Cloud Security Architect, Lead

The Opportunity:

As a cloud security architect, you will assist the development of cloud and SaaS accreditation frameworks, policies, and security requirements, while also supporting assessment and continuous monitoring activities across complex cloud and SaaS environments. You will help define cloud security requirements, develop accreditation guidance, and establish baseline controls and overlays. You will work with stakeholders to translate policy into operational processes, define assessment methodologies, and guide systems through accreditation and authorization. You will also support architecture review, control assessment, and continuous monitoring strategy.

Your expertise will be critical in shaping a scalable cloud and SaaS accreditation program, including policy development, control baselines, assessment processes, and governance structures for high-assurance cloud environments.

Join us. The world can’t wait.

You Have:

• 8+ years of experience in cloud security, cybersecurity, or IT security
• Experience assisting with developing security policies, standards, or accreditation frameworks
• Experience developing control baselines, overlays, or security requirements
• Experience with frameworks such as NIST 800-53, ISO 27001, or CSA STAR
• Experience assessing enterprise cloud platforms such as AWS, Azure, or Oracle Cloud
• Experience reviewing architecture diagrams, system boundaries, and data flows
• Experience working with government or defense clients
• Knowledge of cloud security domains, including IAM, logging, encryption, and network security
• Ability to work in Singapore without sponsorship
• Bachelor’s degree

Nice If You Have:

• Experience writing security requirement guidelines (SRG) or equivalent
• Experience defining security control baselines and overlays
• Experience developing assessment methodologies and accreditation workflows
• Experience supporting continuous monitoring (Con Mon) strategy and execution
• Experience as a 3PAO assessor or independent assessor
• Experience with FedRAMP, DoD SRG, or government cloud accreditation models
• Experience reviewing SSPs, control narratives, and accreditation packages
• Experience working with CSPs such as AWS, Azure, Oracle, and GCP
• Possession of strong client-facing and stakeholder engagement skills
• Security Certification such as CISSP, CCSP, CCSK, CISA, or similar Certification

Identity Statement

As part of the hiring process, we will ask you to complete an identity verification process that leverages advanced biometrics and artificial intelligence to ensure authenticity and protect against identity fraud. You are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.

Candidate AI Usage Policy

AI is a part of our daily work at Booz Allen, and we are committed to the responsible and ethical use of AI tools. However, we want to ensure a fair candidate process based on your own skills and knowledge. As part of this commitment, the use of artificial intelligence (AI) or other tools to assist with responses during interviews (whether in-person or virtual) is prohibited unless permission is explicitly provided.

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.