Association of American Medical Colleges
Security Architect
Association of American Medical Colleges, Olympia, Washington, United States
# **Who We Are:**The Association of American Medical Colleges is a not-for-profit association dedicated to transforming health care by supporting the entire spectrum of medical education, medical research, and patient care conducted by our member institutions. We are dedicated to the communities we serve and steadfast in our goal to improve the health of all.At the AAMC, we are committed to supporting our employees with a comprehensive benefits package designed to promote well-being, professional growth, and work-life balance. Highlights include:The Security Architect leads the design and oversight of enterprise security architecture to protect organizational data, infrastructure, and member information. This role ensures security principles, best practices, controls, and frameworks are embedded into business systems, cloud services, and infrastructure in alignment with regulatory, compliance, and organizational requirements. It provides strategic leadership over data security architecture, including data classification, data protection controls, secure data flows, encryption, tokenization, masking, and access governance across the enterprise.This is a hands-on role that performs direct engineering activities across cloud and security platforms, including the implementation of cloud-native security controls, secure configuration of AWS and SaaS services, hardening of identity and access models (including role-based access controls (RBAC) and least privilege), and deployment of automated guardrails and security tooling. The position also conducts hands-on testing, validation, and tuning of cloud security services such as Cloud Security Posture Management, Cloud Infrastructure Entitlement Management, Cloud Workload Protection Platform, logging pipelines, and security detections.The role also converts best practices into formal security policies and standards. The Security Architect acts as a strategic partner and trusted advisor to IT leadership, providing guidance that balances security, compliance, and operational priorities by understanding problems or opportunities and delivering value-add solutions. This includes advising on the secure design of data repositories, analytics platforms, and integrations to ensure confidentiality, integrity, availability, lifecycle protection, and appropriate handling of sensitive information across both on-premises and cloud environments.Design and oversee enterprise security architecture:Ensure alignment with regulatory, compliance, and organizational requirements. Ability to map security requirements to the data lifecycle * Convert best practices into formal security policies, standards, and guidance documents.* Ensure policies support both operational needs and compliance requirements.* Cross-functional collaboration with Data Governance & Privacy* In support of data and records retention policies, knowledge of retention schedules and defensible deletion practices.* Understanding of secure archival and approved destruction methods.* **Required:** * * **8-10 years** of related work experience* Experience in security architecture, engineering, or related security disciplines.* Ability to help drive security strategy alignment* Ability to innovate and instigate change to manage organizational security architecture through threat assessment, management and standards implementation* Ability to be the senior specialist responsible for a strategic security architecture that focuses on organizational risk management, technical security architecture and data governance.* Ability to report on security risks and assume the role of champion for security architecture strategy* Ability to effectively collaborate across teams and develop a sphere of influence.Bachelor’s degree in Computer Science, Information Security, or related field; or equivalent work experience.**Preferred:** Master's degree in Computer Science, Information Security, or related field; or equivalent work experience.Strong knowledge of security frameworks (e.g., NIST CSF, AWS FSBP, TOGAF)The AAMC is a nonprofit association dedicated to improving the health of people everywhere through medical education, health care, medical research, and community collaborations. Its members are all 160 U.S. medical schools accredited by the Liaison Committee on Medical Education;
12 accredited Canadian medical schools; nearly 500 academic health systems and teaching hospitals, including Department of Veterans Affairs medical centers; and more than 70 academic societies. Through these institutions and organizations, the AAMC leads and serves America’s medical schools, academic health systems and teaching hospitals, and the millions of individuals across academic medicine, including more than 210,000 full-time faculty members, 99,000 medical students, 162,000 resident physicians, and 60,000 graduate students and postdoctoral researchers in the biomedical sciences. Through the Alliance of Academic Health Centers International, AAMC membership reaches more than 60 international academic health centers throughout five regional offices across the globe. Learn more at . #J-18808-Ljbffr
12 accredited Canadian medical schools; nearly 500 academic health systems and teaching hospitals, including Department of Veterans Affairs medical centers; and more than 70 academic societies. Through these institutions and organizations, the AAMC leads and serves America’s medical schools, academic health systems and teaching hospitals, and the millions of individuals across academic medicine, including more than 210,000 full-time faculty members, 99,000 medical students, 162,000 resident physicians, and 60,000 graduate students and postdoctoral researchers in the biomedical sciences. Through the Alliance of Academic Health Centers International, AAMC membership reaches more than 60 international academic health centers throughout five regional offices across the globe. Learn more at . #J-18808-Ljbffr