Security Architect; Cloud Security & Incident Response

Staff Security Architect (Cloud Security & Incident Response)

Job Category : IT

Requisition Number : STAFF
001642

• Posted :
  May 12, 2026
• Full-Time
• Hybrid

Texas 1
PCCA
9901 S. Wilcrest Dr.
Houston, TX 77099, USA

PCCA is seeking a Staff Security Architect to serve as a hands‑on security architecture and cloud security engineering leader. This role partners closely with Enterprise Architecture, Dev Ops, Engineering, and Infrastructure teams to design and implement secure‑by‑default patterns—with a strong emphasis on Azure cloud deployments, identity and access management, and Dev Sec Ops . The role also leads cybersecurity incident response across Precision Health Holdings' operating companies as needed;

during active incidents, incident leadership becomes the top priority.

• Design and evolve PHH/PCCA security architecture standards, reference architectures, and security‑by‑default guardrails for cloud and hybrid environments.
• Partner with Dev Ops and Engineering teams to secure Azure deployments (networking, identity, compute, data, and platform services).
• Define secure patterns for CI/CD and Infrastructure‑as‑Code (IaC) pipelines, including policy‑as‑code and automated security controls.
• Architect identity solutions leveraging OAuth2 / OpenID Connect (OIDC), least‑privilege access, and strong authentication mechanisms.
• Drive Zero Trust architecture initiatives across PHH/PCCA and its operating companies, including segmentation, device/user trust evaluation, and conditional access.
• Implement and tune cloud security controls (e.g., Azure Policy, Defender for Cloud, logging/alerting) and integrate telemetry into centralized monitoring/SIEM.
• Perform security design reviews and threat modeling for new systems, integrations, and major changes; document risks and recommended mitigations.
• Develop pragmatic security requirements and controls aligned to business risk and regulatory needs; help teams implement them efficiently.
• Create implementation‑ready artifacts (runbooks, diagrams, reference configs) and provide hands‑on assistance during builds and migrations.

• Lead technical incident response across PHH operating companies, coordinating containment, eradication, and recovery activities.
• Triage security events to determine whether incidents can be handled in‑house or require escalation/engagement of the virtual CISO (vCISO) and/or external partners.
• Serve as a technical incident commander: manage timelines, coordinate responders, drive decision‑making, and ensure clear communications to stakeholders.
• Conduct root cause analysis and lead post‑incident reviews to drive preventive improvements (architecture, controls, detection, and process).
• Maintain and improve incident response playbooks, tooling, and escalation paths across subsidiaries to ensure consistent execution.

Equal Opportunity Employer

This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.