Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead cloud security assessments and validate implementations across AWS, Azure, and GCP.
- Company: Join NTT DATA, a global leader in security services with an inclusive culture.
- Benefits: Flexible working options, competitive salary, and continuous learning opportunities.
- Why this job: Make a real impact in cloud security while working with cutting-edge technologies.
- Qualifications: 6+ years in information security with cloud security expertise required.
- Other info: Diverse and innovative environment with excellent career growth potential.
The predicted salary is between 36000 - 60000 £ per year.
NTT DATA is one of the world's largest global security service providers, partnering with some of the most recognized security technology brands. We are looking for passionate, curious, and motivated individuals to join our team. Using your advanced expertise in cloud security architecture, assurance methodologies, and multi-cloud environments, you will lead cloud security assessments, validate cloud control implementations, and provide authoritative guidance on cloud security posture while supporting enterprise cloud transformation and modernization initiatives across AWS, Azure, and GCP platforms. This offers hybrid flexible working options. Please note, you will need to be eligible for SC clearance.
KEY RESPONSIBILITIES
- Cloud Security Architecture Assurance
- Lead comprehensive security architecture reviews for cloud-native and hybrid cloud solutions
- Validate cloud security designs against industry frameworks including NIST CSF, CIS Benchmarks, and CSA CCM
- Assess cloud architecture patterns for IaaS, PaaS, SaaS, and containerized workloads
- Provide authoritative guidance on secure multi-cloud and hybrid cloud architectures
- Evaluate cloud migration security strategies and transformation roadmaps
- Interface with cloud architects and enterprise architecture teams on security requirements
- Cloud Security Assessment and Testing
- Design and execute cloud security assessments across AWS, Azure, and GCP environments
- Conduct cloud configuration reviews and security posture assessments
- Lead cloud penetration testing engagements following CREST and CHECK methodologies
- Perform container and Kubernetes security assessments
- Assess serverless and microservices security implementations
- Validate Infrastructure as Code (IaC) security controls and deployment pipelines
- Cloud Compliance and Governance
- Lead cloud compliance assessments against ISO 27017, ISO 27018, and SOC 2 requirements
- Conduct cloud security audits for regulatory frameworks including GDPR, NIS2, and DORA
- Assess cloud service provider security controls and shared responsibility models
- Validate cloud governance frameworks and policy enforcement mechanisms
- Review cloud security posture management (CSPM) implementations
- Coordinate cloud security audits with internal and external audit teams
- Cloud Identity and Access Management Assurance
- Assess cloud IAM architectures including Azure AD, AWS IAM, and GCP IAM
- Validate privileged access management and just-in-time access controls
- Review federated identity, SSO, and multi-factor authentication implementations
- Assess service account security and workload identity configurations
- Evaluate cloud entitlement management and least privilege implementations
- Validate identity governance and administration controls
- Cloud Data Protection and Encryption Assurance
- Assess cloud data protection strategies including encryption at rest and in transit
- Validate cloud key management service implementations and BYOK configurations
- Review data residency, sovereignty, and cross-border data transfer controls
- Assess cloud backup, disaster recovery, and business continuity arrangements
- Validate data classification and cloud DLP implementations
- Review cloud database security and secrets management solutions
- DevSecOps and Cloud Pipeline Security
- Assess security integration in cloud CI/CD pipelines and DevOps workflows
- Validate shift-left security practices and automated security testing
- Review Infrastructure as Code security scanning and policy as code implementations
- Assess container image security and registry vulnerability management
- Evaluate cloud workload protection platforms and runtime security controls
- Validate secure software supply chain practices for cloud deployments
REQUIRED SKILLS & COMPETENCIES
- Advanced Cloud Security Expertise
- Mastery of cloud security across AWS, Azure, and GCP platforms
- Expert knowledge of cloud security frameworks (CSA CCM, NIST SP 800-53, CIS Benchmarks)
- Advanced experience in cloud security architecture review and validation
- Deep understanding of cloud-native security services and CSPM tools
- Comprehensive knowledge of container security, Kubernetes, and serverless security
- Cloud Platform Technical Skills
- AWS Security: Security Hub, GuardDuty, IAM Access Analyzer, KMS, CloudTrail, Config
- GCP Security: Security Command Center, Cloud Armor, IAM, Cloud KMS, Logging
- IaC security: Terraform, CloudFormation, ARM templates, policy as code frameworks
- Assessment and Testing Methodologies
- Cloud security assessment frameworks and methodologies
- Cloud penetration testing tools and techniques (Pacu, ScoutSuite, Prowler, CloudMapper)
- Threat modeling for cloud architectures (STRIDE, PASTA)
- Security control validation and effectiveness testing
- Vulnerability assessment and remediation prioritization
- Professional Skills
- Senior-level communication and presentation capabilities to technical and business stakeholders
- Advanced facilitation skills for cloud security architecture reviews
- Strategic thinking and cloud security roadmap development
- Cross-functional collaboration with DevOps, Platform Engineering, and Cloud CoE teams
- Client consulting and advisory skills for cloud transformation programs
