IT Security Specialist focusing on cyber defense within a family - owned company. Responsibilities include managing firewalls, monitoring threats, and implementing security solutions.
About the role
- Associate Security Architect at SCP Health defining security requirements and best practices for hybrid multi-cloud environments. Collaborating with IT and DevOps to enhance security throughout the development lifecycle.
Responsibilities
- Define security requirements, best practices, and reference architectures for hybrid multi-cloud (AWS, Azure) and on-premises environments.
- Design and implement security controls for DevSecOps and CI/CD pipelines.
- Establish best practices for Cloud Security Posture Management (CSPM) and secure Infrastructure-as-Code (IaC).
- Apply SaaS Security Posture Management (SSPM) standards for enterprise SaaS applications.
- Support architecture and security reviews to identify vulnerabilities and recommend mitigation strategies.
- Evaluate and integrate emerging security technologies and practices across cloud and enterprise systems.
- Support enterprise IAM and PAM strategies, including MFA, SSO, certificate, and secrets management.
- Ensure security for enterprise platforms, including network, endpoint, and data security.
- Contribute to compliance, governance, and audit readiness efforts (HIPAA, HITRUST, SOC 2, SOX, ISO 27001, NIST CSF).
- Align security initiatives with enterprise IT roadmaps and transformation programs.
- Partner with IT, DevOps, Data, and Application teams to embed security throughout the development, testing, and deployment lifecycle.
- Provide security mentorship, training, and guidance across technical teams.
- Advocate for a security-first culture and serve as a bridge between technical staff, business stakeholders, and leadership.
- Engage with auditors, regulators, and executives to communicate security posture, risks, and remediation strategies.
Requirements
- Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or related field.
- 5+ years in cybersecurity, with at least 2+ years in architecture or engineering roles spanning both cloud and enterprise environments.
- Hands-on experience designing and implementing security controls for AWS and/or Azure.
- Familiarity with hybrid infrastructure security, IAM, PAM, and enterprise platforms.
- Experience with compliance frameworks (HIPAA, HITRUST, SOC 2, NIST CSF, ISO 27001, CIS).
- Proficiency in threat modeling, risk assessment, and security control design.
- Strong Microsoft Excel and Visio/Lucid skills.
- Experience in healthcare security and regulatory environments, preferred.
- Knowledge of container security (Kubernetes, Docker) and cloud-native security, preferred.
- Experience with security automation, scripting, and orchestration, preferred.
Benefits
- Strong track record of providing excellent work/life balance.
- Comprehensive benefits package and competitive compensation.
- Commitment to fostering an inclusive culture of belonging and empowerment through our core values - collaboration, courage, agility, and respect.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Junior Information Systems Security Engineer at AMERICAN SYSTEMS managing DoD cyber security. Collaborating on technical issues and supporting risk management framework compliance.
Information Systems Security Engineer assisting in cyber security requirements for DoD systems. Collaborating closely with customers and ensuring compliance with the DoD Risk Management Framework.
Staff Product Security Engineer driving security innovation while ensuring compliance with federal standards at DataRobot. Leading security engineering, automation, and customer engagement for federal customers.
Auszubildende(n) zur Fachkraft für Schutz und Sicherheit in Hamburg bei proSicherheit GmbH. Modernes Sicherheitsunternehmen mit Fokus auf Sicherheit und Vertrauensaufbau.
Security staff for proSicherheit performing access controls and ensuring compliance with safety standards. Involves reporting, patrolling, and handling emergencies in Hamburg area.
Cloud Security Architect responsible for strategic growth and development of Cloud Security solutions. Work with national clients on architecture and security concepts in Switzerland.
Cyber Security Engineer responsible for DevSecOps and security automation at a leading Swiss IT consulting firm. Engaging in security measures across industries with a focus on collaboration and technology.
Information Security Manager coordinates ISMS development and security measures for Megamaris GmbH. Responsible for risk analysis and security training across 12 subsidiaries.
Security GRC Manager managing audits and compliance programs at Salesforce. Overseeing cloud security compliance and collaborating across departments for risk management.