Cloud Security Architect bei The Legal Aid Society

The Legal Aid Society, the nation’s oldest and largest nonprofit law firm serving New York City, exists for one simple yet powerful reason: to ensure that no one is denied the right to equal justice because of poverty. For over 140 years, we have protected, defended, and advocated for those who have struggled in silence for far too long – working on the front lines and behind the scenes to offer our clients the exceptional legal services they deserve. Through our Civil, Criminal Defense, and Juvenile Rights Practices, we offer an unmatched depth and breadth of legal expertise to vulnerable New Yorkers in over 300,000 legal matters each and every year. Every day, in every borough.  

The 2,200+ members of our staff who directly represent clients, advocate and litigate for systemic reform, and provide the administrative infrastructure for our organization are key to our success and ability to meet our mission. 

Legal Aid seeks a highly skilled and experienced Cloud Security Architect to join our dynamic team. The Cloud Security Architect will play a critical role in ensuring the security of our digital infrastructure, applications, and data assets. This individual will lead efforts to design, implement, and maintain robust, primarily cloud-based security solutions that protect our organization from cyber threats and vulnerabilities. The Cloud Security Architect is a member of the Network Infrastructure team within the Information Technology (IT) unit. A security architect with deep network infrastructure roots, you will be responsible for the design, build, testing, and implementation of security systems across our entire network, on-premise in 23 locations and in the cloud. Responsibilities include reviewing our current security measures, recommending enhancements, identifying areas of weakness, and responding promptly to security incidents. You will also be responsible for conducting regular system tests and ensuring the continuous health of the network's security.

ESSENTIAL DUTIES/RESPONSIBILITIES

• Cloud Security Strategy: Develop and implement a comprehensive cloud security strategy, aligned with industry best practices and compliance requirements
• Architecture Design: Plan, Research and Design secure cloud architecture solutions for our LAN and Azure environments, considering factors such as identity and access management, network security, data protection, and disaster recovery
• Security Assessment: Conduct risk assessments and security audits of cloud environments to identify vulnerabilities and recommend remediation strategies. Research and design public key infrastructures, certification authorities, and digital signatures, and ensure all personnel have role and need based data access
• Security Policies: Develop and enforce cloud security policies, standards, and procedures to ensure compliance with regulatory requirements and industry standards. Review and approve the installation requirements for LANs, WANs, VPNs, routers, firewalls, and related network devices
• Incident Response: Develop and maintain an incident response plan for cloud security breaches and assist in incident investigations and resolution. Respond quickly and effectively to all security incidents and provide post-event analyses
• Security Monitoring: Implement cloud security monitoring tools and techniques to detect and respond to security threats in real-time. Test security systems and update and upgrade them
• Security Awareness: Promote security awareness and best practices, remain up to date with the latest security systems, standards, authentication protocols, and products
• Training: Be the lead Cybersecurity Trainer for team members and end-users
• Vendor Evaluation: Evaluate and select security tools and technologies for cloud security, including third-party security vendors and services
• Documentation: Create and maintain comprehensive documentation related to cloud security configurations, policies, and procedures. Establish disaster recovery procedures and conduct security breach drills
• Collaboration: Collaborate with cross-functional teams, including DevOps, IT, and compliance, to integrate security into the cloud development lifecycle