EY Cloud Security Senior Consultant Architect 

Poland, Masovian Voivodeship, Warsaw 

86838021

Your scope of duties:

• Design secure cloud architectures (AWS/Azure/GCP), including Landing Zones, guardrails, and reference security patterns;
• Define and maintain cloud security policies, standards, and governance frameworks for IaaS/PaaS/SaaS;
• Architect identity and access management (IAM, SSO, MFA), ensuring least privilege and role-based access;
• Develop data protection strategies: encryption, key management, data classification, and compliance (GDPR, DORA);
• Integrate cloud-native monitoring, incident response, and security automation (SIEM/SOAR, CSPM);
• Advise stakeholders, conduct architecture reviews, and support audits and compliance assessments;
• EY.AI - in this role, your capabilities are augmented by artificial intelligence. With AI-powered solutions your analyses, insights and innovative ideas will reach a higher level. Starting with a series of training sessions, you will then use EYQ - your virtual assistant, along with other unique tools often available exclusively at EY. We continuously invest in innovation to provide you with a work environment where you can focus on the most interesting aspects of your job and create the best solutions for clients.

Our requirements:

• 3-5 years of relevant experience in cloud engineering or a related field;

• Proficiency in designing and implementing cloud infrastructure;
• Experience at an architect level with Google Cloud, Azure, or AWS platforms, particularly in landing zone design (preferred);
• Solid understanding of cloud services, including PaaS, IaaS, and SaaS;
• Background in cloud security posture management;
• Familiarity with cloud vulnerability management practices;
• Strong grasp of Cloud SOC operations, including log analysis, detection building, and threat mitigation strategies;
• Knowledge of cloud security best practices;
• Experience with Kubernetes solutions such as Anthos, AKS, EKS, etc.;
• Expertise in Azure, GCP, or AWS networking, including network design and firewall configurations;
• Capability to configure and implement cloud security systems;
• Experience in migrating workloads from on-premises to the cloud;
• Familiarity with DevSecOps methodologies;
• Proven ability to conduct regular security assessments and audits to identify vulnerabilities and create remediation plans;
• Hands-on experience with GCP, Azure, or AWS security;
• Fluency in Polish and English (minimum C1 level).

We will also appriciate:

• Strong presentation and communication skills;
• A collaborative spirit with excellent interpersonal abilities;
• Willingness to travel for client visits, team gatherings, and strategic planning sessions;
• Experience with programming languages;
• Relevant certifications in Microsoft Azure, GCP, or AWS Cloud.

What we offer:

• EY Badges - global certification of your competencies and the opportunity to earn an MBA title from the prestigious Hult University;
• Career Counselor - professional, one-to-one guidance on career building and development;
• Innovate EY - unique programmes where you can create your own start-up using our know-how and funding;
• Psycho-educational platform - a package of free consultations with specialists in the broad field of mental health and personal development and access to educational activities;
• A convenient hybrid working model;
• Benefit programme offering private healthcare with additional preventive examinations, life insurance, tickets, team sports, language learning platform, sports cards and much more (available online and offline).

Recruitment stages:

1. Apply. If you are doing it for the first time, create a profile and add a resume.

2. Talk. Recruiters and recruiters and people from your future team are waiting.