Security Architect

Join PatientPoint to be part of a dynamic team creating change in and around the doctor’s office. As a leading digital health company, we innovate to positively impact patient behaviors. Our purpose-driven approach offers an inspirational career opportunity where you can contribute to improving health outcomes for millions of patients nationwide.

Location: Remote 

Travel Requirements: Less than 10% 

Job Summary  
We are seeking an experienced Security Architect to design, implement, and oversee security strategies that protect enterprise systems, networks, applications, and data from cyber threats. This role requires deep technical expertise, strategic thinking, and hands-on implementation skills to ensure that security is embedded in all technology solutions. The Security Architect will work closely with IT, engineering, DevOps, and business teams to establish and enforce security best practices.  

What You’ll Do  

Security Architecture & Design 

• Design, document, announce, advocate, and implement secure architecture frameworks for enterprise systems, cloud environments, and applications. 
• Develop and maintain security reference architectures, ensuring alignment with Zero Trust, Defense-in-Depth, and Secure-by-Design principles. 
• Define security controls and best practices for cloud (AWS, Azure, GCP), on-premises, and hybrid environments. 
• Develop identity and access management (IAM) strategies, including authentication, authorization, and least-privilege models. 
• Work with software engineering and DevOps teams to embed security in the software development lifecycle (SDLC) and CI/CD pipelines. 

 Security Risk Management & Compliance 

• Identify security risks and develop mitigation strategies to protect enterprise assets. 
• Ensure compliance with regulatory standards such as NIST, ISO 27001, GDPR, SOC2, HIPAA, PCI DSS. 
• Advocate for threat modeling and security assessment maturity for internally developed systems and applications. 
• Collaborate with legal, compliance, and risk management teams to ensure adherence to security policies. 

 Cloud & Infrastructure Security 

• Define and implement secure cloud architectures for multi-cloud and hybrid environments. 
• Design network security architectures, including firewalls, VPNs, intrusion detection/prevention systems (IDS/IPS), and microsegmentation. 
• Implement container security best practices for Kubernetes, Docker, and serverless environments. 
• Automate security operations using Infrastructure-as-Code (IaC) and security orchestration tools. 

 Security Operations & Incident Response 

• Work closely with SOC and Incident Response teams to improve detection, response, and recovery capabilities. 
• Develop security monitoring and logging strategies using SIEM, XDR, and threat intelligence platforms. 
• Design plan for what coverage will be completed for penetration testing, red teaming, and vulnerability assessments to identify security weaknesses. 
• Define and enforce incident response plans and assist in handling security breaches. 
• Technology Innovation & Emerging Threats 
• Stay ahead of evolving cyber threats, attack techniques, and security trends. Communicate these items and the impact to the appropriate teams to find ways to mitigate the risk.  
• Research and evaluate emerging technologies such as AI-driven security, blockchain security, and quantum-resistant cryptography. 
• Drive adoption of security automation, AI/ML-based threat detection, and DevSecOps methodologies. 

 Collaboration & Leadership 

• Act as a trusted security advisor to technical project manager, product owners, engineering, IT, and executive teams. 
• Provide security guidance on enterprise IT projects and digital transformation initiatives. 
• Provide materials, conduct training, and presentations for technical and non-technical teams. 
• Mentor junior security engineers and architects.  

What We Need  

• 8+ years of experience in cybersecurity, security architecture, or security engineering. 
• Strong expertise in cloud security (AWS, Azure, GCP), network security, and application security. 
• Experience with security frameworks and methodologies such as Zero Trust, NIST Cybersecurity Framework, MITRE ATT&CK. 
• Deep knowledge of identity and access management (IAM), PKI, MFA, and SSO solutions. 
• Hands-on experience with firewalls, IDS/IPS, WAFs, SIEM, endpoint security, and DLP. 
• Proficiency in programming and scripting (Python, PowerShell, Bash, Terraform, etc.) for security automation. 
• Strong understanding of cryptographic protocols, secure coding practices, and data protection strategies. 
• Expertise in AI/ML security architecture, including secure model development and deployment, adversarial threat mitigation, data protection, cloud security, and regulatory compliance, with the ability to translate emerging AI risks into scalable enterprise security controls. 
• Experience in security incident response, digital forensics, and threat intelligence. 

Desired Qualifications  

• Master’s degree in Cybersecurity, Computer Science, or related field. 
• Experience in security research, ethical hacking, or red/blue team operations. 
• Experience working in highly regulated industries (finance, healthcare, government, etc.). 
• Certifications such as CISSP, CCSP, CISM, CEH, OSCP, AWS Security Specialty, or GIAC 

What You'll Need to Succeed  

• Ability to communicate complex security concepts clearly to both technical and non-technical audiences, including executive leadership. 
• A collaborative mindset with a track record of partnering across engineering, IT, compliance, and business teams to drive security outcomes. 
• Strategic thinking balanced with hands-on execution.  
• Comfort moving between big-picture architecture decisions and ground-level implementation. 
• A proactive approach to staying ahead of emerging threats, with the initiative to translate new risks into actionable solutions. 
• A passion for mentorship and elevating those around you, with the ability to influence and build security culture across an organization. 

Base Salary Band: $124,400- $177,200 
 
Compensation: At PatientPoint, we are committed to providing competitive pay and benefits that are in line with industry standards. We analyze and carefully consider several factors when determining compensation, including skills, qualifications, geographic location, and professional experience, which can cause your compensation to vary. The base salary range listed is just one component of PatientPoint’s total compensation package for employees. For additional details on our total benefits package, please review the section “About PatientPoint” at the end of this job description. 

#LI-ED1 #LI-Remote

About PatientPoint: 
PatientPoint® is the Point of Change company, transforming the healthcare experience through the strategic delivery of behavior-changing content at critical moments of care. As the nation’s largest and most impactful digital network in 30,000 physician offices, we connect patients, providers and health brands with relevant information that is proven to drive healthier decisions and better outcomes. Learn more at patientpoint.com. 

Latest News & Innovations: 

1. Named A Best Place to Work! Read More
2. Mike Walsh, COO answers "What Makes a Great Leader". Read More
3. Recognized on Vault’s Top Internship List. Read More

What We Offer: 
We know you bring your whole self to work every day, and we are committed to supporting our full-time teammates with a comprehensive range of modernized benefits and cultural perks. We offer competitive compensation, flexible time off to recharge, hybrid work options, mental and emotional wellness resources, a 401K plan, and more. While these benefits are available to full-time team members, we strive to create a positive and supportive environment for all teammates.