About the Role The Security Architect is a technical, hands‑on senior role responsible for designing and implementing robust security architectures across Tebra’s hybrid and cloud environments. You will drive the strategy to strengthen our overall security posture, ensure compliance with SOC2, HITRUST, and PCI DSS, and proactively manage risk. You will embed security into the DNA of our platform, shifting left through DevSecOps integration and enabling engineering teams to build securely by default in GCP. Key Responsibilities Own the Cloudflare ecosystem strategy and execution, including architecting WAF rules, DDoS protection, Bot Management, and writing custom edge logic using Cloudflare Workers (JS/TS). Lead the design of security controls within Google Cloud Platform, specifically for Vertex AI, BigQuery, VPC Service Controls, IAM, and Security Command Center. Architect and verify security for GKE environments, including container hardening, securing Helm charts, and implementing runtime security policies. Embed security into CI/CD pipelines (Cloud Build, GitHub Actions) using Infrastructure as Code (Terraform) and orchestrate security workflows using Workato and custom Python API endpoints. Lead threat modeling for critical applications and feature releases, proactively identifying design‑level flaws before deployment. Mentor engineers on secure coding standards and elevate the organization’s understanding of cloud security. Lead the technical response to complex security incidents, using SQL/KQL to query logs and forensics data for rapid recovery and root‑cause elimination. Conduct regular risk assessments to identify control gaps and ensure technical alignment with SOC2, HITRUST, and PCI DSS. Your Professional Qualifications 7+ years of experience in Information Security with deep hands‑on expertise in network architecture. Master’s degree in Cybersecurity required; GCP Professional Cloud Security Engineer certification highly preferred. Deep experience securing Google Cloud Platform, including specific experience with Vertex AI services and BigQuery analytics controls. Proven ability to manage and tune Cloudflare (WAF/Zero Trust) and CrowdStrike Falcon (EDR/XDR). Expert proficiency in Python for building custom automation APIs and Workato for orchestration; working knowledge of HCL for Terraform, JavaScript/TypeScript for Cloudflare Workers, SQL for BigQuery analysis, and RegEx for custom WAF rule creation. Strong understanding of Kubernetes (GKE) security, including node pools, network policies, and securing Helm deployments. Solid understanding of risk assessment methodologies (NIST RMF) and mandatory compliance frameworks (SOC2, HITRUST, PCI DSS). Legal & Equal Opportunity Statement NOTE: Tebra is an equal opportunity employer. All applicants will be considered for employment without attention to age, race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status. California residents who apply or are recruited for a job with us: please carefully review our California‑specific Privacy Notice under the California Consumer Protection Act here: #J-18808-Ljbffr