SENIOR-LEVEL CLOUD SECURITY ARCHITECT

Our mission

We exist to provide the best care.

Our mission is to improve the quality of care by optimizing every patient journey. We help payers, healthcare providers and life sciences companies deliver better care, treatment and outcomes by providing the most actionable patient journey information and value-based payment platform. Through our company, healthcare organizations benefit from the power of big data and self-service, as well as on-demand enterprise insights that illuminate the path to more valuable healthcare.

We are seeking a Senior Cloud Security Architect to join our team and lead the design, implementation and management of our cloud security framework. The ideal candidate will have extensive AWS experience and a deep understanding of cloud security best practices to ensure the integrity, confidentiality, and availability of our infrastructure and data.

The Role:

The Senior-level Cloud Security Analyst will be responsible for a range of activities, including (but not limited to):

• Security Architecture Design: Develop and implement a comprehensive cloud security architecture for AWS-based solutions, aligning with industry best practices and regulatory requirements.
• Risk Management: Identify, assess, and mitigate security risks associated with cloud infrastructure and applications. Conduct regular security assessments and audits.
• Identity and Access Management (IAM): Design and manage AWS IAM policies, roles, and permissions to ensure secure access to resources.
• Data Protection: Implement robust data protection measures, including encryption, data masking, and secure key management.
• Compliance and Governance: Ensure cloud environments comply with relevant laws, regulations, and standards such as HIPAA and HITRUST. Develop and enforce cloud security policies and procedures.
• Security Monitoring and Incident Response: Set up and maintain security monitoring tools and processes. Lead incident response efforts for security breaches or vulnerabilities.
• Automation and DevSecOps: Integrate security practices into the CI/CD pipeline. Automate security controls and ensure secure coding practices.
• Collaboration: Work closely with cross-functional teams, including DevOps, IT, and software development, to integrate security into all aspects of cloud operations.
• Training and Awareness: Provide guidance and training to internal teams on cloud security best practices and emerging threats.

• Continuous Improvement: Stay up-to-date with the latest cloud security trends, technologies, and threats. Continuously improve the security posture of our cloud infrastructure.

What we are looking for:

We are always looking for new team members who will add to our culture and have a strong passion for impact. In particular, the Senior-level Cloud Security Analyst will have:

Education: Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field. Advanced degree or relevant certifications (e.g., AWS Certified Security – Specialty, CISSP, CISM) are a plus.

Experience: Minimum of 5 years of experience in cloud security architecture, with a strong focus on AWS services.

Technical Skills:

Extensive knowledge of AWS services (e.g., EC2, S3, RDS, Lambda, VPC, CloudTrail, CloudWatch).

Proficiency in security tools and technologies such as firewalls, VPNs, IDS/IPS, SIEM, and vulnerability management tools.

Experience with Infrastructure as Code (IaC) using tools like Terraform, AWS CloudFormation, or Ansible.

Strong understanding of network security, encryption technologies, and identity and access management.

Familiarity with DevSecOps practices and tools such as CircleCI, Github, and Docker.

Soft Skills:

Excellent problem-solving and analytical skills.

Strong communication and interpersonal skills.

Ability to work independently and as part of a team.

Detail-oriented with a strong commitment to quality and security.