Description

About the role

As a Cloud Security Architect, you will make an impact by assessing and strengthening the security posture of client cloud environments - identifying vulnerabilities, closing compliance gaps, and delivering actionable remediation strategies. You will be a valued member of the Health Family - Security team and work collaboratively with client stakeholders, cross-functional delivery teams, and executive leadership including CISOs to drive resilient, compliant, and secure Azure cloud architectures.

In this role, you will:

• Assess client Azure cloud environments to identify security vulnerabilities, architecture gaps, and compliance risks, then design and recommend targeted remediation strategies aligned to industry best practices.
• Evaluate and strengthen configurations across core Azure security services, including Microsoft Defender for Cloud, Sentinel, Key Vault, Azure AD (Entra ID), PIM, Azure Policy, Azure Monitor, and Log Analytics.
• Lead security architecture workshops, risk assessments, and governance reviews with client teams, translating complex findings into clear, executive-ready recommendations.
• Ensure alignment with security frameworks and compliance regulations including NIST, ISO/IEC 27001, HIPAA, GDPR, and FedRAMP, while developing and refining incident response plans (MIRP).
• Drive continuous improvement of security processes and controls, keeping pace with evolving threat landscapes and emerging compliance requirements.

What you need to have to be considered

• Demonstrated expertise in cloud security architecture and assessment within Microsoft Azure environments, including client-facing delivery experience.
• Deep knowledge of Azure-native security services: Microsoft Defender for Cloud, Sentinel, Key Vault, Azure AD (Entra ID), PIM, Azure Policy, Azure Monitor, and Log Analytics.
• Strong command of security frameworks and methodologies, including Microsoft MCRA, the Security Adoption Framework, Zero Trust, and Microsoft Security Assessment tools such as WARA.
• Proven ability to communicate security concepts clearly to both technical teams and executive stakeholders, including experience presenting to CISO-level audiences.
• Microsoft Certified: Cybersecurity Architect Expert and ITIL Foundation Certification (both required).

These will help you stand out

• Consulting background with experience facilitating client workshops, delivering executive-level architecture reviews, and managing stakeholder relationships through complex engagements.
• Familiarity with SOC integration, SIEM/SOAR tools, security orchestration and automation, and incident response coordination workflows.
• Experience applying compliance frameworks such as HIPAA, GDPR, or FedRAMP in regulated-industry environments.
• One or more preferred certifications: Microsoft Certified Azure Security Engineer Associate, CISSP, Security Operations Analyst Associate, Identity and Access Administrator Associate, Azure Administrator Associate, or a BC/DR certification (CBCP, MBCI, ISO 22301, or equivalent).