Certifications Required
- CISSP (Certified Information Systems Security Professional) or CCSP (Certified Cloud Security Professional) - Mandatory
- Cloud platform security certification: AWS Security Specialty, Azure Security Engineer, or GCP Professional Cloud Security Engineer - Required
- CREST CRT or CCT (Cloud/Infrastructure) or equivalent penetration testing certification - Required
- Kubernetes security certification (CKS, CKAD) - Preferred
- Eligible: UK SC security clearance
Education
- Bachelor's degree in Computer Science, Information Security, Cybersecurity, or related field
- Master's degree in relevant discipline preferred
- Advanced professional certifications in cloud security and assurance
Experience
- 6+ years of progressive experience in information security with focus on cloud security
- 3+ years conducting cloud security assessments and architecture reviews
- Proven track record delivering cloud security assurance engagements for enterprise clients
- Experience across multiple cloud platforms (AWS, Azure, GCP) in production environments
- Hands-on experience with cloud security tools, CSPM, and cloud penetration testing
Strategic Responsibilities
- Cloud security assessment program delivery and quality assurance
- Cloud security methodology development and continuous improvement
- Client advisory on cloud security transformation initiatives
Advanced Professional Requirements
- CISSP or CCSP demonstrating strategic cloud security leadership
- AWS Security Specialty, Azure Security Engineer, or GCP Professional Cloud Security Engineer for platform expertise
- CREST CRT/CCT for recognized penetration testing authority
- Continuous professional development in emerging cloud security technologies
Who we are
We are a business with a global reach that empowers local teams, and we undertake hugely exciting work that is genuinely changing the world. Our advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects. Our inclusive work environment prioritises mutual respect, accountability, and continuous learning for all our people. This approach fosters collaboration, well-being, growth, and agility, leading to a more diverse, innovative, and competitive organisation.
What we'll offer you
We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing. Our Learning and Development team ensure that there are continuous growth and development opportunities for our people. We also offer the opportunity to have flexible work options.
We are an equal opportunities employer. We believe in the fair treatment of all our employees and commit to promoting equity and diversity in our employment practices. We are also a proud Disability Confident Committed Employer - we are committed to creating a diverse and inclusive workforce.
Cloud Security Architect (security assessments) in London employer: NTT DATA
Contact Detail:
NTT DATA Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cloud Security Architect (security assessments) in London
✨Tip Number 1
Network like a pro! Reach out to folks in your industry on LinkedIn or at events. A friendly chat can lead to opportunities that aren’t even advertised yet.
✨Tip Number 2
Prepare for interviews by researching the company and its culture. Tailor your answers to show how your skills align with their needs, especially in cloud security.
✨Tip Number 3
Practice makes perfect! Do mock interviews with friends or use online platforms. The more comfortable you are, the better you'll perform when it counts.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets noticed. Plus, we love seeing passionate candidates like you!
We think you need these skills to ace Cloud Security Architect (security assessments) in London
Some tips for your application 🫡
Tailor Your Application: Make sure to customise your CV and cover letter to highlight your cloud security expertise. Use keywords from the job description to show that you understand what we're looking for.
Show Off Your Experience: Don’t just list your previous roles; explain how your experience aligns with the responsibilities of the Cloud Security Architect position. We want to see how you've led security assessments and validated cloud controls in real-world scenarios.
Be Clear and Concise: Keep your application straightforward and to the point. Use bullet points where possible to make it easy for us to read through your qualifications and achievements quickly.
Apply Through Our Website: We encourage you to submit your application directly through our website. This ensures that your application gets to the right people and helps us keep track of all applicants efficiently.
How to prepare for a job interview at NTT DATA
✨Know Your Cloud Security Frameworks
Make sure you’re well-versed in key cloud security frameworks like NIST CSF, CIS Benchmarks, and CSA CCM. Brush up on how these frameworks apply to AWS, Azure, and GCP environments, as you’ll likely be asked to discuss how you’ve implemented them in past roles.
✨Showcase Your Hands-On Experience
Prepare to share specific examples of your hands-on experience with cloud security tools and methodologies. Whether it’s conducting cloud assessments or leading penetration testing engagements, having concrete examples will demonstrate your expertise and problem-solving skills.
✨Understand the Shared Responsibility Model
Be ready to explain the shared responsibility model for cloud security. This is crucial for any role involving cloud architecture, so ensure you can articulate how security responsibilities are divided between the provider and the customer across different platforms.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your strategic thinking and decision-making skills. Think through potential cloud security challenges and how you would address them, especially in multi-cloud environments. This will show your ability to think critically under pressure.