Senior Manager, Cloud Security Engineering

Arcadia is dedicated to happier, healthier days for all. We transform diverse data into a unified fabric for health. Our platform delivers actionable insights for our customers to advance care and research, drive strategic growth, and achieve financial success. For more information, visitarcadia.io.Why This Role Is Important to Arcadia We are looking for an experienced and highly skilled individual to lead our Cloud Security Engineering team. This role involves not only safeguarding clients’ data and our company’s computer networks and systems but also playing a key role in shaping our security strategy, mentoring junior team members, and leading complex security projects.The ideal candidate combines information security expertise with aligned technical capabilities to assess, design, and implement controls across a cloud-based infrastructure. This role will support ongoing compliance efforts and certification/recertification of industry-best security frameworks, including ISO 27001, HITRUST, and SOC-2, while also operating and implementing new technical controls to meet Arcadia’s evolving products and security challenges.What Success Looks LikeIn 3 months- Complete company orientation and specific cybersecurity training- Familiarize yourself with the company's security infrastructure, policies, and procedures- Developing competency around day-to-day upkeep of EDR, AV, firewall services, and other security services- Beginning planning and execution of longer-term project-based work around security tooling and monitoring- Lead and complete critical security projects, such as enhancing security architecture, improving incident response plans, or implementing new security tools- Participate in incident response drills or simulations to understand the practical aspects of identifying, responding to, and mitigating security incidentsIn 6 months- Start exploring automation for routine security tasks using scripting languages like Python- Take on more responsibility in incident response activities- Begin contributing ideas to security strategies and improvements- Review the vulnerability landscape and understand general threats and where they lie within the environment- Begin actively analyzing threat intelligence and contributing to threat reportsIn 12 months- Start independently conducting threat analyses and vulnerability assessments- Establish personal and professional goals for the next phase of your career with the company What You'll Be Doing Leadership & StrategyIn partnership with the Principal Security Engineer & Architect and other stakeholders, develop and execute a comprehensive cloud security strategy aligned with Arcadia’s business objectivesMentor and guide a team of skilled and passionate cloud security engineers, fostering a culture of innovation, collaboration, and technical excellenceRepresent the security function in cross-functional meetings and strategic planning sessionsCreate and maintain documentation and training materials for SecOps policies, procedures, and software/security best practicesEnsure the smooth operation of project management processes by leveraging automation to streamline workflows, monitor progress, resolve blockers, and enhance the efficiency of delivering security initiativesCloud Security Design & ImplementationOversee the design, deployment, and management of security controls across multi-cloud environmentsSecuring Arcadia’s product and corporate computing environments from unauthorized accessArchitect scalable, automated security solutions leveraging best-in-class tools and methodologiesIntegrate security practices into DevOps pipelines, ensuring secure code, infrastructure as code (IaC), and continuous monitoring.Seeking and destroying vulnerabilities to protect our server- and serverless-based systemsEstablishing client connectivity via encrypted connections like IPsec, SSLVPN, NAT/PATConstructing automated, scalable perimeter security solutions using cloud-native services and Enterprise security toolsManaging Arcadia’s secrets, certificates, and PKI components to ensure data is protected throughout the product development and customer implementation processesIntegrating with DevOps and software engineers to pre-bake security (encryption, logging, monitoring, auditing) into new products, modules, and processing architectureCyber Threat Monitoring and IntelligenceProactively collect and analyze cyber threat intelligence from various sources to understand threat actors, their tactics, techniques, and procedures (TTPs)Participate in incident response activities, including detection, containment, eradication, and post-incident analysisMonitor network traffic and logs to identify potential threats, vulnerabilities, and breachesConduct regular vulnerability assessments and risk analyses to identify security gapsPrepare and present detailed threat reports to stakeholders and recommend appropriate countermeasuresWork with IT and other departments to implement security measures and best practicesManage relationships with relevant cyber threat detection vendors (e.g., EDR, MDM, etc.)Keep abreast of the latest cybersecurity trends, tools, and technologiesConduct digital forensics to investigate security incidents and gather evidenceDevelop and maintain threat models to predict potential attack vectors and security breachesEngage in research to identify new threats and develop innovative defensive strategiesWork with law enforcement, other organizations, and cybersecurity communities for information sharing and joint threat mitigation effortsRisk Management & ComplianceSupport the Information Security team with ongoing compliance efforts related to SOC 2, ISO 27001, and HITRUST certification, along with general state and federal healthcare, privacy, and security requirementsCollaborate with stakeholders to conduct security risk assessments and prioritize remediation effortsInnovation & Thought LeadershipEvaluate emerging security technologies, trends, and practices to continuously improve Arcadia’s security postureChampion Zero Trust principles, advanced encryption, and AI-based threat detection strategies What You'll Bring 8+ years’ experience with a Bachelor’s Degree or equivalent experienceExperience leading technical teams in a high-paced environmentDeep understanding and recent experience with cloud security concepts, in particular with AWS, IAM management, container security, and infrastructure security architectureExperience with the design and implementation of enterprise-based security, such as IDS/IPS, SIEM, vulnerability management, etcExpert at securing Enterprise Windows and Microsoft 365 environments, Kubernetes clusters, and container technologies across multi-cloud infrastructureExperience in designing and managing enterprise-grade security architectures and solutionsProficiency in configuring virtual/physical perimeter security devicesComfortable using code to automate processes and drive results – PowerShell, Python, Bash, Terraform, CloudFormation, JavaScript/Node.js
Strong understanding of healthcare compliance frameworks and data privacy regulations (e.g., HIPAA, HITRUST).Advanced security certifications such as CISSP, CCSP, CEH, CISA, GCFA, GCTI, GCFE, GCFR, GNFA, or similar Would Love For You To Have Certifications such as AWS Certified Solutions Architect, AWS Security Specialist, CISSP, or CCSPPalo Alto Networks certifications or experienceExperience managing Active Directory, Multifactor Auth, Single Sign-On in a multi-tier web-application infrastructureDemonstrated experience managing teams in a technical, fast-paced environmentExposure to multi-cloud environments, including Azure or GCP What You'll Get Opportunity to lead transformative cloud security initiatives at a mission-driven organizationAccess to cutting-edge cloud technologies and a collaborative, remote-friendly work environmentComprehensive benefits, flexible time off, and career growth opportunitiesThe opportunity to work for an amazing, fast-growing software company leveraging a highly scalable cloud platformYou want to use your skills to make an impact in healthcare

Apply Now