OPT Cloud Security Architect Jobs
Cloud Security Architect jobs on OPT require employers willing to sponsor H-1B visas, since your work authorization window is limited to 12 months standard OPT or up to 36 months on STEM OPT extension. Most roles in this field qualify for STEM OPT because they fall under CIP codes tied to computer science or information security.
See All OPT Cloud Security Architect JobsOverview
Showing 5 of 8+ Cloud Security Architect jobs
Have you applied for this role?
Have you applied for this role?
Have you applied for this role?
Have you applied for this role?
Have you applied for this role?
See all Cloud Security Architect Jobs
Sign up for free to unlock all listings, filter by visa type, and get alerts for new Cloud Security Architect roles.
Get Access To All JobsWho We Are
Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our efforts, measuring cybersecurity risk, and designing and driving implementation of cybersecurity controls. The team has a global presence across the Americas, APAC, India, and EMEA.
Within Technology Risk, Advisory is the consultative and technology subject matter expertise arm, responsible for assessing new technology initiatives for risk, partnering with engineers to architect and design secure products and services, embedding implementation reviews as part of the SDLC and CI/CD pipeline via code analysis and penetration testing, and guiding technology innovation in terms of security and control across Goldman Sachs. The team plays a critical role in designing and assessing controls for our transition to building native public cloud applications.
Goldman Sachs has one of the most progressive Technology Risk teams in the industry and is continuing to push the development of risk in preference to security within technology and the business. Year-on-year success has led the team to work deeper into the organization and gain valuable insights into how technology needs to function, what its risk really is, and how this impacts the business.
Responsibilities
- Conduct comprehensive cloud security assessments, evaluating designs, configurations, and implementations across various cloud service providers (CSPs).
- Identify and analyze potential security risks, vulnerabilities, and misconfigurations within cloud environments and applications.
- Perform software architecture design reviews for cloud deployments.
- Develop secure architecture design patterns, particularly for cloud-native applications.
- Develop, evaluate, and document security measures, controls, and guardrails to protect data, applications, APIs, and infrastructure in the cloud.
- Collaborate with engineering and development teams to embed security best practices throughout the software development lifecycle (SDLC) and CI/CD pipelines for cloud-native applications.
- Provide technical advisory services on cloud security to internal stakeholders, ensuring alignment with firm-wide security policies and industry best practices.
- Develop and maintain scripts and automated solutions to streamline security processes, vulnerability identification, and compliance checks within cloud environments.
- Stay updated on emerging cloud security threats, technologies, and regulatory requirements.
- Contribute to incident response and remediation efforts related to cloud security events as required.
Qualifications
Basic Qualifications:
- Development / Scripting / Coding Skills: Demonstrated proficiency and hands-on experience in scripting and coding, particularly with languages such as Python, PowerShell, or Bash, for automation, data analysis, or security tooling.
- Baseline Security Knowledge: Fundamental understanding of cybersecurity principles, security controls, and common security domains (e.g., network security, identity and access management, data protection, vulnerability management).
- Cloud Fundamentals: A foundational grasp of cloud computing concepts and architectures, with basic familiarity and understanding of at least one major Cloud Service Provider (e.g., Amazon Web Services, Microsoft Azure, Google Cloud Platform, Oracle Cloud). Prior project experience in cloud and conceptual understanding is essential.
- Bachelor's degree in Computer Science, Information Security, or a related technical field, or equivalent practical experience.
- Strong analytical and problem-solving skills with an investigative mindset.
- Excellent written and verbal communication skills, with the ability to articulate technical concepts to both technical and non-technical audiences.
Preferred Qualifications:
- Translate high-level design use cases into production-ready cloud architectures, optimizing for performance, resilience, and cost-efficiency while maintaining a rigorous security posture.
- Prior experience in a security-focused role within financial services or other highly regulated industries.
- Familiarity with industry security frameworks and standards (e.g., NIST, ISO 27001, CIS Benchmarks, OWASP).
- Relevant security or cloud certifications (e.g., Security+, CySA+, AWS Certified Security – Specialty, Azure Security Engineer Associate, Google Cloud Professional Cloud Security Engineer).
We Offer Best-In-Class Benefits
Healthcare & Medical Insurance
We offer a wide range of health and welfare programs that vary depending on office location. These generally include medical, dental, short-term disability, long-term disability, life, accidental death, labor accident and business travel accident insurance.
Holiday & Vacation Policies
We offer competitive vacation policies based on employee level and office location. We promote time off from work to recharge by providing generous vacation entitlements and a minimum of three weeks expected vacation usage each year.
Financial Wellness & Retirement
We assist employees in saving and planning for retirement, offer financial support for higher education, and provide a number of benefits to help employees prepare for the unexpected. We offer live financial education and content on a variety of topics to address the spectrum of employees’ priorities.
Health Services
We offer a medical advocacy service for employees and family members facing critical health situations, and counseling and referral services through the Employee Assistance Program (EAP). We provide Global Medical, Security and Travel Assistance and a Workplace Ergonomics Program. We also offer state-of-the-art on-site health centers in certain offices.
