About us
BHI is a data analytics and software-as-a-service company helping health plans, researchers, healthcare providers, employers, and government agencies use data to improve the health of populations and increase the value of care provided. We leverage the largest comparative claims database available and cutting-edge models and analytic tools to collaborate with our customers to drive their success.
Our team is highly focused and passionate healthcare and technology experts who have invested years solving the problem of turning healthcare data into information. Founded by the BCBS Association and 18 Blue plans, we serve Blue and non-Blue organizations across the healthcare continuum. Our stability in value and leadership supported our growth and positions us for continued future success. Join us as we help improve healthcare for all.
Job Description
We are seeking a highly skilled and experienced Lead Cloud Security Architect to join our IT team. This role requires a deep understanding of cloud computing technology and services, with a focus on Amazon Web Services (AWS) as well as compliance and regulatory support. The ideal candidate will have a proven track record of designing and implementing secure cloud architectures that comply with Federal Risk and Authorization Management Program (FedRAMP) and other critical regulatory compliance standards.
Responsibilities
- Design, develop, and manage secure cloud architectures specifically within the AWS environment.
- Lead the organization in cloud security strategies and implementations, ensuring robust, scalable, and secure solutions.
- Conduct security assessments, risk analysis, and vulnerability testing to identify and mitigate potential security risks.
- Develop and maintain security policies, standards, and procedures aligned with FedRAMP and other compliance frameworks.
- Collaborate with IT and development teams to integrate security controls with existing workflows and technologies.
- Provide expert guidance on cloud security best practices, risk management, and compliance strategies.
- Lead and mentor a team of cloud security professionals, fostering a culture of continuous learning and improvement.
- Stay updated on new security technologies and cloud trends, applying this knowledge to improve the security posture of the organization.
Requirements
- Bachelor’s or Master’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Minimum of 7 years of experience in information security, with at least 3 years focused on cloud security architecture, preferably in AWS.
- Extensive knowledge of cloud security frameworks, risk management, and compliance requirements including FedRAMP, DFARS/CMMC/NIST 800-171, HIPAA, and SOC 2.
- Strong experience with AWS tools and services related to security such as IAM, Security Groups, VPC, KMS, CloudTrail, and AWS Config.
- Professional certifications such as AWS Certified Solutions Architect, AWS Certified Security Specialty, CISSP, or CISM are highly preferred.
- Exceptional problem-solving skills and the ability to work under pressure in a fast-paced environment.
- Excellent communication and leadership skills, capable of leading cross-functional teams and handling multiple projects simultaneously.
- Strong analytical skills and attention to detail.
Expected Training and Certifications
- AWS Certified Solutions Architect – Professional
- AWS Certified Security – Specialty
- Certified Information Systems Security Professional (CISSP)
- Certified Information Security Manager (CISM)
- Certified Cloud Security Professional (CCSP)
Expected Technologies Experience
- Amazon Web Services (AWS)including:
- Identity and Access Management (IAM)
- Virtual Private Cloud (VPC)
- AWS Key Management Service (KMS)
- AWS CloudTrail
- AWS Config
Cloud security tools and services such as:
- Firewalls, intrusion detection systems (IDS), and intrusion prevention systems (IPS)
- Endpoint security solutions
- Data encryption technologies
Security Information and Event Management (SIEM) systems Compliance frameworks such as:
- Federal Risk and Authorization Management Program (FedRAMP)
- NIST 800-171/ DFARS, CMMC
- Health Insurance Portability and Accountability Act (HIPAA)
- System and Organization Controls (SOC) 2
Equal Employment Opportunity It is the policy of BHI to provide equal employment opportunity and advancement opportunities to all colleagues and qualified applicants for employment without regard to race, color, religion, national origin, sex, age, disability, sexual orientation, gender identity, or any other classification protected by the federal, state or local laws.