Job Description
Overview Since our founding in 1924, we've cut cardiovascular disease deaths in half, but there is still so much more to do. To overcome today’s biggest health challenges and accelerate this progress, we need passionate individuals like you. Join our movement, be part of the progress, and help ensure a healthier future for all. You matter, and so does the impact you can make with us. We are seeking a dynamic and highly skilled Cloud Security Architect to join our Business Technology Cybersecurity Team. In this role, you will be responsible for designing and implementing security solutions that protect workloads across our hybrid infrastructure, spanning Microsoft Azure, Amazon Web Services (AWS), on-premise data centers, and SaaS-hosted applications. The ideal candidate is a strategic planner and problem-solver who thrives in complex environments. You’ll collaborate closely with infrastructure teams, application developers, DevOps, and compliance collaborators to architect secure, scalable, and resilient systems aligned with industry best practices and regulatory requirements. The Association offers many resources to help you maintain work-life harmonization through your changing needs and life situations. To help you be successful, you will have access to Heart U, our award-winning corporate university, as well as additional training and support, locally. #TheAHALife is more than a company culture; it is our way of life. It embodies our commitment to work-life harmonization and is guided by our core values where our employees can thrive both personally and professionally. Discover why you will Be Seen. Be Heard. Be Valued at the American Heart Association by following us on LinkedIn, Instagram, Facebook, X, and at heart.jobs. Responsibilities Cloud Security Architecture Design and implement secure architecture patterns and controls across Azure, AWS; and understand enforcement mechanisms through Cloud Security Posture Management Support secure migration and re-platforming of on-premise environments to cloud ecosystems Develop guardrails and hardening guidelines for IaaS, PaaS, and SaaS workloads Define and be responsible for cloud-native security controls - Azure Defender, AWS Security Hub Deploy Cybersecurity Operations toolsets and hardening standards to all environments Collaborate with Application and Network Teams to configure Web Application Firewall (WAF) Technology to enforce security principles Define and enforce WAF and traditional Network Firewall Rules Support of Identity & Access Management efforts, including Role-Based Access Control (RBAC), Privileged Identity Management (PIM), and Privileged Access Management (PAM) Collaboration & Enablement Participate in Application Design and Development processes to provide security input and oversight from conception Partner with application development and infrastructure teams to embed security into CI/CD pipelines and DevOps processes Provide guidance and recommendations on remediation of vulnerabilities and misconfigurations identified from vulnerability assessment and posture management tools (e.g. vulnerability scanners, SAST, DAST, CSPM Serve as a trusted advisor on cloud security issues across the enterprise Security Engineering & Automation Support the secure adoption of automation tools as part of a movement towards DevSecOps using Infastructure as Code (IaC) Evaluate and integrate security tools throughout the enterprise ecosystems Support ingestion of logs into central SIEM for proactive monitoring and threat detection Conduct proactive threat hunting in cloud environments to identify and mitigate advanced threats Participate in Incident Response & Threat Modeling as part of normal job operations Collaborate with the SOC and incident response teams to investigate and mitigate threats Perform security reviews, threat modeling, and risk assessments for new and existing cloud services Actively participate in Incident Response, Business Continuity, and Disaster Recovery exercises and as needed if one should occur Governance, Risk & Compliance Ensure alignment to well-architected frameworks and regulatory requirements (e.g., NIST, CIS, HIPAA, FedRAMP, SOC 2) and company-specific policies Support audits and compliance initiatives Security Awareness & Mentorship Educate and mentor engineering and operations teams on secure architecture principles and emerging threats Qualifications Bachelor’s or Master’s degree in: Computer Science, Information/Cyber Security, Managem