Senior Architect, Information Security - Azure/Cloud- Remote

About The Position

Requirements

• At least 5 years computer and security architecture experience, or equivalent combination of relevant education and experience.
• Knowledge of plan of action and milestones for network, information system, and data security architectures.
• Ability to obtain final approval of baseline configurations for all company information systems.
• Ability to secure final approval of security controls and certification and accreditation of systems and applications ready to transition into the production environment.
• Knowledge of installation and use of all network monitoring tools.
• Ability to research and perform log analysis reviews to support security architectural studies and evaluations.
• Knowledge of firewall management, secure routing configurations, encryption, Virtual Local Area Networks (VLAN) deployment, Intrusion Prevention System (IPS)/Intrusion Detection System (IDS) integration, Virtual Private Network (VPN), and Microsoft Windows security.
• Knowledge of HIPAA, ISO 27001, and Payment Card Industry Data Security Standard(PCI-DSS).
• Ability to work cross-collaboratively across a highly matrixed organization with internal and external stakeholders.
• Excellent verbal and written communication skills.
• Microsoft Office suite/applicable software program(s) proficiency.

Nice To Haves

• Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM).
• Certified Information Systems Security Architecture Professional (CISSP-ISSAP), Information Systems Security Engineering Professional) (CISSP-ISSEP), or Certified Cloud Security Professional (CCSP).
• Experience as a security engineer within a Cisco/Microsoft environment.
• Management/leadership experience.

Responsibilities

• Perform security assessments for network changes, including: Azure NSG, Firewall, and micro-segmentation technologies
• Cloud resource firewalls (Azure, OCI, etc.)
• SD-WAN and network integrations
• Acquisitions and new site builds
• Review and approve security tool configurations (SIEM, SASE, EDR, CSPM, etc.)
• Assess cloud service onboarding (SaaS, IaaS, PaaS) for security risks
• Evaluate internal application & cloud deployments for security compliance
• Define security requirements for cloud (Azure and M365) and hybrid environments
• Design and enforce security controls for applications, data, and infrastructure
• Review third-party integrations for security risks
• Collaborate with Enterprise Architecture, DevOps, and Engineering teams to embed security into design
• Assess security risks in AI/ML models, LLMs, and generative AI deployments.
• Implement security controls for Microsoft 365(M365) environments, including: Microsoft Defender, Purview, DLP, Conditional Access
• Email security, SharePoint, and Teams security configurations.
• Ensure secure integration between services (e.g., Azure OpenAI) and enterprise data.
• Review third party integrations (API, data pipelines) for exposure points.
• Evaluate container service onboarding for legacy systems migrating to containers, as well as native deployments.
• Design compensating controls for legacy systems with unaddressed gaps.
• Perform security gap analysis & risk mitigation
• Identity security vulnerabilities in cloud (Azure), network, AI/ML deployments, M365 environments, and new implementations.
• Develop actionable recommendations to address gaps.
• Update and maintain cloud security policies, standards, and baselines
• Ensure compliance with industry frameworks (NIST, CIS, ISO 27001, etc.) standards (PCI DSS) and regulations (HIPAA/HITECH, various state regulations, etc.)
• Advise Legal, Procurement, and Risk teams on security requirements for vendor contracts
• Work with cross-functional teams to align security with business goals
• Provide security guidance for all of Molina’s technologies
• Mentor junior security team members

Benefits

• Molina Healthcare offers a competitive benefits and compensation package.