Information Security Architect (Cloud)

TL;DR

Information Security Architect (Cloud): Leading the design and evolution of security architecture across cloud infrastructure and corporate systems with an accent on secure-by-design solutions, scalability, and operational sustainability. Focus on driving threat modeling, architectural risk assessments, and defining cloud security control expectations.

Location: Utah-based hybrid position, which will require some regular in-office days each week. Employment with hirify.global is contingent on passing both a background and credit check.

Company

hirify.global is a market leader building a people intelligence platform that transforms HR and empowers employees to do great work.

What you will do

• Lead the design and evolution of security architecture across cloud infrastructure, SaaS platforms, and corporate information systems.
• Own and maintain security architecture standards, reference architectures, and secure design patterns.
• Conduct and lead security architecture reviews, threat modeling, and architectural risk assessments for strategic initiatives.
• Define and validate cloud security control expectations, including IAM, network segmentation, encryption, and key management.
• Influence detection and response architecture in collaboration with SecOps to improve visibility and response effectiveness.
• Create clear and accessible architecture documentation and communicate security tradeoffs effectively.

Requirements

• Bachelor’s degree in Information Security, Computer Science, Information Systems, or equivalent professional experience.
• 6–7+ years of hands-on experience in information security, security engineering, or cloud security roles.
• Demonstrated experience leading security architecture or design decisions for production cloud and/or corporate environments.
• Strong working knowledge of at least one major cloud platform (AWS, Azure, or GCP), including IAM, networking, encryption, key management, and logging.
• Practical experience across corporate security domains such as identity and access management, endpoint security, and data protection.
• Ability to independently assess risk, define security control objectives, and translate them into clear architectural guidance.
• Excellent written and verbal communication skills, with the ability to influence technical and non-technical stakeholders.

Nice to have

• Experience supporting SOC 2, ISO 27001, and customer security assessments.
• Familiarity with infrastructure-as-code, CI/CD pipelines, and cloud-native architectures.
• Experience with SSO/IdP platforms, MDM/endpoint management tools, and modern SaaS security controls.
• Security certifications such as AWS Security Specialty, CCSK, SSCP, or CISSP.

Culture & Benefits

• Recognized as a company with a great culture by multiple organizations.
• Comprehensive health, life, and disability insurance.
• Generous leave policies, including 4 weeks of vacation, 12 company holidays, parental leave, and volunteer time off.
• 401k plans with up to 6% company match.
• $2000 Paid-Paid Vacation bonus.
• Employee Assistance Program (EAP) through Headspace.