Cloud Security Architect

Location: Remote

Department: IS Information Technology Svcs

Work Type: Full Time

Shift: Shift 1/ to

Minimum to Midpoint Pay Rate:$112,632 - $146,411.20 / Annual

Remote Position (FL Only) This is a remote position incumbents, who reside in Florida only, may work at home. There may be occasional situations that require work to be performed on-site at an assigned Lee Health location.

Summary:

Lee Health is seeking an experienced hands-on Security Architect with a focus on Microsoft Azure, M365 and Cloud Security to join our fast-paced and innovative Cybersecurity team. This position will be a senior level hands-on security practitioner leveraging industry-leading technologies to effectively and efficiently protect and ensure compliance of our critical information systems. This position works closely with the Information Security Officer and Cybersecurity Manager to develop roadmaps, perform risk assessments, identify gaps, make recommendations, and ultimately implement controls to ensure the confidentiality, integrity and availability of the information and systems for one of the largest public health systems in the U.S.

The ideal candidate will be a self-starter with a team-focused mentality and great attention to detail, with the capability to work well with other members of the Cybersecurity team and cross-disciplinary groups to implement and audit Security controls, policies, and procedures. The Security Architect also provides technical guidance for the Cybersecurity team in deploying and monitoring key cloud and security stack technologies, such as IDS/IPS, next-generation firewalls, SIEM, endpoint protection, authentication, web filtering and email security, as well as monitoring for and responding to anomalies or incidents to ensure continuity of operations and prevent intrusion or data disclosure.

Job Requirements:

• A Bachelor's Degree from an accredited college or university with a concentration in Computer Science, Information Systems, or seven (7) years of equivalent relevant work experience required
• Seven (7) years of progressively responsible IT work experience with a focus in network security required
• Ability to participate in an on-call rotation with some after-hours work required
• Experience in a health care or HIPAA compliant environment strongly preferred
• Industry certification such as CISSP, GIAC, Security+ or similar preferred

Desired Skills and Experience:

• Experience with securing Microsoft M365, Azure, and other commercial cloud architectures
• Experience with Microsoft Windows client/server architecture including Active Directory, DNS, DHCP, Group Policy, and SCCM
• Experience with next-generation firewalls, IDS/IPS and threat management, software based and virtual firewalls, including micro-segmentation
• Experience with enterprise networking, TCP/IP, routing and switching, dynamic routing protocols, IPAM, and network device data and control plane hardening
• Experience with email security and web filtering technologies and solutions
• Experience with vulnerability scanning and patch management
• Experience with implementing and securing remote access technology such as Citrix Access Gateway, IPSec VPN, Netmotion/Secure Access Client.
• Experience with next-generation A/V, EDR/XDR and endpoint security hardening
• Experience with securing and knowledge of virtualized environments and hypervisors, virtual desktop infrastructure, and application virtualization and delivery (Citrix)
• Experience withencryption, PKI, SSL/TLS, Microsoft Certificate Services
• Experience with identity management and authentication, RADIUS, TACACS
• Experience with SIEM, log and event management and correlation
• Experience with incident management and response
• Experience leading security reviews and risk assessments
• Experience with security frameworks (NIST, CIS, COBIT, HITRUST, MITRE)