Main Content

Security Architecture Manager (Cloud Automation)

Position: Security Architecture Manager (Cloud Automation)
Reports To: Director, Information Security
Location: Dallas TX, New York, NY, or Winston-Salem, NC

Position Summary:

Information Security (IS) group is looking for a Security Architecture Manager as a direct report to the Director of Enterprise Security Architecture. In this role, the candidate will provide technical leadership, subject matter expertise and direction on complex projects/initiatives for their assigned area(s) of responsibility. This position will function as a technology leader in the architecture design, planning, and delivery of enterprise-class security systems both on premise and in the cloud. We are seeking strong, self-motivated candidates with a proven track record of understanding security controls, and working across an organization to implement and validate controls.

Qualifications Required:

  • A minimum of eight (8) years of experience in Information Security roles
  • Bachelor's degree in engineering, computer science, or a related field
  • Strong analytical and problem solving skills
  • Strong communication skills and business acumen
  • Knowledge of Security and Industry frameworks such as ISO27001/02, NIST 800-53, SANS Top 20 Critical Security Controls, COBIT, PCI-DSS, and NIST Cybersecurity Framework
  • A combination of relevant industry certifications related to Information Security (e.g. CISSP, CISM), Architecture (e.g. TOGAF, AWS Certified Solutions Architect), and Cloud (e.g. AWS, Google, and Azure including Microsoft 365)
  • A minimum experience of five (5) years in:
    • Building and delivering cloud security solutions
    • Providing consulting to business partners to influence security best practices and establish solid security principles across the organization
    • Meeting business goals along with customer and/or regulatory security-related requirements
  • Strong understanding of security principles for cloud and on premise systems in at least one of the following: network/infrastructure, mainframe, servers, mobile, system configuration 
  • Knowledge of securing development pipelines such as automated code scanning tools and API management
  • Scripting experience such as python and PowerShell 
  • Experience with securing containers including container management solutions such as Kubernetes, and OpenShift 
  • Experience with managing enterprise grade cloud security solutions such as Cloud Access Security Brokers (CASB)
  • Knowledge of security defenses against data breaches, broken authentication, hacking, account hijacking, malicious insiders, third parties, APTs, data loss and Denial of Service attacks
  • Ability to provide direction and guidance at all levels of the organization on architectural use cases and requirements
  • Ability to contextualize security issues and business risks both verbally and in writing

Essential Functions and Responsibilities:

  • Implement and provision enterprise-class security systems in public clouds such as Amazon Web Services (AWS), and Microsoft Azure 
  • Define, communicate and validate security requirements to guide projects/initiatives to secure solutions
  • Ensure organizational alignment with the cloud security strategy including integration with tools such as Cloud Access Security Broker (CASB)
  • Define and manage system hardening standards (configuration management) across all technology domains and ensure compliance checking is built into processes
  • Secure the automation and orchestration of resources as well as the deployment of Infrastructure as code using tools like Puppet, AWS CloudFormation, and Terraform
  • Coordinate security activities throughout the CI/CD (Continuous Integration/Continuous Delivery) pipeline
  • Provide assistance in maintaining security architecture documentation and diagrams
  • Identify security design gaps in existing and proposed architectures and recommend changes or enhancements
  • Partner with the IS leadership team, and other teams and individuals across the company to advance security standards and guidelines
  • Understand regulations and governmental initiatives impacting TCH, our technology, our environment and systems to ensure security gaps are addressed
  • Stay up-to-date with current and emerging cloud security topics  
  • Continue self-development of knowledge, skills and abilities to better support execution of the Information Security (IS) function
  • Excel as a ‘manager of one’ by defining and executing on goals and tasks that are aligned with organizational objectives.
  • Other Information Security-related tasks as assigned

Physical Demands and Work Environment:

Work is generally sedentary in nature, but may require standing and walking. The working environment is generally favorable. Lighting and temperature are adequate, and there are no hazardous or unpleasant conditions caused by noise, dust, etc. Work is generally performed within an office environment, with standard office equipment available.

Apply Below*:

  • A letter of interest describing your experience and interest in the position
  • Your resume
  • Names and contact information of three references, or three letters of reference

* Please submit a single application per position.

Submit Your Resume