Principal, Cloud Security Architect (Director Level), Global Cyber Security, RBC Brewin Dolphin[...] in London

The Principal Cloud Security Architect will lead the design, engineering, and delivery of cloud security solutions across RBC's Azure enterprise environment. This role owns end-to-end security architecture and hands-on implementation, drives enterprise-scale operationalisation of cloud security capabilities, embeds security into CI/CD pipelines and infrastructure-as-code, and partners with Regulatory, Compliance, and Audit functions to ensure controls meet regulatory frameworks and industry standards. The ideal candidate combines deep technical expertise with strategic leadership—equally comfortable whiteboarding architecture, writing the Terraform to implement it, and guiding teams through complex security transformations at scale.

What will you do?

• Lead efforts to secure Azure cloud platform at RBC Brewin Dolphin, serving as the primary security subject matter expert for Azure-native services, identity, networking, and data protection controls.
• Lead, execute, and deliver on Cloud Security strategy and initiatives with measurable outcomes.
• Build, innovate, and mature Cloud Security Capabilities at RBC Brewin Dolphin.
• Conduct threat modeling, security architecture assessments, and cloud service security reviews to ensure alignment with industry best practices and RBC's risk appetite.
• Architect and drive security strategy for Azure Kubernetes Service (AKS) and OpenShift Container Platform, including cluster hardening, admission control, runtime security, image assurance, network policy, secrets management, and workload identity.
• Define and implement security controls for Azure infrastructure supporting AI/ML workloads, including compute provisioning, networking, storage, identity, and platform services.
• Lead the enterprise deployment and operationalisation of Wiz CNAPP, including CSPM, CWPP, CIEM, DSPM, and container/Kubernetes security capabilities.
• Embed security into CI/CD pipelines and software supply chain through automated scanning, policy enforcement, IaC security validation, and shift-left developer tooling.
• Lead and build preventative and detective controls/measures according to RBC Brewin Dolphin's cloud control objectives.
• Lead and build automated reporting and monitoring solutions to provide feedback to developers and help them shift left and recognise security gaps early.
• Architect, engineer, and deploy cloud security solutions end-to-end—owning the full lifecycle from design through implementation, testing, and production delivery.
• Partner with Regulatory, Compliance, and Audit teams to ensure cloud security controls satisfy industry standards.
• Communicate and collaborate with application developers to remediate security vulnerabilities for their applications and/or resources.
• Work with cloud stakeholders to design, build, and validate Cloud Security controls.

What do you need to succeed?

• Demonstrable experience in Cyber Security, with a focus on cloud security architecture and engineering.
• Deep hands-on expertise with Microsoft Azure security.
• Strong knowledge and experience of cloud security frameworks and governance practices.
• Strong experience securing Kubernetes at scale with AKS and/or OpenShift Container Platform.
• Hands-on experience with Wiz CNAPP in a large enterprise environment.
• Experience securing CI/CD pipelines and infrastructure-as-code.
• Demonstrated ability to operate as both a security architect and hands-on practitioner.
• Ability to partner effectively with key stakeholders on complex programs.

Nice-to-have

• Experience securing Azure infrastructure for AI/ML workloads.
• Recognisable security-related industry certifications.
• Azure security certifications.
• Kubernetes certifications or Wiz certifications.

What is in it for you?

• A comprehensive Total Rewards Program including bonuses, flexible benefits and competitive compensation.
• Leaders who support your development through coaching and managing opportunities.
• Opportunities to work with the best in the field.
• Ability to make a difference and lasting impact.
• Work in a dynamic, collaborative, progressive, and high-performing team.
• A world-class training program in financial services.