Senior Enterprise Security Architect - Azure Cloud & Data Center

Senior Enterprise Security Architect - Azure Cloud & Data Center

Job Intro:

We are seeking an experienced Senior Enterprise Security Architect to lead platform security initiatives across Azure cloud and on-premises data center environments. This individual will play a critical role in developing and executing security strategy, architecture, tooling, and risk management across all platform security domains. The ideal candidate has deep hands-on technical and strategic experience with enterprise architecture in complex hybrid environments, excels in cross-functional collaboration, and demonstrates leadership in aligning security controls with business objectives.

Essential Functions:

Strategy & Leadership

• Develop and drive a holistic Platform Security Strategy for Azure Cloud and Data Center environments.
• Lead roadmap planning and long-term security initiatives to improve architectural resilience and risk reduction.

Secure Architecture & Design

• Define governance architecture for cloud and datacenter platform security, ensuring scalable and secure system design.
• Collaborate with Product Security to align platform controls with product security requirements.
• Perform Security Architecture reviews for all platform related changes including to support product development, SECDEVOPS, platform enhancements, etc.

Standards & SDLC

• Define and lead DevSecOps strategies, embedding platform security throughout the product development lifecycle across all platforms.
• Drive adoption of security automation, secure coding practices, and CI/CD pipeline integration.

Security Reviews & Threat Modeling

• Lead architecture and design reviews, threat modeling exercises, and platform security assessments across the enterprise.
• Establish and enforce platform-level threat modeling standards and processes.

Security Controls & Implementation

• Define, document, and manage security control frameworks for platform technologies.
• Ensure alignment and integration of controls across all security domains (IAM, network, data, compute, etc.).

DevSecOps & Security Tooling

• Drive tooling strategy and define configuration requirements for all platform security tooling, including TVM scanning, container scanning, IaaS scanning, policy enforcement, secrets management.
• Define firewall configuration requirements.

Reusable Patterns & Architecture Principles

• Develop and promote secure architecture design patterns and reusable components to improve consistency and reduce development time.

Risk Management

• Monitor platform-level security posture and prioritize remediation of identified risks.
• Perform risk assessments across all security domains to identify baseline gaps.

Vulnerability Management

• Establish and maintain vulnerability remediation guidelines and SLAs across platform teams.

Platform Resource Enablement

• Champion a culture of security through training, enablement programs, and platform team coaching.

Incident Response Support

• Lead or support Root Cause Analysis (RCA) during platform-related incidents and participate in escalation and response efforts.
• Serve as the primary security architecture and platform security point of contact for the Managed Detection and Response (MDR) provider, overseeing the relationship and ensuring alignment with enterprise platform security requirements.
• Ensure security findings, alerts, and recommendations identified by the MDR provider are appropriately triaged, tracked, and actioned by internal platform and operations teams in accordance with defined SLAs.

Cross-Domain Security Responsibilities

• Spearhead the development and maturation of the Threat Intelligence program in partnership with the MDR provider and internal stakeholders, ensuring threat intelligence outputs are actionable and inform platform security architecture, threat modeling, and risk prioritization.

• Conduct technical risk assessments across legacy core security domains and functions:

• Cyber Security Architecture & Engineering

• Cyber Threat Operations & Security Operations

• Identity & Access Management (IAM)

• Threat & Vulnerability Management (TVM)

• Security Operations (security tooling, configuration, monitoring)

• Develop and implement:

• Hardening standards for cloud and datacenter platforms

• Controls and baselines across the full technology stack

• Reporting and oversight mechanisms to provide visibility into platform security posture

Position Requirements:

• 10+ years of experience in Enterprise Security Architecture, with strong domain expertise in Azure and Data Center platforms.

• Proven leadership in security strategy development, architectural governance, and roadmap execution.

• Deep understanding of security controls, frameworks, and regulations (e.g., NIST, ISO, CIS Benchmarks, SOC 2, HIPAA, PCI).

• Strong hands-on experience with:

• Azure security services (e.g., Defender, Sentinel, Key Vault, PIM, etc.)

• DevSecOps toolchains (e.g., Terraform, Ansible, Snyk, Veracode, Aqua, etc.)

• Ability to independently prioritize, triage, and execute platform-level risk remediation efforts.

• Experience collaborating with cross-functional teams including product security, engineering, IT, compliance, and executive leadership.

Required Certifications

• Microsoft Certified: Azure Solutions Architect Expert
• CISSP, SABSA, or GIAC Enterprise Security Architect (GSEA)
• Certified Cloud Security Professional (CCSP)

Compensation Range: $150,000- $180,000. Range can flux dependent on experience, education/training, etc.

Additional employee benefits at Concord Technologies:

• 401K plan w/ 6% company match (vests immediately)

• Flex-Time off + sick time

• 10 company holidays

• Full suite of health benefits (Medical, Dental, Vision)- employee only coverage covered at 100% (no employee cost). For employees + dependents, Concord covers 60% of premiums.

• Voluntary insurance options:

• Pet insurance

• Employee Life and AD&D

• Spousal Life and AD&D

• Child Life and AD&D

• Paid Parental Leave program

• Free unlimited ORCA card (Seattle area residents)

• Employee Rewards and Recognition through NectarHR

• Unlimited access to Udemy for Business

About Concord Technologies:

Our fax-delivery suite of products allows our clients to exchange millions of patient information, insurance and other documents safely, swiftly and securely every business day. Concord's use of Artificial Intelligence, analytics, and other cutting-edge technology also analyzes the data being transferred within a fax, then delivers it into the right inboxes and workflows, fundamentally changing how data moves.

More than 2,300 healthcare organizations, financial providers, and companies in other equally document-intensive industries trust Concord to deliver their confidential and sensitive information. We care about our customers, and with a retention rate of more than 98%, it's clear they love the service and value we provide.

We have been in business since 1996 and growing faster than ever. Our products are getting smarter, our customers are getting bigger, and our user community is exploding. To continue meeting market demand and anticipating our customers' needs, we are expanding our offerings. That means assembling a world-class team to take us through this next phase of growth. We hope you'd like to join us!

Concord Technologies is an Equal Employment Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information.