Cloud Governance Specialist

About the Role

Cloud environments in regulated industries are not just technology decisions — they are governance decisions with audit, regulatory, and risk implications. ELDR Technology's Cloud Governance Specialist helps financial institutions, healthcare organisations, and government entities establish the governance frameworks, controls, and documentation that make their cloud environments defensible to regulators and auditors. This role combines cloud technical depth with governance expertise and a practical understanding of what regulators actually look for.

Responsibilities

• Design and implement cloud governance frameworks across AWS, Azure, and GCP — including landing zone design, policy-as-code, and cloud control frameworks aligned with regulatory requirements
• Develop cloud security governance documentation: cloud security policies, data classification frameworks, identity and access management governance, and incident response procedures for cloud environments
• Assess cloud environments against regulatory requirements — NIST 800-53, FedRAMP, OSFI B-10, ISO 27001, PCI DSS — and develop remediation roadmaps
• Implement and configure cloud governance tooling: AWS Control Tower, Azure Policy, GCP Organization Policy, and CSPM solutions
• Advise clients on cloud operating model design — FinOps, DevSecOps, and cloud centre of excellence (CCoE) governance structures
• Produce audit-ready cloud governance evidence packages for regulatory examinations and certification audits
• Stay current with evolving cloud regulatory guidance from OSFI, OCC, FCA, and equivalent bodies

Requirements

• 8–15 years of combined cloud platform and governance experience
• Hands-on expertise with at least two of AWS, Azure, and GCP — architecture, configuration, and governance
• Deep knowledge of cloud security governance frameworks — NIST 800-53, FedRAMP, CSA CCM, or equivalent
• Experience implementing infrastructure-as-code and policy-as-code tooling (Terraform, AWS CDK, Azure ARM/Bicep, OPA)
• Ability to produce regulatory-grade cloud governance documentation
• Undergraduate degree in computer science, systems engineering, or related field

Preferred Qualifications

• Cloud certifications: AWS Security Specialty, Azure Security Engineer, GCP Professional Cloud Security Engineer
• CCSK or CCSP certification
• Prior experience supporting FedRAMP authorisation or OSFI cloud compliance assessments
• Familiarity with FinOps frameworks and cloud cost governance in regulated environments

What We Offer

• Senior cloud governance advisory role with direct client impact in regulated environments
• Integration with ELDR's broader technology and advisory practice
• Toronto hybrid with certification support and professional development investment
• Competitive compensation with performance-linked components