Security Architect

PatientPoint

2d•Remote

About The Position

Join PatientPoint to be part of a dynamic team creating change in and around the doctor’s office. As a leading digital health company, we innovate to positively impact patient behaviors. Our purpose-driven approach offers an inspirational career opportunity where you can contribute to improving health outcomes for millions of patients nationwide. We are seeking an experienced Security Architect to design, implement, and oversee security strategies that protect enterprise systems, networks, applications, and data from cyber threats. This role requires deep technical expertise, strategic thinking, and hands-on implementation skills to ensure that security is embedded in all technology solutions. The Security Architect will work closely with IT, engineering, DevOps, and business teams to establish and enforce security best practices.

Requirements

8+ years of experience in cybersecurity, security architecture, or security engineering.
Strong expertise in cloud security (AWS, Azure, GCP), network security, and application security.
Experience with security frameworks and methodologies such as Zero Trust, NIST Cybersecurity Framework, MITRE ATT&CK.
Deep knowledge of identity and access management (IAM), PKI, MFA, and SSO solutions.
Hands-on experience with firewalls, IDS/IPS, WAFs, SIEM, endpoint security, and DLP.
Proficiency in programming and scripting (Python, PowerShell, Bash, Terraform, etc.) for security automation.
Strong understanding of cryptographic protocols, secure coding practices, and data protection strategies.
Expertise in AI/ML security architecture, including secure model development and deployment, adversarial threat mitigation, data protection, cloud security, and regulatory compliance, with the ability to translate emerging AI risks into scalable enterprise security controls.
Experience in security incident response, digital forensics, and threat intelligence.
Ability to communicate complex security concepts clearly to both technical and non-technical audiences, including executive leadership.
A collaborative mindset with a track record of partnering across engineering, IT, compliance, and business teams to drive security outcomes.
Strategic thinking balanced with hands-on execution.
Comfort moving between big-picture architecture decisions and ground-level implementation.
A proactive approach to staying ahead of emerging threats, with the initiative to translate new risks into actionable solutions.
A passion for mentorship and elevating those around you, with the ability to influence and build security culture across an organization.

Nice To Haves

Master’s degree in Cybersecurity, Computer Science, or related field.
Experience in security research, ethical hacking, or red/blue team operations.
Experience working in highly regulated industries (finance, healthcare, government, etc.).
Certifications such as CISSP, CCSP, CISM, CEH, OSCP, AWS Security Specialty, or GIAC

Responsibilities

Design, document, announce, advocate, and implement secure architecture frameworks for enterprise systems, cloud environments, and applications.
Develop and maintain security reference architectures, ensuring alignment with Zero Trust, Defense-in-Depth, and Secure-by-Design principles.
Define security controls and best practices for cloud (AWS, Azure, GCP), on-premises, and hybrid environments.
Develop identity and access management (IAM) strategies, including authentication, authorization, and least-privilege models.
Work with software engineering and DevOps teams to embed security in the software development lifecycle (SDLC) and CI/CD pipelines.
Identify security risks and develop mitigation strategies to protect enterprise assets.
Ensure compliance with regulatory standards such as NIST, ISO 27001, GDPR, SOC2, HIPAA, PCI DSS.
Advocate for threat modeling and security assessment maturity for internally developed systems and applications.
Collaborate with legal, compliance, and risk management teams to ensure adherence to security policies.
Define and implement secure cloud architectures for multi-cloud and hybrid environments.
Design network security architectures, including firewalls, VPNs, intrusion detection/prevention systems (IDS/IPS), and microsegmentation.
Implement container security best practices for Kubernetes, Docker, and serverless environments.
Automate security operations using Infrastructure-as-Code (IaC) and security orchestration tools.
Work closely with SOC and Incident Response teams to improve detection, response, and recovery capabilities.
Develop security monitoring and logging strategies using SIEM, XDR, and threat intelligence platforms.
Design plan for what coverage will be completed for penetration testing, red teaming, and vulnerability assessments to identify security weaknesses.
Define and enforce incident response plans and assist in handling security breaches.
Stay ahead of evolving cyber threats, attack techniques, and security trends. Communicate these items and the impact to the appropriate teams to find ways to mitigate the risk.
Research and evaluate emerging technologies such as AI-driven security, blockchain security, and quantum-resistant cryptography.
Drive adoption of security automation, AI/ML-based threat detection, and DevSecOps methodologies.
Act as a trusted security advisor to technical project manager, product owners, engineering, IT, and executive teams.
Provide security guidance on enterprise IT projects and digital transformation initiatives.
Provide materials, conduct training, and presentations for technical and non-technical teams.
Mentor junior security engineers and architects.