Senior Principal Cloud Security Architect

We anticipate the application window for this opening will close on - 26 May 2026

At MiniMed, you can begin a lifelong career of exploration and innovation, while helping make a difference in the lives of people living with diabetes around the globe. You'll lead with purpose, breaking down barriers to innovation for a more connected, compassionate world.

About the Role

The Senior Principal Cloud Security Architect is the single-threaded owner of cloud security architecture, standards, and control design across cloud environments, with a primary focus on AWS and support for Azure and Google Cloud Platform (GCP). This role defines and enforces security guardrails, reference architectures, and control frameworks that ensure cloud platforms are secure-by-default, auditable, and aligned with regulatory and enterprise risk requirements.

This is a control-plane role, not an operational security role. The architect owns what secure looks like and ensures those standards are implemented through Platform Engineering and enforced through automation and governance mechanisms. The role partners closely with Cloud Platform Engineering, Cloud Operations, and Cybersecurity to drive consistent, scalable, and enforceable security across all cloud environments.

Responsibilities may include the following and other duties may be assigned.

Security Architecture & Standards

• Define and own cloud security architecture and standards acrossAWS, with aligned patterns forAzureandGCP.

• Establish secure-by-default reference architectures covering identity, network segmentation, encryption, logging, and workload isolation.

• Develop and maintain security guardrails, patterns, and blueprints that are implemented through platform services.

Governance, Controls & Enforcement

• Define security control frameworks and ensure alignment with regulatory, audit, and enterprise risk requirements.

• Partner with Platform Engineering to implement controls aspolicy-as-code, guardrails, and automated enforcement mechanisms.

• Establish and govern exception processes, including risk acceptance, time-bound approvals, and remediation tracking.

Identity & Access Architecture

• Define identity and access management (IAM) standards including role design, least privilege access, federation, and service-to-service authentication.

• Ensure consistent identity patterns across AWS, Azure, and GCP aligned to enterprise identity providers and zero trust principles.

• Partner with Identity and Security teams to integrate cloud platforms into enterprise IAM and IGA systems.

Network & Data Security Architecture

• Define network segmentation, traffic inspection, and secure connectivity patterns within and across cloud environments.

• Establish standards for data protection, including encryption, key management, data classification, and data residency controls.

• Ensure consistent implementation of security controls for ingress, egress, and east-west traffic.

Observability, Detection & Response Enablement

• Define requirements for logging, monitoring, and detection across cloud platforms, ensuring auditability and security visibility.

• