Cloud Security Architect

The Cloud Security Architect is responsible for creating robust principles, standards, and design patterns that ensure the security of products and enterprise tools across Renown Health hybrid environments. This role concentrates specifically on securing infrastructure services, optimizing security platforms and zero trust network security optimization and build to include ZTNA (Zero Trust Network Access), SWG (secure Web Gateway) and CASB (Cloud Access Security Broker) platforms (Netskope).

Utilizing extensive cybersecurity expertise, you will design and build secure infrastructures and services tailored for a hybrid both cloud and on-premises settings. Collaboration with various cross-functional teams to establish well-defined cybersecurity architectural guidelines is essential for adoption by engineering teams.

This role will report into the Chief Information Security & Technology Officer

1. This role concentrates specifically on securing hybrid multi-cloud infrastructure and services as well as on-premises systems

2. Utilizing extensive cybersecurity expertise, you will design and build secure infrastructures and services tailored for both multi-cloud and on-premises settings

3. Understanding of networking concepts, firewalls, and network security groups

4. Deep knowledge in ZTNA (Zero Trust Network Access), SWG (secure Web Gateway) and CASB (Cloud Access Security Broker) platforms (Netskope)

5. Deep knowledge of infrastructure security services, including IaaS, PaaS, and SaaS offerings

6. Developing and maintaining cloud governance policies and strategies

7. Implementing and maintaining security protocols and ensuring compliance with relevant regulations

8. Oversee the process of identifying and remediating vulnerabilities

9. Define security controls and policies, access to data, and monitor alerts to ensure that data, apps, containers, infrastructure, and networks are protected

10. Design access configurations within a cloud solution environment using the defense-in-depth principles

11. Maintain and improve the security posture of the Azure platform

12. Collaborate with DevOps and security teams to ensure best practices in cloud architecture functions

13. Troubleshoot and resolve issues related to Azure services and infrastructure timely

14. Develop Infrastructure as Code to automate the provisioning and management of cloud resources

15. Write and maintain scripts for automation and deployment

16. Collaboration with various cross-functional teams to establish well-defined cybersecurity architectural guidelines is essential for adoption by engineering teams

17. Identify and recommend cybersecurity policies, standards, procedures, and guardrails

18. Lead working groups to define cybersecurity guidelines across product and enterprise architecture

19. Develop secure design patterns with product and enterprise architecture that engineering teams can effectively implement

20. Contribute to governance patterns related to non-cyber architecture

21. Analyze potential security risks to information systems and recommend innovative solutions

22. Collaborate with technical and development teams to enhance release processes for security

23. Define cybersecurity guardrails with business and engineering teams to ensure secure design patterns are efficiently adopted

24. Engage in security events and incident responses to identify and prevent security gaps

25. Research emerging security trends, threats, and technologies to recommend enhancements

26. Work with stakeholders to ensure security considerations are integrated into operational decisions

27. Collaborate with cybersecurity peers to unify governance, risk, compliance, and vulnerability management into cohesive standards

This position does not provide patient care

The foregoing description is not intended and should not be construed to be an exhaustive list of all responsibilities, skills and efforts or work conditions associated with the job. It is intended to be an accurate reflection of the general nature and level of the job.

Name

Description

Education:

Must have working-level knowledge of the English language, including reading, writing, and speaking English. Bachelor's degree is required. Master's degree is preferred.

Experience:

* 7 years experience with information systems and IT security in a complex multi-platform environment.

* 5 years of IT security experience in an information systems department required.

* Proven experience in security systems design and development.

* Strong understanding of information technology/processing principles and practices.

* Hands-on experience in cybersecurity services and with

* Experience managing compliance efforts including HIPPA, PCI , and other related compliance agencies and implementing IT controls to ensure compliance and compliance testing.

License(s):

None

Certification(s):

Certified Information Systems Security Professional (CISSP) issued by the International Information System Security Certification Consortium (ISC) or Certified Information Security Manager (CISM) issued by Information Systems Audit and Control Association (ISACA) or another certification approved by leadership.

Computer / Typing:

Must be proficient with Microsoft Office Suite, including Outlook, PowerPoint, Excel, and Word and have the ability to use the computer to complete online learning requirements for job-specific competencies, access online forms and policies, complete online benefits enrollment, etc.