Title Sr. Cloud Security Architect Overview of Position The Sr. Cloud Security Architect is a thought leader responsible for consulting with IT and Business Units on complex and highly visible technology initiatives across the enterprise. This includes the review and evaluation of new IT technical proposals, application designs, and third party tools and services. In addition, this role is responsible for the identification and communication of risk, enumeration of security controls necessary to ensure solutions are released in a safe and secure manner as well as compliant with Security Policies & Standards and regulatory requirements while enabling our Business. What will be my duties and responsibilities in this job? Provide consulting services, guidance, and best practice advice to Business Units and IT Teams across the enterprise Review and assess strategic solution proposals, application and system designs, and identify and communicate the security controls necessary to ensure our data, processes, intellectual property, and brand are secure while enabling Business; identify alternative solutions and mitigating controls when necessary Represent Security on complex and high visibility technology initiatives; be a strong technologist with a pragmatic view and a creative mind Educate internal customers on security risk and best practices Lead through influence and communicate effectively with a demonstrated understanding of business and technical requirements Develop and enhance security policies & standards, based on sound security architecture practices Collaborate with other security architects and security practitioners, IT architects, engineers, developers, application owners and senior management Passionate mentor of Information Security staff What are the requirements needed for this position? College degree or/equivalent and 10 years related work experience Security certification (CISSP, CISM, ETC) Cloud Security-related certifications (AWS, Google, Azure) 7+ years of experience in Security Architecture and Security Engineering 3+ years of experience in a consultancy role evaluating system and application designs and providing technical security guidance and direction 5+ years of increasing responsibility in architecting, securing and delivering cloud applications and solutions within AWS, Azure and GCP Cloud platforms Hands-on experience as an engineer or architect with commercial cloud technologies to include AWS, Azure and/or GCP Experience designing and implementing cloud security, including creating artifacts, models, and strategy presentations Experience performing security design reviews to assess security implications of new technologies introduced in cloud environments Expert level security experience with the following: Full stack IT infrastructure Assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes (application development, data protection, cryptography, key management, identity and access management (IAM), network security) Cloud-native and industry standard authentication mechanisms (Cognito, OAuth, OpenID, etc.) Deployment orchestration, automation, and security configuration management (Cloud Formation Template, Puppet, Chef, ArcSight, etc.) Cloud security and governance tools Enterprise applications (architecture, development, support, and troubleshooting) Performing threat modeling and design reviews to assess security implications and requirements for introduction of new technologies Representing multiple technical viewpoints to diverse audiences in support of risk based technical decisions What other skills/experience would be helpful to have? Ability to perform deep dive technical risk based analysis and provide direction and guidance on architectural use cases and requirements Experience with the assessment, implementation, management and documentation of a broad set of information security technologies and processes (application security, data protection, access management, network security) within a cloud environment Solid understanding of the end-to-end information technology (IT) process, including architecture, design & engineering, implementation, and operations Exceptional verbal communication and technical writing skills; able to build and deliver executive level presentations to include recommendations and solutions Excellent leadership skills; collaborate with and influence others to achieve desired result Proven ability to solve complex technical problems Excellent organizational skills and attention to detail Thorough understanding of SDLC methodologies including Agile Experience with HITRUST, PCI, or FISMA regulatory controls Experience with securing PHI, PCI and PII data li-remote Join our team today where we are creating a better coordinated, increasingly collaborative, and more efficient healthcare system! Equal Opportunity/Affirmative Action Statement Change Healthcare is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, genetic information, national origin, disability, or veteran status. To read more about employment discrimination protections under federal law, read EEO is the Law at https://www.eeoc.gov/employers/eeo-law-poster and the supplemental information at https://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP_EEO_Supplement_Final_JRF_QA_508c.pdf. If you need a reasonable accommodation to assist with your application for employment, please contact us by sending an email to applyaccommodations@changehealthcare.com with "Applicant requesting reasonable accommodation" as the subject. Resumes or CVs submitted to this email box will not be accepted. Click here https://www.dol.gov/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf to view our pay transparency nondiscrimination policy. California (US) Residents: By submitting an application to Change Healthcare for consideration of any employment opportunity, you acknowledge that you have read and understood Change Healthcare's Privacy Notice to California Job Applicants Regarding the Collection of Personal Information. Change Healthcare maintains a drug free workplace and conducts pre-employment drug-testing, where applicable, in accordance with federal, state and local laws.