Senior Architect, Information Security

Innovation starts from the heart. Our Advanced Innovation & Technology (AI&T) teams harness the imagination, courage, and resourcefulness to think beyond what’s currently possible, and create solutions for patients many years into the future. If you’re an early-stage innovator, then Edwards AI&T team is the place for you to take the next steps in your career. We’ll give you the tools and resources you need to create groundbreaking innovations that shape the future of structural heart technology.

How you will make an impact:

• Provide solution designs and security architecture with strategic guidance for enterprise-level security initiatives, systems integrations, and tools, delivering scalable and secure workloads that support business needs.

• Develop and maintain information security best practices and architectural models to ensure compliance with enterprise-wide security policies and standards.

• Serve as the technical lead for enterprise-class security initiatives, including the implementation of multiple cybersecurity controls, solutions, processes, and functions.

• Design and maintain secure architecture frameworks, patterns, and standards.

• Act as a business liaison and trusted security advisor for multiple business units.

• Partner with customers throughout the project delivery lifecycle, including project management, architecture design, installation, configuration, and documentation.

• Stay current on the cybersecurity threat landscape and emerging technologies to proactively improve Edwards’ security posture.

• Develop cybersecurity methodologies and frameworks to ensure services and processes are repeatable, consistent, and standardized.

• Design, document, and continuously improve key security processes and services.

• Communicate complex security concepts clearly in business-friendly language.

• Perform other duties as assigned by leadership.

What you'll need (Required):

Bachelor’s degree in a related field with 8 years of experience in information security or a related discipline, or equivalent work experience based on Edwards criteria.

What else we look for (Preferred):

• Experience designing secure enterprise architectures, including cloud infrastructure, secure data access patterns, telemetry, monitoring, and evaluation capabilities.

• Understanding of medical device infrastructure security, including securing connected devices in compliance with FDA cybersecurity guidelines.

• Understanding of cloud security constructs such as Zero Trust frameworks, encryption at rest/in transit, network segmentation, and compliance controls (e.g., SOC 2, ISO 27001, NIST CSF).

• Hands-on experience implementing and managing Identity providers (e.g., Entra ID, OKTA, Auth0) including identity governance across hybrid and multi-cloud environments.

• Hand-on expertise in AWS cloud security, strong understanding of designing of cloud-native security architectures aligned with industry best practices.

• Experience in at least three cybersecurity domains (e.g., platform security, application security, network security, infrastructure, cloud security, data security, and identity and access management).

• Strong understanding of emerging technologies, including integrating generative AI security controls into enterprise solutions.

• Proven experience designing secure architectures across multiple vendor platforms.

• Knowledge of common threats and mitigation frameworks such as MITRE ATT&CK and OWASP Top 10.

• Understanding of supply chain security risks and mitigation strategies.

• Experience with threat modeling methodologies, such as STRIDE.

• Experience with secure DevOps practices, including infrastructure as code (Terraform, CloudFormation, Bicep).

• Relevant certifications preferred (e.g., CEH, CISM, CISSP, AWS, Azure).

• Experience implementing industry best practices and standards (e.g., NIST, ISO 2700x, SANS).

• Demonstrated ability to lead technical discussions and influence technical decisions.

• Strong analytical and problem-solving skills to identify and mitigate security risks.

• Deep understanding of core cybersecurity principles.

• Experience in creating clear, high-quality technical documentation.

• Excellent verbal and written communication skills with a strong customer focus.

• Ability to interact professionally with all levels of the organization and escalate issues appropriately.

• Ability to manage competing priorities in a fast-paced environment.

• Strong attention to detail.

• Effective organizational and time management skills.

Aligning our overall business objectives with performance, we offer competitive salaries, performance-based incentives, and a wide variety of benefits programs to address the diverse individual needs of our employees and their families.

For California, the base pay range for this position is $145,000 to $205,000 (highly experienced).

The pay for the successful candidate will depend on various factors (e.g., qualifications, education, prior experience).  Applications will be accepted while this position is posted on our Careers website.  

Edwards is an Equal Opportunity/Affirmative Action employer including protected Veterans and individuals with disabilities.

COVID Vaccination Requirement

Edwards is committed to protecting our vulnerable patients and the healthcare providers who are treating them. As such, all patient-facing and in-hospital positions require COVID-19 vaccination. If hired into a covered role, as a condition of employment, you will be required to submit proof that you have been vaccinated for COVID-19, unless you request and are granted a medical or religious accommodation for exemption from the vaccination requirement. This vaccination requirement does not apply in locations where it is prohibited by law to impose vaccination.