Capital Health is the region's leader in providing progressive, quality patient care with significant investments in our exceptional physicians, nurses and staff, as well as advance technology. Capital Health is a five-time Magnet-Recognized health system for nursing excellence and is comprised of 2 hospitals. Capital Health Medical Group is made up of more than 250 physicians and other providers who offer primary and specialty care, as well as hospital-based services, to patients throughout the region.

Capital Health recognizes that attracting the best talent is key to our strategy and success as an organization.  As a result, we aim for flexibility in structuring competitive compensation offers to ensure we can attract the best candidates.

The listed minimum pay reflects compensation for a full-time equivalent (1.0 FTE) position. Actual compensation may differ depending on assigned hours and position status (e.g., part-time).

Minimum Pay:

Position Overview

SUMMARY 

The IT Cloud and Security Lead is a senior-level technical leader responsible for the hands-on execution, leadership, and continuous improvement of secure and scalable cloud infrastructure at Capital Health. With a primary focus on Microsoft Azure, this role guides cloud adoption efforts, implements infrastructure best practices, and mentors technical teams in cloud engineering and security operations. 

This position plays a critical leadership role in cloud transformation and Zero Trust implementation, working closely with architects, DevOps, and security teams to ensure cloud infrastructure aligns with organizational, security, and compliance requirements. 

MINIMUM REQUIREMENTS 

Education 

Required: Bachelor’s degree in Computer Science, Engineering, or related field; or equivalent experience 

Preferred: Master’s degree or advanced certifications in cloud architecture or cybersecurity 

Experience 

8+ years of progressive IT experience, including: 

3+ years designing and implementing enterprise cloud infrastructure (primarily Azure) 

2+ years leading cross-functional teams or initiatives in cloud or security engineering 

Hands-on experience with hybrid networking, cloud security, and automation practices 

Experience working in compliance-sensitive industries (e.g., healthcare, finance) 

KNOWLEDGE AND SKILLS 

Expert knowledge of Azure cloud services: VNets, Application Gateway, Azure Firewall, NSGs, Route Tables, DNS 

Practical experience with hybrid cloud networking: ExpressRoute, VPN, private endpoints 

Advanced skills in identity and access management: Azure AD, conditional access, RBAC, Entra ID 

Proficient in IaC and DevOps tooling: Terraform, Bicep, Azure DevOps, GitHub Actions 

Skilled in Microsoft Defender for Cloud, Key Vault, Azure Policies, Sentinel 

Strong understanding of Zero Trust enforcement in infrastructure and identity 

Knowledge of regulatory compliance frameworks (HIPAA, NIST, PCI-DSS, CIS Benchmarks) 

Demonstrated leadership, mentorship, and communication abilities 

PREFERRED CERTIFICATIONS 

Microsoft Certified: Azure Solutions Architect Expert 

Microsoft Certified: Cybersecurity Architect Expert 

Microsoft Certified: Azure Network Engineer Associate 

Microsoft Certified: Identity and Access Administrator Associate 

AWS Certified Solutions Architect – Professional 

ESSENTIAL FUNCTIONS 

Implement secure and resilient Azure cloud and hybrid infrastructure in line with enterprise standards 

Guide teams in the adoption of infrastructure-as-code, CI/CD, and cloud automation best practices 

Support the enforcement of cloud governance policies and configuration baselines 

Lead infrastructure reviews, performance optimization, and incident response support 

Embed Zero Trust principles across infrastructure and access models 

Drive the implementation of threat detection, monitoring, and alerting systems 

Collaborate across engineering, operations, and security teams to deliver secure infrastructure 

Mentor and coach team members on cloud best practices and technologies 

ADDITIONAL RESPONSIBILITIES 

Lead modernization and migration initiatives, including replatforming and optimization 

Assist with cloud security assessments and ensure timely remediation of findings 

Research and recommend tools and practices that improve resilience, scalability, and security 

Contribute to the ongoing development of cloud capability roadmaps and technical standards 

AREAS OF RESPONSIBILITY 

Azure and hybrid cloud infrastructure implementation 

Identity and access management and Zero Trust controls 

Infrastructure automation and platform standardization 

Operational cloud security, threat detection, and monitoring 

Cost optimization and resource management 

Technical mentoring and engineering team guidance 

KEY METRICS FOR SUCCESS 

Deployment of secure, resilient infrastructure with minimal downtime 

High adoption of automation and governance frameworks 

Improved configuration consistency and policy enforcement 

Reduction in cloud-related incidents and vulnerabilities 

Enhanced audit readiness and regulatory alignment 

Strong team engagement and delivery against project timelines 

Measurable cost savings through optimization efforts 

Offers are contingent upon successful completion of our onboarding process and pre-employment physical.  Capital Health will require all applicants to have an annual flu vaccine prior to start date, with the exception of individuals with medical and religious exemptions.

"Company will never ask candidates for social security numbers or date of birth during application phase. If you are asked for this information online, you may be a target for identity theft."

For benefit eligible roles, in addition to cash compensation, we provide a comprehensive and highly competitive benefits package, with a variety of physical health, retirement and savings, caregiving, emotional wellbeing, transportation, robust PTO plan, overtime to eligible roles, and other benefits, including "elective" benefits employees may select to best fit the needs and personal situations of our diverse workforce.

The pay rate listed is a good faith determination of potential base compensation that may be offered to a successful applicant for this position at the time of this job advertisement and may be modified in the future. When determining base salary and/or rate, several factors may be considered including, but not limited to location, years of relevant experience, education, credentials, negotiated contracts, budget, market data, and internal equity.  Bonus and/or incentive eligibility are determined by role and level.

The salary applies specifically to the position being advertised and does not include potential bonuses, incentive compensation, differential pay or other forms of compensation, compensation allowance, or benefits health or welfare.  Actual total compensation may vary based on factors such as experience, skills, qualifications, and other relevant criteria.