Fitness
To encourage employees to live a healthy and active lifestyle, some of our offices feature on-site fitness centers. For eligible employees we typically reimburse fees paid for a fitness club membership or activity (up to a pre-approved amount).
Child Care & Family Care
We offer on-site child care centers that provide full-time and emergency back-up care, as well as mother and baby rooms and homework rooms. In every office, we provide advice and counseling services, expectant parent resources and transitional programs for parents returning from parental leave. Adoption, surrogacy, egg donation and egg retrieval stipends are also available.
Benefits at Goldman Sachs
Read more about the full suite of class-leading benefits our firm has to offer.
Opportunity Overview
CORPORATE TITLE
Associate
OFFICE LOCATION(S)
Dallas
JOB FUNCTION
Security Engineering
DIVISION
Engineering Division
Who We Are
Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our efforts, measuring cybersecurity risk, and designing and driving implementation of cybersecurity controls. The team has a global presence across the Americas, APAC, India, and EMEA.
Within Technology Risk, Advisory is the consultative and technology subject matter expertise arm, responsible for assessing new technology initiatives for risk, partnering with engineers to architect and design secure products and services, embedding implementation reviews as part of the SDLC and CI/CD pipeline via code analysis and penetration testing, and guiding technology innovation in terms of security and control across Goldman Sachs. The team plays a critical role in designing and assessing controls for our transition to building native public cloud applications.
Goldman Sachs has one of the most progressive Technology Risk teams in the industry and is continuing to push the development of risk in preference to security within technology and the business. Year-on-year success has led the team to work deeper into the organization and gain valuable insights into how technology needs to function, what its risk really is, and how this impacts the business.
Responsibilities
- Conduct comprehensive cloud security assessments, evaluating designs, configurations, and implementations across various cloud service providers (CSPs).
- Identify and analyze potential security risks, vulnerabilities, and misconfigurations within cloud environments and applications.
- Perform software architecture design reviews for cloud deployments.
- Develop secure architecture design patterns, particularly for cloud-native applications.
- Develop, evaluate, and document security measures, controls, and guardrails to protect data, applications, APIs, and infrastructure in the cloud.
- Collaborate with engineering and development teams to embed security best practices throughout the software development lifecycle (SDLC) and CI/CD pipelines for cloud-native applications.
- Provide technical advisory services on cloud security to internal stakeholders, ensuring alignment with firm-wide security policies and industry best practices.
- Develop and maintain scripts and automated solutions to streamline security processes, vulnerability identification, and compliance checks within cloud environments.
- Stay updated on emerging cloud security threats, technologies, and regulatory requirements.
- Contribute to incident response and remediation efforts related to cloud security events as required.
Qualifications
Basic Qualifications:
- Development / Scripting / Coding Skills: Demonstrated proficiency and hands-on experience in scripting and coding, particularly with languages such as Python, PowerShell, or Bash, for automation, data analysis, or security tooling.
- Baseline Security Knowledge: Fundamental understanding of cybersecurity principles, security controls, and common security domains (e.g., network security, identity and access management, data protection, vulnerability management).
- Cloud Fundamentals: A foundational grasp of cloud computing concepts and architectures, with basic familiarity and understanding of at least one major Cloud Service Provider (e.g., Amazon Web Services, Microsoft Azure, Google Cloud Platform, Oracle Cloud). Prior project experience in cloud and conceptual understanding is essential.
- Bachelor's degree in Computer Science, Information Security, or a related technical field, or equivalent practical experience.
- Strong analytical and problem-solving skills with an investigative mindset.
- Excellent written and verbal communication skills, with the ability to articulate technical concepts to both technical and non-technical audiences.
Preferred Qualifications:
- Translate high-level design use cases into production-ready cloud architectures, optimizing for performance, resilience, and cost-efficiency while maintaining a rigorous security posture.
- Prior experience in a security-focused role within financial services or other highly regulated industries.
- Familiarity with industry security frameworks and standards (e.g., NIST, ISO 27001, CIS Benchmarks, OWASP).
- Relevant security or cloud certifications (e.g., Security+, CySA+, AWS Certified Security – Specialty, Azure Security Engineer Associate, Google Cloud Professional Cloud Security Engineer).
We Offer Best-In-Class Benefits
Healthcare & Medical Insurance
We offer a wide range of health and welfare programs that vary depending on office location. These generally include medical, dental, short-term disability, long-term disability, life, accidental death, labor accident and business travel accident insurance.
Holiday & Vacation Policies
We offer competitive vacation policies based on employee level and office location. We promote time off from work to recharge by providing generous vacation entitlements and a minimum of three weeks expected vacation usage each year.
Financial Wellness & Retirement
We assist employees in saving and planning for retirement, offer financial support for higher education, and provide a number of benefits to help employees prepare for the unexpected. We offer live financial education and content on a variety of topics to address the spectrum of employees’ priorities.
