Principal Cloud Security Architect

Job Summary

Gibson Dunn is a leading global law firm, advising clients on significant transactions and disputes. Our exceptional teams craft and deploy creative legal strategies that are meticulously tailored to every matter, however complex or high-stakes. The firm’s work is distinguished by a unique combination of precision and vision.

Based in any U.S. Office, the Principal Cloud Security Architect plays a critical role in the InfoSec team, leading the design, implementation, and governance of cloud security architecture across the firm’s hybrid infrastructure. This position ensures compliance with Information Security and IS policies while aligning with industry best practices for cloud security.

This role reports to the Senior Director Information Security Engineering and collaborates closely with the IT Architect, Cloud Administrators, and senior leadership on cloud operations. The Principal Cloud Security Architect will interface with technical teams, legal and compliance stakeholders, external auditors, and cloud service providers.

Responsibilities include:

• Architecting and supporting implementation of complex security controls across multi-cloud environments (e.g., Azure, AWS, GCP).
• Define and implement Zero Trust principles, cloud security standards, and reference architectures.
• Lead the design of secure landing zones, guardrails, and multi-cloud governance frameworks.
• Partner with engineering teams to embed security into application and infrastructure designs.
• Architect identity and access strategies across various cloud solutions
• Design secure network architectures including segmentation, private connectivity, and cloud-native firewalls.
• Conduct threat modeling, architecture reviews, and risk assessments of cloud-based infrastructure, applications, and services.
• Drive continuous improvement of cloud security posture through automation and monitoring.
• Reviewing cloud architecture and configurations to validate security posture and data protection.
• Leading threat modeling, risk assessments, and vulnerability management for cloud-native services.
• Administering cloud security testing, including penetration testing, misconfiguration audits, and incident simulations.
• Collaborating with DevOps and engineering teams to embed security into CI/CD pipelines and cloud deployments.
• Automate cloud security controls using Terraform, Python, PowerShell, and policy-as-code frameworks.
• Driving remediation of security findings and ensuring alignment with regulatory and compliance frameworks.
• Leading security reviews of cloud perimeter defenses (e.g., WAFs, cloud-native firewalls, DDoS protection).
• Managing cloud security controls and endpoint protection platforms (e.g., Defender for Cloud, CrowdStrike, Cloudflare, Proofpoint TAP).
• Providing technical guidance and mentorship to engineers and cross-functional teams.
• Developing and maintaining cloud security policies, playbooks, and documentation.

Qualifications

• Deep expertise of cybersecurity, cloud architecture (Azure, AWS, GCP), and associated security services.
• Experience with regulatory frameworks and standards (SOC2, GLBA, HIPAA, GDPR).
• Knowledgeable in DevSecOps practices and infrastructure-as-code tools
• Firsthand experience with Terraform, Bicep, CI/CD pipelines, and cloud security automation.
• Effective communication skills to engage technical and non-technical audiences.
• Proven ability to lead complex security initiatives and drive cross-team collaboration.
• Commitment to continuous learning and staying current with emerging cloud threats and technologies.

Experience

• Bachelor’s degree in Computer Science, Information Systems, or related field.
• Cloud architecture and security certifications (e.g., CCSP, GIAC GCSA, CISSP, Azure-AZ-305, Azure-SC-100, GCP-PCA, GCP-PCSE, AWS-SA-Pro, AWS-Sec-Spec).
• Minimum 15 years of experience in information security, with 10+ years focused on cloud security and architecture.

 

 

Gibson Dunn will consider for employment qualified Applicants with Criminal Histories in a manner consistent with the requirements of local law.

Compensation & Benefits:

The annual compensation range for this position is $190-230k. The salary offered within this range will depend upon qualifications and other operational considerations.

Benefits offered for this position include health care; retirement benefits; paid days off, including sick time, and vacation time; parental leave; basic life insurance; Flexible Spending Accounts; as well as discretionary, performance-based bonuses.

This application window will close Thursday, April 16th, 2026.

Locations:

Century City, Los Angeles, Dallas, Houston, Denver, New York, Orange County, Palo Alto, San Francisco, Washington, D.C.

EEO Statement

Gibson Dunn & Crutcher LLP is committed to the principles of equal employment opportunity for all partners, employees and applicants and, in accordance with the applicable federal and state laws, does not discriminate on the basis of sex, race, creed, color, religion, matriculation or political affiliation, national origin, alienage or citizenship status, ancestry, age, marital status or partnership status, family responsibilities, disability, medical condition, personal appearance, genetic information, predisposing genetic characteristics, sexual orientation, military status, status as a victim of domestic violence, stalking and sex offenses, arrest or conviction record, or on any other basis prohibited by law.