CLOUD SECURITY ASSURANCE TEAM LEAD

LITIT, a joint venture between NTT DATA and Reiz Tech, is a company with deep-rooted industry know-how, dedicated to innovation within the IT sector. Its primary focus is delivering high-quality solutions in the DACH region. With a commitment to excellence, LITIT combines the best of German precision, Japanese work ethics, and Lithuanian talent to provide unparalleled IT service and support to its clients.

We are seeking a Cloud Security Assurance Team Lead to lead comprehensive cloud security assessments and architecture reviews across AWS, Azure, and GCP. In this role, you will validate security implementations against industry best practices, provide expert guidance to strengthen cloud security posture, and collaborate with key stakeholders to support secure, enterprise-wide cloud transformation initiatives.

• Lead security architecture and assessment reviews for cloud-native and hybrid solutions

• Validate solution designs against industry frameworks such as National Institute of Standards and Technology (NIST CSF), Center for Internet Security (CIS Benchmarks), and Cloud Security Alliance (CSA CCM)

• Conduct cloud penetration testing following CREST and CHECK methodologies

• Validate Infrastructure as Code (IaC) security controls and CI/CD pipeline security

• Lead compliance assessments including ISO 27017, ISO 27018, SOC 2, GDPR, NIS2, and DORA

• Assess cloud governance frameworks and Cloud Security Posture Management (CSPM) implementations

• Coordinate cloud security audits with internal and external stakeholders

• Assess cloud IAM architectures and privileged access management controls

• Validate encryption standards, key management processes, and data residency controls

• Review SSO, MFA, and least-privilege implementations

• Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or a related field

• 6+ years of experience in information security with a strong focus on cloud security

• 3+ years of hands-on experience conducting cloud security assessments and architecture reviews

• Proven multi-cloud experience across production environments, including Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP)

• CCSP (Certified Cloud Security Professional) or CCSK (Certificate of Cloud Security Knowledge) certification - preferred but not mandatory

• Strong senior-level stakeholder communication and executive presentation skills

• Demonstrated ability to develop and drive strategic cloud security roadmaps

• Proven cross-functional collaboration experience with DevOps and Platform Engineering teams

• Strong analytical mindset with a risk-based decision-making approach