Security Architect

Lyric is an AI-first, platform-based healthcare technology company, committed to simplifying the business of care by preventing inaccurate payments and reducing overall waste in the healthcare ecosystem, enabling more efficient use of resources to reduce the cost of care for payers, providers, and patients. Lyric, formerly Claims Xten, is a market leader with 35 years of pre-pay editing expertise, dedicated teams, and top technology.

Lyric is proud to be recognized as 2025 Best in KLAS for Pre-Payment Accuracy and Integrity and is HI-TRUST and SOC2 certified, and a recipient of the 2025 CandE Award for Candidate Experience. Interested in shaping the future of healthcare with AI? Explore opportunities /careers and drive innovation with #You To The Power Of AI.

• Actively participate in various business and enterprise architecture forums to champion cloud security interests and provide expertise on security-related issues
• Create and maintain security strategy plans and roadmap,; influence the planning and execution of the roadmap with measurable benchmarks to show progress (or deficiencies requiring additional attention)
• Develop and maintain Security Architecture processes and artifacts that enable the enterprise to implement security capabilities that are aligned with the business, technology, and threat drivers
• Serve as the subject matter expert in secure cloud technology design, development, and implementation in support of products, solutions, and business functionality enablement
• Establish architecture design principles and practices to improve performance, effectiveness, security, compliance, and scalability of solutions
• Partner with cross-functional teams to assess cloud security risks by establishing security architecture with a focus on threat detection, security control enforcement, and incident response
• Understand the offerings within Amazon Web Services (AWS) as well as other leading cloud service providers
• Based on business requirements, plan and design cloud-native architecture that adheres to cloud security frameworks, standards, and best practices
• Determine baseline security configuration standards for operating systems (e.g., OS Hardening), network segmentation, web application firewall, mobile devices, etc.
• Review security technologies, tools, and services, and make recommendations to the broader security team for their use, based on security policy and procedures

• Minimum of ten (10) years of experience with hands‑on security architecture and/or engineering
• Minimum of five (5) years of experience with Amazon Web Services (AWS) and Microsoft (MS) Azure

• Bachelor’s degree in Computer Science, Information Systems, or equivalent practical experience
• CISSP, CISA, CISM, CCSP, or other relevant security‑related designation(s)
• AWS Security Certification, AWS Solutions Architect Certifications
• Azure Security Engineer, Azure Cybersecurity Architect Certifications
• Experience with SaaS, IaaS, and PaaS architectural solutions within Amazon Web Services, Microsoft Azure, and other cloud providers
• Experience in Cloud, Dev Sec Ops , Container Security, IAM patterns, WAF/CDN/DDoS services, security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies
• Experience in security architecture methodologies like NIST security framework and HITRUST standards, best practices like Mitre Att@ck framework, CIS benchmarks, and defense‑in‑depth
• Experience with data protection, cryptography, key management, identity, and access management (IAM), network security within SaaS, IaaS, PaaS, and other cloud environments
• Experience working with cloud security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies
• Broad knowledge of traditional security controls and technologies, such as Security Information and Event Management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), public key infrastructure (PKI), antivirus and firewalls, in addition to newer offerings such as endpoint detection and response (EDR), threat intelligence platforms, security…