Senior Cloud Security Architect - Risk
Senior Cloud Security Architect - Risk
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job Description
The role of the Senior Cloud Security Architect demands business intellect technical acuity and the ability to think communicate and write at various levels of abstraction business acumen and technical capacity. The Senior Cloud Security Architect is considered wellversed a leader and a mentor; able to identify and resolve technology related information security gaps based on the organizations risk posture with input from peers. This is accomplished by maintaining a focus on cloud security while retaining enterprise security functions. This individual embraces teamwork collaboration and consensus driven decision making and has seasoned negotiation and influencing skills.
The Senior Cloud Security Architect will provide oversight and implement with guidance from Principal Cloud Security Architects the following key functional areas:
Serve as an information security liaison to business leaders executive sponsors senior service/product owners and third parties.
Lead information security efforts by guiding work throughout projects initiatives program increments workshops design/solution sessions and consulting work.
Collaborate with senior leaders across engineering enterprise architecture OIS and development practices to solve complex problems and deliver endtoend solutions.
Lead efforts that relate to creating and updating cloud and enterprise information security policies standards guidelines and best practices.
Advocate for the use of strong security principles and strategies throughout the organization.
Identify prioritize and escalate areas of inefficiencies high risk information security practices or suboptimal operational outcomes and consult on strategies to remediate.
Help drive consensus on relevant strategies or initiatives with stakeholders customers and business leaders to achieve mutually beneficial outcomes.
Work with a high level of autonomy while keeping the CISO security leadership and OIS informed of risks new work roadblocks and organizational developments.
Maintain strong relationships by guiding customers and stakeholders on the applicability of security architecture as it relates to their area of responsibility.
Develop and defend security architectures or strategic security direction to executive leaders customers stakeholders and technical implementation teams.
Identify help prioritize and justify work efforts to IT solution architects enterprise architects engineers and analysts.
Represent management and communicate OIS strategy as the technical lead for projects and cross departmental efforts within research education patient care and with external partners.
Contribute maintain and implement the training program for new Cloud Security Architects.
Maintain a reputation of positive leadership throughout OIS and act as a mentor and trainer to OIS colleagues.
*This position is 100 remote work. Individual may live anywhere in the US.
**This vacancy is not eligible for sponsorship / we will not sponsor or transfer visas for this position.
During the selection process you may participate in an OnDemand (prerecorded) interview that you can complete at your convenience. During the OnDemand interview a question will appear on your screen and you will have time to consider each question before responding. You will have the opportunity to rerecord your answer to each question Mayo Clinic will only see the final recording. The complete interview will be reviewed by a Mayo Clinic staff member and you will be notified of next steps.
Qualifications
An Associates degree and 12 years of experience related to Information Systems or an accumulated equivalent body of work. Alternatively a Bachelors degree and 10 years of similar experience.
8 years of experience in a Cybersecurity focused field OR a Cybersecurity relevant Masters degree and 6 years of experience in a Cybersecurity focused field.
4 years of demonstrated leadership experience.
2 years of experience in Cybersecurity Architecture or a role with an equivalent set of competencies and responsibilities.
2 years of experience working as a Cybersecurity practitioner with competencies relating to IaaS or PaaS within one of the major public cloud service providers preferably GCP or Azure.
The Senior Cloud Security Architect is expected to be wellversed in a complementary mixture of the following skills and abilities:
Take enterprise and cloud initiatives extract meaningful business requirements translate them into information security requirements and demonstrate completeness by incorporating them into the design to fit the needs of the customer and stakeholders.
Advise on and develop cybersecurity strategy within the enterprise and cloud to align with operational activities and communicate broadly across OIS.
Perform threat modeling to provide traceability in enterprise and cloud security designs while incorporating potential business impact.
Research and evaluate modern technologies to stay current on emerging topics.
Guide efforts as it relates to enterprise and cloud security risk functions such as risk remediation quantification acceptance reduction and transference.
Possess deep discipline expertise within at least two of the major Cybersecurity domains while maintaining broad crossdiscipline expertise: Risk Management Asset Security Security Architecture & Engineering Communications & Network Security Identity and Access Management Security Assessment & Testing Security Operations and Software Development Security.
Maintain the ability to speak to and comprehend at an expert level all applicable security principles frameworks policies standards and theory.
Ability to design Enterprise Cloud Multicloud and Hybridcloud architectures to deliver associated artifacts in the form of conceptual logical and physical architectures.
Redesign information security components of legacy onpremises environments as they transition into the cloud.
Competencies in threat modeling designing and solutioning enterprise and cloud architectures around Artificial Intelligence (AI) Machine Learning (ML) Deep Learning Virtual Machines (DLVM) High Performance Computing (HPC) High Performance Data Analysis (HPDA) Data Lakes (DL) and supporting infrastructure.
Experience leading collaborating and contributing to delivering secure outcomes with at least one major public cloud service provider preferably GCP or Azure.
Experience designing with securityfocused cloud native services such as: VPCs Identity Aware/Contextual Proxies Cloud Identity & Access Management Web Application Firewalls API Gateways Secrets/Key Management and other applicable applications or services.
Experience designing secure environments for cloud native services such as: Compute Kubernetes Container Registries Databases Pub/Sub Infrastructure as Code DevSecOps CI/CD Pipelines Cloud Consoles Serverless Computing APIs and other applicable applications or services.
Able to incorporate applicable HIPAA HITRUST SOC2 NIST GDPR and PCIDSS requirements into enterprise and cloud architectures.
Licensure or Certification:
Must have one of the following certifications (or equivalent) at time of hire or the candidate must pass the exam within two years and complete the certification process once years of service requirements of the certifying body have been met.
CISSP
HCISPP
CDPSE
CCSP
Google Professional Cloud Architect (GPCA)
CISSPISSAP
SABSA (SCF SCP and/or SCM)
CRISC
Required Experience:
Senior IC
Employment Type
Full-Time
