Sr. Cloud Security Architect

JOB SUMMARY

As a Cloud Security Architect, you will play a key leadership role in the success of the security operations program by providing guidance on cloud security related issues, including but not limited to technical infrastructure, process, design, assessment, implementation, awareness, and governance. The Sr. Cloud Security Architect will provide leadership, experience, and expertise to project teams on driving the cloud architecture of BSWH to be secure, auditable, and of course, usable by our customers. You will serve as a security subject matter expert as part of an in-house, on-shore, and off-shore security architect team responsible for securing the enterprise information and its systems by determining security requirements across enterprise projects; planning, designing, and documenting security systems; preparing security standards, policies and procedures.

SALARY: The pay range for this position is $56.86/hour for those with entry-level qualifications up to $101.25/hour for those highly qualified. The specific rate will depend on the successful candidate's specific qualifications and prior experience.

ESSENTIAL FUNCTIONS OF THE ROLE

1. Serve as a key player in the security architect team, responsible for securing enterprise information and systems.
2. Plan, design, and document SaaS, IaaS, security systems.
3. Assist in preparing security standards, policies, and procedures for projects involving SaaS, IaaS, PaaS.
4. Utilize SIEM for monitoring, analyzing, and responding to security events and incidents.
5. Provide technical and operational security expertise to cross-functional teams.
6. Collaborate with on-shore and off-shore teams to implement security requirements across the enterprise.
7. Focus on Cloud and participate in the CASB/ZTN/SASE roadmap and planning with other Sr. Security architects, ensuring compliance with healthcare industry regulations and standards.
8. Serve as a key player in Cyber Intelligence Planning (CI-WRL-004).
9. Advance the functionality of the SIEM, including correlation across cloud-sourced indexes, ultimately leveraging ML and AI.

KNOWLEDGE, SKILLS AND ABILITIES

Systems Analysis

1. T1035: Determine how threat activity groups employ encryption to support their operations.
2. T1354: Identify system cybersecurity requirements.
3. K0018: Knowledge of encryption algorithms.
4. K0689: Knowledge of network infrastructure principles and practices.
5. K0718: Knowledge of network communications principles and practices.
6. K0915: Knowledge of network architecture principles and practices.
7. K1037: Knowledge of target critical capabilities.
8. K1052: Knowledge of the Tasking, Collection, Processing, Exploration, and Dissemination (TCPED) process.
9. K1101: Knowledge of data modeling and predictive analytics techniques for cybersecurity applications.

Knowledge Management

1. K0674: Knowledge of computer networking protocols.
2. K0680: Knowledge of cybersecurity principles and practices.
3. K0751: Knowledge of system threats.
4. K0752: Knowledge of system vulnerabilities.
5. K0977: Knowledge of intelligence collection management tools and techniques.
6. K1005: Knowledge of data lifecycle management, including data storage, retrieval, and archival.
7. K1100: Knowledge of data governance frameworks and best practices for ensuring data quality and integrity.
8. S0506: Skill in data visualization tools and techniques to communicate complex security concepts.

Analyze:

All-Source Analysis

1. T0718: Identify intelligence gaps and shortfalls.
2. T1020: Determine the operational and safety impacts of cybersecurity lapses.
3. T1657: Develop a diverse program of information materials.
4. T1661: Assess all-source data for intelligence or vulnerability value.
5. K1005: Knowledge of intelligence collection capabilities and applications.
6. K1029: Knowledge of statistical analysis methods and tools for analyzing security event data.
7. S0709: Skill in developing and applying machine learning algorithms to detect cybersecurity threats.
8. S0783: Skill in creating decision support materials using data-driven insights.

Oversee and Govern

Strategic Planning and Policy

1. T1036: Integrate leadership priorities.
2. T1718: Implement changes to planning policies and procedures.
3. T1729: Synchronize intelligence planning activities and operational planning timelines.
4. T1779: Coordinate strategic planning efforts with internal and external partners.
5. K0676: Knowledge of cybersecurity laws and regulations.
6. K0734: Knowledge of Risk Management Framework (RMF) requirements.
7. K0983: Knowledge of data privacy laws and their implications on cybersecurity practices.
8. S0763: Skill in integrating organizational objectives with data strategy to enhance decision-making.

Performs other position appropriate duties as required in a competent, professional, and courteous manner.

BENEFITS

Our competitive benefits package includes the following:

• Immediate eligibility for health and welfare benefits.
• 401(k) savings plan with dollar-for-dollar match up to 5%.
• Tuition Reimbursement.
• PTO accrual beginning Day 1.

Note: Benefits may vary based upon position type and/or level.

PREFERRED CERTIFICATIONS

• Certified Information System Security Professional (CISSP) certification.
• Certified Information Security Manager (CISM) certification.
• CompTIA Advanced Security Practitioner (CASP+).

MINIMUM QUALIFICATIONS

• EDUCATION - Bachelor's or 4 years of work experience above the minimum qualification.
• EXPERIENCE - 7 Years of Experience.