Health Services
We offer a medical advocacy service for employees and family members facing critical health situations, and counseling and referral services through the Employee Assistance Program (EAP). We provide Global Medical, Security and Travel Assistance and a Workplace Ergonomics Program. We also offer state-of-the-art on-site health centers in certain offices.
Fitness
To encourage employees to live a healthy and active lifestyle, some of our offices feature on-site fitness centers. For eligible employees we typically reimburse fees paid for a fitness club membership or activity (up to a pre-approved amount).
Child Care & Family Care
We offer on-site child care centers that provide full-time and emergency back-up care, as well as mother and baby rooms and homework rooms. In every office, we provide advice and counseling services, expectant parent resources and transitional programs for parents returning from parental leave. Adoption, surrogacy, egg donation and egg retrieval stipends are also available.
Benefits at Goldman Sachs
Read more about the full suite of class-leading benefits our firm has to offer.
Opportunity Overview
CORPORATE TITLE
Associate
OFFICE LOCATION(S)
Dallas
JOB FUNCTION
Security Engineering
DIVISION
Engineering Division
See all OPT Cloud Security Architect Jobs
Sign up for free to unlock all listings, filter by visa type, and get alerts for new OPT Cloud Security Architect Jobs.
Get Access To All JobsTips for Finding OPT Sponsorship in Cloud Security Architect
Target STEM OPT-eligible roles explicitly
Cloud Security Architect positions almost universally qualify for the STEM OPT extension under CIP codes 11.0101 or 14.0901. Confirm your degree field qualifies before applying so you can accurately tell employers you have up to three years of work authorization.
Prioritize large cloud-first employers
Companies with established cloud infrastructure teams, such as financial institutions, healthcare systems, and technology firms, are far more likely to have H-1B sponsorship pipelines already in place. Smaller startups often lack the legal infrastructure to sponsor efficiently.
Lead with certifications that signal immediate value
Certifications like AWS Security Specialty, CCSP, or Google Professional Cloud Security Engineer reduce employer hesitation about sponsorship costs. They demonstrate job-ready expertise and help justify the business case for sponsoring your H-1B petition.
Address your OPT timeline proactively in interviews
Bring up your authorization window yourself rather than waiting for employers to ask. Framing it clearly, including your STEM extension eligibility, removes ambiguity and positions you as someone who understands the process and has planned accordingly.
Build relationships within cloud security communities
Engage with cloud security professional groups and conferences where hiring managers participate directly. Referrals from trusted colleagues significantly reduce employer skepticism about sponsorship, because the candidate is already a known quantity before the conversation begins.
Research employer H-1B filing history before applying
The Department of Labor publishes LCA disclosure data showing which employers have filed for H-1B workers in cloud and security roles. Applying to employers with a consistent filing history dramatically increases your chances of receiving a sponsorship offer.
Cloud Security Architect OPT: Frequently Asked Questions
Do Cloud Security Architect jobs typically qualify for the STEM OPT extension?
Yes. Cloud Security Architect roles are classified under computer and information systems or engineering fields, which qualify for STEM OPT under CIP codes like 11.0101 (Computer and Information Sciences) and 14.0901 (Computer Engineering). If your degree falls under one of these codes, you're eligible for a 24-month STEM extension on top of your initial 12-month OPT, giving you up to 36 months of work authorization to secure H-1B sponsorship.
How hard is it to find Cloud Security Architect jobs that sponsor H-1B visas?
It's competitive but realistic. Cloud security is a high-demand specialty with a genuine talent shortage, which makes employers more willing to invest in sponsorship compared to generalist IT roles. Focusing your search on employers with a documented history of H-1B filings is the most effective filter. Migrate Mate is built specifically for OPT students and surfaces Cloud Security Architect roles from employers who actively sponsor visas, so you're not applying blind.
Can I work as a Cloud Security Architect on OPT without H-1B sponsorship right away?
Yes. During your OPT period, you're authorized to work full-time for any employer in a role related to your degree field without an H-1B petition. Sponsorship only becomes necessary when your OPT expires. If you qualify for STEM OPT, you have up to 36 months to find an employer who will file your H-1B petition before the deadline. Your employer must also enroll in E-Verify to support your STEM OPT extension.
What degree backgrounds support an OPT application for Cloud Security Architect roles?
The most common qualifying degrees include Computer Science, Cybersecurity, Information Systems, Computer Engineering, and Electrical Engineering. USCIS and employers both look for a direct connection between your degree field and the job duties. Cloud Security Architects who hold degrees in cybersecurity or computer science have the clearest path, but adjacent fields like information assurance or systems engineering can also qualify if the role description maps closely to your academic training.
What should I know about the E-Verify requirement for STEM OPT in this role?
For your STEM OPT extension to be valid, your employer must be enrolled in E-Verify, the federal electronic work authorization verification system. This is a non-negotiable requirement, not a preference. Before accepting a Cloud Security Architect offer contingent on STEM OPT, confirm the employer is actively enrolled in E-Verify. Many large technology and financial employers already are, but smaller firms or newer startups may not be, which would make you ineligible for the STEM extension regardless of your degree.