Senior Cloud Security Architect

What will your days look like at LGI Healthcare Solutions

LGI Healthcare Solutions improves the performance of healthcare organizations as well as the experience of teams and patients through its innovative technological this context we are looking for a Senior Cloud Security Architect (Azure) who will act as the leader for strategy architecture and security governance across all of the companys Microsoft Azure this role under the supervision of the CISO you will work closely with the CloudOps team within which you will be operationally integrated while maintaining authority over strategic direction risk management and security standards.

Context of the Mandate

As part of evolving and strengthening our cloud security posture we are seeking a senior architect capable of:

• Taking over and structuring Azure security architecture
• Significantly reducing the attack surface
• Eliminating uncontrolled public exposure
• Establishing formal and sustainable governance
• Defining and implementing a comprehensive cloud security strategy
• Ensuring sustainability and continuous improvement of the security posture

This is a strategic role. It is not a technical administration position but rather a mandate focused on architecture transformation and structuring at the organizational level.

Primary Mandate

Define implement and maintain the overall Azure security strategy ensuring:

• The design of secure architectures
• Integration of Zero Trust principles
• Governance of technical controls
• Structured cloud risk management
• Continuous and measurable improvement of the security posture

Responsibilities

1. Define Azure Security Strategy

• Develop and maintain the overall security strategy for Microsoft Azure environments
• Define the roadmap for cloud security transformation and maturity
• Establish a governance framework aligned with best practices (CIS Azure Security Benchmark Zero Trust)

2. Redesign and Secure Cloud Architecture

• Design secure and scalable Azure architectures
• Reduce the attack surface and eliminate uncontrolled public exposure
• Structure network segmentation data protection and technical identity management
• Define secure deployment standards (landing zones subscriptions workloads)

3. Implement Sustainable and Automated Controls

• Define and implement security guardrails (policies standards technical controls)
• Integrate security into CloudOps and DevSecOps practices
• Promote automation of controls and security as code

4. Strengthen Access and Privilege Governance

• Apply the principle of least privilege
• Govern RBAC roles managed identities and service principals
• Establish an auditable and controlled access model

5. Ensure Sustainability and Continuous Improvement

• Define logging detection and cloud monitoring requirements
• Collaborate with the SOC to optimize visibility and response
• Establish performance and maturity metrics
• Ensure continuous review of architecture and security standards

Qualifications :

Requirements

• Senior experience in Azure cloud security architecture
• Advanced knowledge of Azure security components
• Proven experience in cloud environment transformation and structuring
• Ability to design secure enterprise-scale architectures
• Experience with Azure Policy Defender for Cloud RBAC Private Endpoints
• Knowledge of DevSecOps practices and Infrastructure as Code
• Strong understanding of Zero Trust models
• Ability to influence structure and evolve practices over the long term

• This position must be bilingual as the candidate will be responsible for working with documentation in both French and English and communicating orally and in writing with both French-speaking and English-speaking partners/clients/suppliers/colleagues.

Nice to Have

• Relevant Azure certifications (AZ-500 SC-100 AZ-305 or equivalent)
• Experience in mature or regulated enterprise environments
• Knowledge of cloud security frameworks (CIS NIST ISO 27001 CSA)
• Experience in advanced Azure network architecture (segmentation Private Link Azure Firewall)
• Experience with Infrastructure as Code (Terraform Bicep) and DevSecOps
• Experience securing modern workloads (AKS App Services containers)
• Experience in transforming or significantly improving cloud security posture

Informations complémentaires :

Here are the many benefits to ensure your personal and professional well-being as well as financial health:  

• Remote in-office or hybrid work with the option of flexible hours to promote balance and performance 
• Group insurance plan and group RRSP with employer participation in effect from day one 
• Minimum of 3 weeks vacation 5 days personal leave per year 
• Access to a telemedicine service and a complete assistance program for all employees and their family 
• Access to a leading e-learning platform and hours allocated for training and professional development
• More than 40 years of expertise in the health IT field opens the door to many career opportunities 
• Projects integrating Agile methodology 
• Employee discount program  
• An organizational culture rooted in the values of courage determination excellence and collaboration around which we come together to develop technology solutions for the healthcare field. 

If you are interested in this position we would be very happy to tell you more about the role the team and life at LGI Healthcare Solutions.  

Apply now!

Remote Work :

No

Employment Type :

Full-time