Senior Cloud & Zero-Trust Security Architect

About AspenView Technology Partners

At AspenView, we are passionate about transforming the way organizations approach technology. We specialize in creating high-performing, nearshore IT teams to help North American clients innovate faster and more efficiently. As we continue to grow, we’re looking for exceptional people to join our team and help drive impactful change across industries.

Why Join AspenView?

At AspenView, we’re more than a nearshore IT partner—we’re a people-first, purpose-driven company that believes great culture drives great outcomes. We’re passionate about connecting talent and technology to deliver measurable value for clients—and meaningful career paths for our people.

• Competitive base
• Comprehensive benefits and wellness support
• Flexible work model: hybrid, remote, or in-office
• Real growth opportunities and leadership visibility
• Inclusive, respectful culture that blends U.S. innovation with Colombian heart
• A company that listens, invests in you, and celebrates wins together

Role Overview: Senior Cloud & Zero-Trust Security Architect

The Senior Cloud & Zero-Trust Security Architect will be the primary technical authority for our Client’s cloud infrastructure and identity ecosystem. This is a high-level engineering and design role focused on eliminating implicit trust and securing workloads across a multi-cloud environment (AWS, Azure, and GCP). You will architect the future of secure access, moving the organization toward a Zero Trust architecture while ensuring that every cloud deployment—from Kubernetes clusters to Serverless functions—is hardened, compliant, and automated through code.

What You Will Do

Zero Trust & Identity Architecture

• Design and implement Zero Trust models and micro-segmentation policies to protect critical data and applications.
• Lead Identity Federation and Conditional Access strategies using platforms like Azure AD (Entra ID), Okta, or Ping Identity.
• Enforce "Least Privilege" access across all cloud workloads and administrative interfaces.

Multi-Cloud & Container Security

• Securely configure and audit workloads across AWS, Azure, and GCP, ensuring alignment with industry best practices (CIS Benchmarks).
• Implement and manage Cloud Native Security tools, including CSPM, CWPP, and CNAPP platforms.
• Architect security for Kubernetes (EKS/AKS/GKE) and Service Meshes like Istio, focusing on pod security and network policies.

DevSecOps & Infrastructure as Code (IaC)

• Harden IaC deployments (Terraform, Ansible, CloudFormation) to ensure security is embedded at the provisioning stage.
• Secure CI/CD pipelines (GitHub Actions, GitLab, Jenkins) by integrating automated scanning, secret management, and compliance checks.
• Advocate for "Security as Code" to automate the remediation of cloud misconfigurations.

Tools & Technologies

• Cloud Platforms: Deep expertise in AWS, Azure, and Google Cloud Platform.
• Identity: Azure AD/Entra ID, Okta, Ping, and OAuth/SAML protocols.
• Security Tooling: Prisma Cloud, Wiz, Orca, or native tools like AWS Security Hub and Azure Defender.
• Orchestration: Kubernetes (K8s), Docker, and Istio.
• Automation: Terraform, Ansible, Python, and Git.

What You Bring

• 5+ years in Cybersecurity, specifically focused on Cloud Security Architecture.
• Design Authority: Proven experience rolling out Zero Trust frameworks in large-scale, distributed organizations.
• Automation Mastery: Strong background in DevSecOps and the ability to treat security as an engineering discipline.
• Compliance Knowledge: Familiarity with SOC2, PCI, and HIPAA within cloud environments.
• Strategic Mindset: Ability to translate complex business needs into secure technical architectures.

Equal Opportunity Employer

AspenView is proud to be an equal opportunity employer. We believe in creating an environment where all employees feel welcome, valued, and empowered to succeed. We celebrate diversity and strive to build a culture of inclusion where all individuals, regardless of their race, color, gender, gender identity or expression, sexual orientation, disability, age, or any other characteristic, can thrive. We encourage applicants from all walks of life to join our team and make a lasting impact.

Key skills/competency

Zero Trust Architecture, Cloud Security, Identity and Access Management (IAM), Multi-Cloud Security, DevSecOps, Infrastructure as Code (IaC), Kubernetes Security, Network Security, Compliance, Cybersecurity Architecture.