Job Description

The Senior Security Architect will be a key leader in designing, evaluating, and enforcing security controls across our enterprise cloud and network environments. This role will focus on security reviews, network change assessments, cloud security architecture, and policy development, ensuring alignment with industry best practices and regulatory requirements. The ideal candidate will have a passion for technology and security, along with a deep expertise in Azure cloud security, network security technologies, and reviewing cloud-based platforms and integrations.

Key Responsibilities:

Security & Network Change Reviews:

• Perform security assessments for network changes, including:
• Azure NSG, Firewall, and micro-segmentation technologies
• Cloud resource firewalls (Azure, OCI, etc.)
• SD-WAN and network integrations
• Acquisitions and new site builds
• Review and approve security tool configurations (SIEM, SASE, EDR, CSPM, etc.)
• Assess cloud service onboarding (SaaS, IaaS, PaaS) for security risks
• Evaluate internal application & cloud deployments for security compliance

Security Architecture & Design:

• Define security requirements for cloud (Azure and M365) and hybrid environments
• Design and enforce security controls for applications, data, and infrastructure
• Review third-party integrations for security risks
• Collaborate with Enterprise Architecture, DevOps, and Engineering teams to embed security into design
• Assess security risks in AI/ML models, LLMs, and generative AI deployments.
• Implement security controls for Microsoft 365(M365) environments, including:
• Microsoft Defender, Purview, DLP, Conditional Access
• Email security, SharePoint, and Teams security configurations.
• Ensure secure integration between services (e.g., Azure OpenAI) and enterprise data.
• Review third party integrations (API, data pipelines) for exposure points.
• Evaluate container service onboarding for legacy systems migrating to containers, as well as native deployments.
• Design compensating controls for legacy systems with unaddressed gaps.
• Perform security gap analysis & risk mitigation
• Identity security vulnerabilities in cloud (Azure), network, AI/ML deployments, M365 environments, and new implementations.
• Develop actionable recommendations to address gaps.

Policy & Standards Development:

• Update and maintain cloud security policies, standards, and baselines
• Ensure compliance with industry frameworks (NIST, CIS, ISO 27001, etc.) standards (PCI DSS) and regulations (HIPAA/HITECH, various state regulations, etc.)
• Advise Legal, Procurement, and Risk teams on security requirements for vendor contracts

Collaboration & Advisory:

• Work with cross-functional teams to align security with business goals
• Provide security guidance for all of Molina’s technologies
• Mentor junior security team members
  
  

Required Qualifications

• At least 5 years computer and security architecture experience, or equivalent combination of relevant education and experience.

• Knowledge of plan of action and milestones for network, information system, and data security architectures.

• Ability to obtain final approval of baseline configurations for all company information systems.

• Ability to secure final approval of security controls and certification and accreditation of systems and applications ready to transition into the production environment.

• Knowledge of installation and use of all network monitoring tools.

• Ability to research and perform log analysis reviews to support security architectural studies and evaluations.

• Knowledge of firewall management, secure routing configurations, encryption, Virtual Local Area Networks (VLAN) deployment, Intrusion Prevention System (IPS)/Intrusion Detection System (IDS) integration, Virtual Private Network (VPN), and Microsoft Windows security.

• Knowledge of HIPAA, ISO 27001, and Payment Card Industry Data Security Standard(PCI-DSS).

• Ability to work cross-collaboratively across a highly matrixed organization with internal and external stakeholders.

• Excellent verbal and written communication skills.

• Microsoft Office suite/applicable software program(s) proficiency.

Preferred Qualifications

• Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM).

• Certified Information Systems Security Architecture Professional (CISSP-ISSAP), Information Systems Security Engineering Professional) (CISSP-ISSEP), or Certified Cloud Security Professional (CCSP).

• Experience as a security engineer within a Cisco/Microsoft environment.

• Management/leadership experience.

To all current Molina employees: If you are interested in applying for this position, please apply through the Internal Job Board.

Molina Healthcare offers a competitive benefits and compensation package. Molina Healthcare is an Equal Opportunity Employer (EOE) M/F/D/V