Cloud Security & Compliance Architect - Remote

CLOUD SECURITY & COMPLIANCE ARCHITECT (Mexico, Remote)

At Capgemini Engineering, the world leader in engineering services, we bring together a global team of engineers, scientists, and architects to help the world’s most innovative companies unleash their potential. From autonomous cars to life-saving robots, our digital and software technology experts think outside the box as they provide unique R&D and engineering services across all industries. Join us for a career full of opportunities. Where you can make a difference. Where no two days are the same.

YOUR ROLE

We are seeking a Principal AWS Cloud Security and Compliance Engineer with extensive hands-on experience in securing cloud environments at scale. This role is ideal for a seasoned security expert who thrives on designing, implementing, and managing cloud security controls, ensuring compliance with industry standards, and mitigating security risks across AWS infrastructure. The ideal candidate will bring a deep understanding of AWS security services, regulatory compliance frameworks, and cloud-native security best practices.
 

• Security Architecture & Design: Lead the design and implementation of secure AWS architectures, ensuring compliance with security frameworks and industry best practices.
• Governance & Compliance: Develop, enforce, and monitor compliance with SOC 2, ISO 27001, NIST, CIS, FedRAMP, PCI-DSS, HIPAA, and other security standards.
• Cloud Security Operations: Implement and manage AWS security services such as AWS IAM, AWS KMS, AWS GuardDuty, AWS Security Hub, AWS Macie, AWS Config, AWS WAF, and AWS Shield.
• Threat Detection & Incident Response: Develop SIEM integrations, monitor security logs, investigate incidents, and lead incident response efforts to mitigate threats.
• Automation & Infrastructure Security: Implement Infrastructure as Code (IaC) security policies using Terraform, AWS CloudFormation, or AWS CDK. Automate security monitoring and compliance reporting.
• Identity & Access Management (IAM): Define and enforce least privilege access controls, manage AWS Organizations and Service Control Policies (SCPs).
• DevSecOps & CI/CD Security: Embed security into the CI/CD pipeline, ensuring secure deployment practices across cloud workloads.
• Security Risk Assessments: Perform cloud security risk assessments, threat modeling, and penetration testing to identify and mitigate vulnerabilities.
• Security Awareness & Training: Mentor engineering teams on secure coding, cloud security best practices, and AWS security controls.
• Stakeholder Collaboration: Work with engineering, compliance, and business teams to align security strategies with organizational goals.

YOUR PROFILE
 

• Good conversational English (C1, C2)
• Bachelor’s degree in computer science or related field
• 10+ years of hands-on experience in cybersecurity, cloud security, and compliance
• At least 5 years in AWS security.
• Expert-level knowledge of AWS security services, architecture, and best practices.
• Deep understanding of compliance frameworks (e.g., SOC 2, ISO 27001, NIST, FedRAMP, PCI-DSS, HIPAA).
• Experience with AWS IAM, VPC security, AWS WAF, KMS, CloudTrail, Config, Security Hub, Macie, and GuardDuty.
• Proficiency in SIEM solutions, security automation, and cloud-native security tools.
• Hands-on experience with IaC security (Terraform, CloudFormation), container security (EKS, ECS), and serverless security.
• Strong background in DevSecOps, securing CI/CD pipelines, and integrating security into cloud-native development.
• Expertise in identity & access management (IAM), RBAC, MFA, and Zero Trust security models.
• Experience with incident response, threat detection, and forensic analysis in AWS.
• Proficient in scripting and automation (Python, Bash, or PowerShell).
• Strong communication skills with the ability to influence technical and non-technical stakeholders.

Preferred Qualifications

• AWS Certified Security – Specialty or AWS Certified Solutions Architect – Professional certification.
• Experience in multi-cloud security (AWS, Azure, GCP) is a plus.
• Familiarity with security risk management frameworks (e.g., MITRE ATT&CK, OWASP, CIS Benchmarks).
• Knowledge of AI/ML security, API security, and data protection strategies.

WHAT YOU’LL LOVE ABOUT WORKING HERE?
 

• At Capgemini Engineering, we encourage flexibility in how, when, and where people get their work done, allowing a better work-life balance, and greater empowerment. They partner with their managers to find an arrangement that works best for their role and their circumstances.

• If you join us, you’ll find we’ll support your career at every stage. We’ll connect you with diverse, worldwide networks, and help you take your skills to the next level.

• At Capgemini Engineering, Team Spirit is very strong, and People feel supported. I’m not just part of a team – I’m part of a community. A friendly, can-do group of people for whom collective effort comes naturally.

ABOUT CAPGEMINI

Capgemini is a global leader in partnering with companies to transform and manage their business by harnessing the power of technology. The Group is guided everyday by its purpose of unleashing human energy through technology for an inclusive and sustainable future. It is a responsible and diverse organization of over 300,000 team members in nearly 50 countries. With its strong 50-year heritage and deep industry expertise, Capgemini is trusted by its clients to address the entire breadth of their business needs, from strategy and design to operations, fueled by the fast evolving and innovative world of cloud, data, AI, connectivity, software, digital engineering, and platforms.

Get the future you want!

At Capgemini Mexico, we aim to attract the best talent and are committed to creating a diverse and inclusive work environment, so there is no discrimination based on race, sex, sexual orientation, gender identity or expression, or any other characteristic of a person. All applications welcome and will be considered based on merit against the job and/or experience for the position.