Principal Enterprise Security Architect

3 days ago

Apply Now

Receive Emails with Similar Jobs

Lyric - Clarity in motion.

WebsiteLinkedInAll Job Openings

healthcare technology • claims editing • primary editing • secondary editing • solution hosting

201 - 500

Description

• Advise technology teams on Lyric’s security strategy and implementation • Partner with business and technical leaders to protect Lyric’s intellectual property and customer data • Participate in business and enterprise architecture forums to champion cloud security interests • Create and maintain security strategy plans and roadmaps with measurable benchmarks • Develop and maintain Security Architecture processes and artifacts for enterprise security capabilities • Serve as subject matter expert in secure cloud technology design and implementation • Establish architecture design principles to improve performance, effectiveness, and compliance • Assess cloud security risks by establishing security architecture with a focus on threat detection • Plan and design cloud-native architecture adhering to security frameworks and best practices • Review security technologies, tools, and services, and recommend best practices for their use

Requirements

• 10+ years of experience with hands-on security architecture and/or engineering • 5+ years of experience with Amazon Web Services (AWS) and Microsoft (MS) Azure • Bachelors Degree • CISSP, CISA, CISM, CCSP, or other relevant security-related designation(s) • AWS Security Certification • AWS Solutions Architect Certifications • Experience with SaaS, IaaS, and PaaS architectural solutions within Amazon Web Services, Microsoft Azure, and other cloud providers • Experience in Cloud, DevSecOps, Container Security, IAM patterns, WAF/CDN/DDoS services, security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies • Experience in security architecture methodologies like NIST security framework and HITRUST standards, best practices like Mitre Att@ck framework, CIS benchmarks, and defense-in-depth • Experience with data protection, cryptography, key management, identity, and access management (IAM), network security within SaaS, IaaS, PaaS, and other cloud environments • Experience working with cloud security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies • Broad knowledge of traditional security controls and technologies, such as Security Information and Event Management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), public key infrastructure (PKI), antivirus and firewalls, in addition to newer offerings such as endpoint detection and response (EDR), threat intelligence platforms, security automation and orchestration, deception technologies, and application controls • Experience architecting SIEM systems, threat intelligence platforms, security automation and orchestration solutions, IDS/IPS, file integrity monitoring (FIM), data loss prevention (DLP), and other network and system monitoring tools