Solution Architect
Diverse Lynx, Alpharetta, GA, United States
ROLE_DESCRIPTION -
The Solution Architect is responsible for designing, implementing, and overseeing cloud security and compliance solutions for AWS environments supporting E-Trade operations. This role ensures alignment with Brokerage's security policies, industry standards, and regulatory requirements, while driving technical excellence and operational efficiency.
Key Responsibilities
Assessment & Roadmap Development: Lead discovery and assessment of current AWS accounts, IAM roles, SCPs, and Terraform modules. Identify security gaps and develop a phased implementation roadmap in collaboration with stakeholders.
Security Policy & Control Design: Design and validate Service Control Policies (SCPs) to enforce least privilege, root user lockdown, and IP whitelisting. Ensure policies are tested in non-production environments before rollout.
IAM Role Management: Audit and refactor IAM roles to eliminate over-permissioning, deprecate shared roles, and implement least-privilege, function-specific access with clear permission boundaries.
Break-Glass Access: Develop and document secure, auditable break-glass access procedures, including MFA enforcement, time-bound access, and approval workflows.
Infrastructure as Code (IaC): Review and update Terraform modules to ensure secure-by-default configurations, including encryption, tagging, and logging. Oversee peer reviews and validation in staging environments.
Testing & Validation: Lead functional and negative testing of IAM and SCP changes, ensuring compliance with security benchmarks and operational requirements.
Production Rollout & Documentation: Oversee deployment of validated controls and modules to production, monitor for anomalies, and ensure comprehensive documentation and knowledge transfer.
Required Skills & Experience
Cloud Security & Compliance: Deep expertise in AWS security controls, IAM, SCPs, and compliance frameworks relevant to financial services.
Solution Design: Proven ability to design scalable, secure architectures and translate business requirements into technical solutions.
Technical Leadership: Experience leading cross-functional teams, conducting stakeholder workshops, and presenting architectural decisions to both technical and non-technical audiences.
DevOps & Automation: Hands-on experience with Terraform, CI/CD pipelines, and automation of cloud infrastructure.
Communication: Strong documentation, presentation, and stakeholder management skills.
Qualifications
Bachelor's or Master's degree in Computer Science, Engineering, or related field.
Relevant certifications (e.g., AWS Certified Solutions Architect, TOGAF, CISSP) are highly desirable.
10+ years of experience in IT, with at least 5 years in cloud architecture and security roles.
Skills: Digital : Python~Digital : Amazon Web Service(AWS) Cloud Computing~Digital: Terraform Experience Required: 8-10
Diverse Lynx LLC is an Equal Employment Opportunity employer. All qualified applicants will receive due consideration for employment without any discrimination. All applicants will be evaluated solely on the basis of their ability, competence and their proven capability to perform the functions outlined in the corresponding role. We promote and support a diverse workforce across all levels in the company.
The Solution Architect is responsible for designing, implementing, and overseeing cloud security and compliance solutions for AWS environments supporting E-Trade operations. This role ensures alignment with Brokerage's security policies, industry standards, and regulatory requirements, while driving technical excellence and operational efficiency.
Key Responsibilities
Assessment & Roadmap Development: Lead discovery and assessment of current AWS accounts, IAM roles, SCPs, and Terraform modules. Identify security gaps and develop a phased implementation roadmap in collaboration with stakeholders.
Security Policy & Control Design: Design and validate Service Control Policies (SCPs) to enforce least privilege, root user lockdown, and IP whitelisting. Ensure policies are tested in non-production environments before rollout.
IAM Role Management: Audit and refactor IAM roles to eliminate over-permissioning, deprecate shared roles, and implement least-privilege, function-specific access with clear permission boundaries.
Break-Glass Access: Develop and document secure, auditable break-glass access procedures, including MFA enforcement, time-bound access, and approval workflows.
Infrastructure as Code (IaC): Review and update Terraform modules to ensure secure-by-default configurations, including encryption, tagging, and logging. Oversee peer reviews and validation in staging environments.
Testing & Validation: Lead functional and negative testing of IAM and SCP changes, ensuring compliance with security benchmarks and operational requirements.
Production Rollout & Documentation: Oversee deployment of validated controls and modules to production, monitor for anomalies, and ensure comprehensive documentation and knowledge transfer.
Required Skills & Experience
Cloud Security & Compliance: Deep expertise in AWS security controls, IAM, SCPs, and compliance frameworks relevant to financial services.
Solution Design: Proven ability to design scalable, secure architectures and translate business requirements into technical solutions.
Technical Leadership: Experience leading cross-functional teams, conducting stakeholder workshops, and presenting architectural decisions to both technical and non-technical audiences.
DevOps & Automation: Hands-on experience with Terraform, CI/CD pipelines, and automation of cloud infrastructure.
Communication: Strong documentation, presentation, and stakeholder management skills.
Qualifications
Bachelor's or Master's degree in Computer Science, Engineering, or related field.
Relevant certifications (e.g., AWS Certified Solutions Architect, TOGAF, CISSP) are highly desirable.
10+ years of experience in IT, with at least 5 years in cloud architecture and security roles.
Skills: Digital : Python~Digital : Amazon Web Service(AWS) Cloud Computing~Digital: Terraform Experience Required: 8-10
Diverse Lynx LLC is an Equal Employment Opportunity employer. All qualified applicants will receive due consideration for employment without any discrimination. All applicants will be evaluated solely on the basis of their ability, competence and their proven capability to perform the functions outlined in the corresponding role. We promote and support a diverse workforce across all levels in the company.