Jobs · himalayas
Security Architect
Northwind Robotics · United States · Posted 12d ago
About the role
Design and implement security architectures for Northwind Robotics's hybrid and cloud environments.
Northwind Robotics only initiates contact with candidates via email from an official Northwind Robotics email address (@ tebra.com , @ patientpop.com , or @ kareo.com ) or through our applicant tracking system, Greenhouse. We will only ask you to provide sensitive personal information through our official application portal — not via social media or text message. We do not conduct interviews via instant messaging. About the Role The Security Architect is a technical, hands-on senior role responsible for designing and implementing robust security architectures across Northwind Robotics ’s hybrid and cloud environments. You will drive the strategy to strengthen our overall security posture, ensure compliance (SOC2, HITRUST, PCI DSS), and proactively manage risk. You will have the unique opportunity to embed security into the DNA of our platform, shifting left through DevSecOps integration and enabling engineering teams to build securely by default in GCP. Key Responsibilities Cloudflare & Edge Defense: Own the strategy and execution for the Cloudflare ecosystem to secure the network edge. This includes architecting WAF rules (using RegEx ), DDoS protection, Bot Management, and writing custom edge logic using Cloudflare Workers (JS/TS) . GCP Security Architecture: Lead the design of security controls within Google Cloud Platform, specifically for Vertex AI , BigQuery , VPC Service Controls, IAM, and Security Command Center. Kubernetes & Container Security: Architect and verify security for GKE environments, including container hardening, securing Helm charts, and implementing runtime security policies. DevSecOps & Automation: Embed security into CI/CD pipelines (Cloud Build, GitHub Actions) using Infrastructure as Code ( Terraform ). Orchestrate security workflows using Workato , building custom Python API endpoints to expose internal security logic to the platform. Threat Modeling & Risk: Lead threat modeling for critical applications and feature releases, proactively identifying design-level flaws before deployment. Mentorship & Culture: Be a role model for security best practices; mentor engineers on secure coding standards and up-level the organization’s understanding of cloud security. Incident Response: Lead the technical response to complex security incidents, using SQL/KQL to query logs and forensics data to ensure rapid recovery and root cause elimination. Governance: Conduct regular risk assessments to identify control gaps and ensure technical alignment with SOC2, HITRUST, and PCI DSS requirements. Your Professional Qualifications Experience: 7+ years of experience in Information Security with deep hands-on expertise in network Architecture. Education & Certifications: Master’s degree in Cybersecurity required. GCP Professional Cloud Security Engineer certification is highly preferred. GCP & AI Depth: Deep experience securing Google Cloud Platform, including specific experience with Vertex AI services and BigQuery analytics controls. Core Security Stack: Proven ability to manage and tune Cloudflare (WAF/Zero Trust) and CrowdStrike Falcon (EDR/XDR). Technical & Automation Fluency: Expert proficiency in Python for building custom automation APIs and Workato for orchestration. Working knowledge of HCL for Terraform code review, JavaScript/TypeScript for Cloudflare Workers, SQL for BigQuery analysis, and RegEx for custom WAF rule creation. Kubernetes Mastery: Strong understanding of Kubernetes (GKE) security, including node pools, network policies, and securing Helm deployments. Compliance: Solid understanding of risk assessment methodologies (NIST RMF) and mandatory compliance frameworks (SOC2, HITRUST, PCI DSS). (For Recruiter use only) We are dedicated to attracting and retaining top talent with competitive and fair compensation. For this position, this range reflects our Zone 1 (National Average) pay band. Your specific compensation is thoughtfully determined by your experience, qualifications, the specific requirements of the role, and your Geo Zone. Our geo-zone system ensures your pay is competitive for your location, recognizing varying costs of labor across regions. Our four geo zones are designed to reflect this: Zone 1: National Average Zone 2: Moderately Higher Cost Regions Zone 3: High-Cost Regions Zone 4: Lower-Cost Regions Beyond base compensation, Northwind Robotics offers eligible employees the opportunity for variable pay and a robust benefits package, reflecting our commitment to your overall well-being. In compliance with California pay transparency laws, the specific compensation range applicable to your Geo Zone will be shared during your initial talent screen. Zone 1 (National Average) $178,500—$203,500 USD About Northwind Robotics Northwind Robotics is the only all-in-one EHR+ platform built exclusively for independent healthcare practices. Designed to replace the clunky, fragmented tools built for corporate systems, Northwind Robotics connects EHR software, billing, automation, telehealth solution, and marketing — so providers can spend less time on admin and more tim
Read the full posting on himalayas →
FAQ
Is the Security Architect role at Northwind Robotics remote?+
This Security Architect position is listed as remote (United States).
What is the salary for the Security Architect role at Northwind Robotics?+
The listing states Estimated 100k-231k USD.
What seniority level is this Security Architect role?+
This is a senior level position.
How do I apply for the Security Architect role at Northwind Robotics?+
Use the "Apply on himalayas" button to open the original posting on himalayas, where you can submit your application directly to Northwind Robotics.