Description :

Our approach is built on delivering value by combining our powerful ecosystem of platforms with capital efficient execution.

We bring together deep domain expertise and our strength in technology to help the worlds leading businesses build their digital core, optimize operations, accelerate revenue growth and deliver tangible outcomes at speed and scale.

Job Description :

Position Summary :

We are seeking a Security Architect to lead a security and compliance assessment workstream for a platform modernization initiative. This role will evaluate the current authentication, authorization, trust boundary, encryption, audit logging, and PHI protection posture, then define the target tenant-aware security architecture required to support a secure shared platform.

This role is ideal for someone who combines strong architecture depth with practical experience in regulated environments and can translate current state findings into actionable future state security designs.

Key Responsibilities :

- Lead the security discovery effort across identity, access, service authentication, trust boundaries, encryption, key management, audit logging, and PHI protection

- Review IAM configurations, authentication flows, gateway configurations, service authentication code, certificate and secret handling practices, and audit patterns

- Document the current security architecture, including end user authentication, service to service authentication, authorization models, trust assumptions, and state level access controls

- Identify security gaps that affect tenant isolation, HIPAA alignment, auditability, and zero trust maturity

- Assess how PHI is protected in transit and at rest, and identify gaps in encryption, key management, and access controls

- Define the target tenant-aware security model, including RBAC, tenant boundary enforcement, service identity, encryption expectations, and audit requirements

- Evaluate how candidate tenancy models affect security and compliance risk

- Produce security architecture summaries, security gap assessments, and future state recommendations for leadership review

- Participate in SME discussions with IAM, platform, architecture, and engineering stakeholders

Requirements :

- 8+ years of experience in security architecture, enterprise security

- Strong experience with IAM, SSO, MFA, RBAC, OAuth, mutual TLS, certificates, and service authentication patterns

- Deep understanding of encryption at rest, encryption in transit, key management, and audit logging

- Experience defining trust boundaries and zero trust architecture expectations

- Experience assessing security controls in regulated environments, ideally healthcare or other PHI sensitive domains

- Ability to identify security gaps from both technical artifacts and architecture discussions

- Strong written and verbal communication skills, including the ability to create clear architecture and risk documentation

Preferred Qualifications :

- Experience with HIPAA and PHI related control expectations

- Experience supporting multi-tenant platforms or SaaS security models

- Familiarity with API gateways, centralized secrets management, and cloud security services

- Experience integrating security controls into CI/CD and platform delivery processes