Enterprise Security Architect
Hearst
The Opportunity:
Homecare Homebase is seeking a hands-on, engineering-first Enterprise Security Architect to help secure and accelerate our modernization of our EHR platform into a cloud-native future. This role is ideal for a senior security-minded software architect who thrives at the intersection of secure-by-design architecture and real implementation. Someone who can define security patterns and also write code to make them real in our platform.
This role will partner closely with Architecture, Engineering, Platform, Product, and Compliance to embed security into how we build—not as a gate at the end, but as a repeatable set of guardrails, paved roads, and automation. This role will ensure security scales with modernization and delivery velocity using both traditional techniques and leading-edge AI technology.
What You Will Do:
-
Enterprise Security Architecture & Secure-by-Design Patterns
Define and maintain security reference architectures, standards, and reusable patterns for modern distributed systems and SaaS platforms.
Lead security design reviews for major platform changes, modernization initiatives, and new service development.
Create “secure defaults” that reduce risk while improving engineering throughput and consistency.
-
Secure Software Development Lifecycle (SSDLC) Enablement
Embed secure development practices into how teams plan, build, test, and ship software (AI & automation-first).
Partner with engineering teams to implement scalable guardrails in CI/CD (policy, validation, prevention) without slowing delivery.
Improve secure delivery practices including dependency risk management, secrets hygiene, and build/release integrity.
-
Threat Modeling & Risk Reduction
Drive threat modeling as a standard engineering practice for meaningful architecture changes and new feature development.
Ensure threats are translated into real mitigations (architecture decisions, code changes, and automated validation).
Help teams proactively reduce risk by identifying trust boundaries, data flows, and attack paths early.
-
Cloud-Native & Platform Security (Azure + Kubernetes)
Establish secure patterns for containerized systems: image standards, runtime protections, network segmentation, and least-privileged service access.
Partner with platform engineering on Kubernetes and Azure security posture, including identity boundaries and secure workload patterns.
Build scalable guardrails that work across environments and teams—security that grows with the platform.
-
Security Engineering (You Will Write Code)
Build shared libraries, templates, SDKs, and platform components that make secure development the easiest path.
Contribute directly to production services and platform capabilities when needed to deliver secure patterns quickly.
Automate security controls and reduce repetitive work through tools and developer experience improvements.
-
Cross-Functional Leadership & Audit Closure
Drive alignment across Architecture, Engineering, Compliance, and Product to close open audit issues and prevent recurrence.
Communicate clearly: write actionable guidance, design docs, and decision records that engineers actually use.
Serve as a trusted security partner—supporting teams with speed, clarity, and pragmatism.
What You Will Bring:
- 8+ years of experience in software engineering, including designing and building large-scale systems.
4+ years leading application security, product security, or enterprise security architecture in modern software environments.
Strong development experience in C# / .NET with a track record of shipping real software (not just reviewing it).
Practical expertise with Linux, Docker, Kubernetes, and cloud-native architecture patterns (Azure preferred).
Experience implementing secure development practices and operationalizing them across teams.
Working knowledge of threat modeling practices and how to integrate them into the SDLC.
Ability to influence engineering orgs through technical credibility, collaboration, and clear decision-making.
Experience/Exposure to leading AI based SDLC practices
About Us:
Founded in 1999, Homecare Homebase, a subsidiary of Hearst Corporation is a market leader in healthcare software development providing mobile cloud-based solutions for clinical, operational, and financial improvement of home care, hospice and personal care agencies throughout the United States. Our software enables real time solutions for wireless information exchange and communication between office staff, field staff, and physicians.
Our success is fueled by our talented teams that are driven by their passion to make a difference in patient care. Our employees work in a culture that is guided by CARES values: Care, Act, Respect, Excel, and Smile (a positive attitude). If you want to work in a role where your skills have a direct influence on patient care, Homecare Homebase is the next step in your career. We are hiring team members who want to make a difference.
What You Can Expect from Us:
At Homecare Homebase, we don't just help our clients succeed; we help our employees succeed. Competitive pay, robust benefits, and professional development opportunities are a few of the many reasons that Homecare Homebase is a great place to build your career.
Our Team Members Also Enjoy:
Meaningful work. Our employees often tell us that their work gives them a sense of purpose because it makes a difference in the lives of clinicians and homecare staff, as well as the patients they serve.
Leaders who care. President Luke Rutledge has continued the mission to create a culture that cares – one that appreciates and takes good care of its people. As a result, being an employee of HCHB feels like being a member of a big family.
Flexibility. We value work-life balance because we know that happy employees create happy clients. That's why Homecare Homebase offers both full and part-time career opportunities to fit life's unique demands.
A company that gives back. Every year, Homecare Homebase proudly supports numerous charitable fundraising initiatives that align with our mission of empowering exceptional care and helping others in need.
Sound like a good fit? We’d love to hear from you.
This position does not provide sponsorship. All applicants should have the right to work in the US without immigration sponsorship.
Seeking a senior security-minded software architect who thrives at the intersection of secure-by-design architecture and real implementation.