the Company’s 401(k) plan

     

    -

     

    Breakthru Beverage Group is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information and other legally protected characteristics. The EEO is the Law poster is available here (https://www.eeoc.gov/sites/default/files/2023-06/22-088\_EEOC\_KnowYourRights6.12ScreenRdr.pdf) . If you need a reasonable accommodation because of a disability for any part of the employment process, please call (708) 298-3536 and let us know the nature of your request and your contact information.