Logo of Huzzle

Sr. Cloud Security Architect

Applications are closed

  • Job
    Full-time
    Senior & Expert Level
  • Software Engineering
  • Nashville
    Remote

Requirements

  • Bachelor’s degree in Computer Science, Information Technology, or equivalent work experience.
  • 8+ years of experience in cloud operations, application development, or information security roles.
  • 3+ years of experience designing, architecting, and deploying solutions on Azure or AWS.
  • 2+ years of experience designing systems related to Identity Access Management (IAM).
  • Familiarity with DevSecOps pipelines, CI/CD concepts, and Infrastructure as Code (IaC).
  • Understanding of security vulnerabilities and mitigation strategies within AWS and Azure.
  • Experience working within an Agile/Scrum team.
  • Qualifications;
  • Working knowledge of AWS/Azure and on-prem cloud security vulnerabilities
  • Ability to remediate security incidents in the cloud or on-prem
  • Familiarity with WAF, Firewall, and Network Security Groups
  • Understanding of Endpoint Protection, AntiVirus, NIDS, and HIDS
  • Proficiency in centralized log collection or SIEM technology.
  • Knowledge of Multi-Factor Authentication technologies.
  • Experience with virtual firewalls in cloud environments.

Responsibilities

  • Grow and Influence the Cloud Security Program:
  • Foster the development and expansion of HealthStream’s cloud security program.
  • Influence decision-making and strategic direction related to cloud security.
  • Cultivate a Security Culture:
  • Instill a security-first mindset within platform enablement, site reliability, scheduling, credentialing and other HealthStream teams.
  • Promote security awareness and best practices across the organization.
  • Policy and Guideline Development:
  • Collaborate on creating cloud security policies, standards, procedures, and guidelines.
  • Ensure alignment with engineering and developer needs.
  • Incident Triage and Remediation:
  • Assess and address cloud security issues and incidents promptly.
  • Provide actionable recommendations for remediation.
  • Evaluate Tools and Processes:
  • Continuously evaluate cloud security tools, frameworks, and processes.
  • Drive adoption of effective security solutions.
  • CI/CD Integration:
  • Integrate cloud security tools seamlessly into the CI/CD pipeline.
  • Enable secure and automated deployment practices.
  • Automation and Orchestration:
  • Automate repetitive security tasks wherever possible.
  • Orchestrate security controls for efficiency.
  • Other Duties as Assigned:
  • Adapt to the organization's evolving needs
  • Participate in an on-call rotation

FAQs

What are the key responsibilities of the Sr. Cloud Security Architect at HealthStream?

The key responsibilities include fostering the development of the cloud security program, influencing decision-making related to cloud security, cultivating a security culture within various teams, collaborating on policy development, assessing and addressing cloud security incidents, evaluating tools and processes, integrating security into CI/CD pipelines, automating security tasks, and adapting to the organization's evolving needs.

What is required educational background for this position?

A Bachelor’s degree in Computer Science, Information Technology, or equivalent work experience is required.

How many years of experience are necessary for this role?

Candidates must have 8+ years of experience in cloud operations, application development, or information security roles, with at least 3+ years in designing and deploying solutions on Azure or AWS and 2+ years in Identity Access Management (IAM) system design.

What cloud platforms should the Sr. Cloud Security Architect be familiar with?

The candidate should have experience with both Amazon Web Services (AWS) and Microsoft Azure.

Is knowledge of DevSecOps and CI/CD concepts required for this job?

Yes, familiarity with DevSecOps pipelines, CI/CD concepts, and Infrastructure as Code (IaC) is required.

What are some of the security technologies or concepts that the candidate should understand?

The candidate should have knowledge of security vulnerabilities within AWS and Azure, familiarity with Web Application Firewalls (WAF), firewalls, network security groups, endpoint protection technologies, and Multi-Factor Authentication technologies.

Does the position require any specific experience with security tools?

Yes, experience with centralized log collection or Security Information and Event Management (SIEM) technology, as well as virtual firewalls in cloud environments, is required.

Will the Sr. Cloud Security Architect need to participate in any on-call rotations?

Yes, participation in an on-call rotation is part of the responsibilities of the position.

How important is it to instill a security-first mindset within the organization?

It is crucial, as one of the key responsibilities involves promoting a security-first culture across various teams within HealthStream.

What types of incidents are the Sr. Cloud Security Architect expected to address?

They are expected to assess and address any cloud security issues and incidents promptly and provide actionable recommendations for remediation.

Technology
Industry
501-1000
Employees
1990
Founded Year

Mission & Purpose

HealthStream is the #1 advisor for developing people in healthcare, working with 4,000+ healthcare organizations for the past 30 years to cultivate a more competent and energized workforce. As healthcare organizations seek ways to do more with less, developing next-level people is integral to their success. HealthStream works side-by-side with healthcare organizations to ensure their people are confident, competent, and credentialed, ready to execute at the highest level. All of our HealthStreamers, across all teams and roles, share this vision of improving the quality of care by developing the people who deliver care. At HealthStream, we value continuous improvement – of our products, our systems, and our team members. Our collaborative work environment encourages innovation and allows us to solve big problems. With a hybrid work policy, employee-driven teams, and our strong corporate culture, we maximize job satisfaction and deliver meaningful outcomes to the healthcare industry daily. Our unwavering commitment to our vision and values makes HealthStream an exciting, rewarding place to make an impact as HealthStreamers remain committed to 'streaming good' through our work and in the communities where we live.