American Heart Association · 1 month ago
Cybersecurity Architect, Cloud
Dallas, TX
Full-time
Onsite
Senior Level, Lead/Staff
8+ years expThe American Heart Association is a leading organization focused on cardiovascular health, and they are seeking a dynamic Cloud Security Architect to join their Business Technology Cybersecurity Team. This role involves designing and implementing security solutions to protect workloads across various cloud infrastructures and collaborating with multiple teams to ensure secure and resilient systems.
AssociationFitnessHealth CaremHealthPersonal Health
Responsibilities
Design and implement secure architecture patterns and controls across Azure, AWS; and understand enforcement mechanisms through Cloud Security Posture Management
Support secure migration and re-platforming of on-premise environments to cloud ecosystems
Develop guardrails and hardening guidelines for IaaS, PaaS, and SaaS workloads
Define and oversee cloud-native security controls - Azure Defender, AWS Security Hub
Deploy Cybersecurity Operations toolsets and hardening standards to all environments
Collaborate with Application and Network Teams to configure Web Application Firewall (WAF) Technology to enforce security principles
Define and enforce WAF and traditional Network Firewall Rules
Support of Identity & Access Management efforts, including Role-Based Access Control (RBAC), Privileged Identity Management (PIM), and Privileged Access Management (PAM)
Participate in Application Design and Development processes to provide security input and oversight from conception
Partner with application development and infrastructure teams to embed security into CI/CD pipelines and DevOps processes
Provide guidance and recommendations on remediation of vulnerabilities and misconfigurations identified from vulnerability assessment and posture management tools (e.g. vulnerability scanners, SAST, DAST, CSPM
Serve as a trusted advisor on cloud security issues across the enterprise
Support the secure adoption of automation tools as part of a movement towards DevSecOps using Infastructure as Code (IaC)
Evaluate and integrate security tools throughout the enterprise ecosystems
Support ingestion of logs into central SIEM for proactive monitoring and threat detection
Conduct proactive threat hunting in cloud environments to identify and mitigate advanced threats
Participate in Incident Response & Threat Modeling as part of normal job operations
Collaborate with the SOC and incident response teams to investigate and mitigate threats
Perform security reviews, threat modeling, and risk assessments for new and existing cloud services
Actively participate in Incident Response, Business Continuity, and Disaster Recovery exercises and as needed if one should occur
Ensure adherence to well architected frameworks and regulatory requirements (e.g., NIST, CIS, HIPAA, FedRAMP, SOC 2) and company-specific policies
Support audits and compliance initiatives
Educate and mentor engineering and operations teams on secure architecture principles and emerging threats
Qualification
Required
Bachelor's or Master's degree in: Computer Science, Information/Cyber Security, Management Information Systems, or equivalent experience
Security certifications such as: Security+ CCSP, CISSP, AWS Certified Security – Specialty, Azure Security Engineer Associate
8+ years of experience in information security, with 3+ years in a cloud security architecture role
Hands-on experience with major cloud platforms: Azure and AWS - multi-cloud experience is preferred
Strong knowledge of cloud-native services, identity and access management, encryption, key management, and network security
Demonstrated ability to work with on-prem infrastructure and SaaS-based solutions
Experience with SIEM / SOAR Technology, CSPM, CWPP, IAM and PAM solutions
Experience configuring and managing network security tools such as WAF and Firewall Configurations
Ability to collaborate effectively with Infrastructure and Cloud Architects and engineers
Preferred
Experience with security tools and platforms such as: CrowdStrike Falcon Prevent, CrowdStrike Falcon Cloud, Defender for Cloud, Sentinel, Qualys
Familiarity with Infrastructure as Code tools, container security, and API security
Deep understanding of regulatory frameworks and security standards (e.g., NIST, SOC 2, FedRamp, HIPAA, PCI-DSS)
DevSecOps tooling experience, including experience such as: Azure DevOps, Veracode, Github
Strong written and verbal communication skills with the ability to explain complex security topics to technical and non-technical stakeholders
Benefits
Medical, dental, vision, disability, and life insurance
Robust retirement program that includes an employer match and automatic contribution
Employee assistance program
Employee wellness program
Telemedicine
Medical consultation
Paid Time Off (PTO) at a minimum of 16 days per year
12 paid holidays off each year
Tuition Assistance
Company
American Heart Association
The American Heart Association is the nation’s oldest and largest voluntary health organization.
1001-5000 employees
H1B Sponsorship
American Heart Association has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (5)
2024 (1)
2023 (4)
2022 (3)
2021 (2)
2020 (4)
Funding
Current Stage
Late StageTotal Funding
$4.62MKey Investors
Stupski FoundationAmeriCorps Public AlliesCity Furniture
2025-08-14Grant· $0.1M
2024-07-09Grant· $2.7M
2024-06-06Grant· $0.69M
Leadership Team
Jennifer Hall
Chief, Data Science and Analytics
Lynne Braggs
National, Sr. Director Digital Content Production, Creative (Marketing)
Recent News
2025-12-24
News-Medical.Net
2025-12-12
Company data provided by crunchbase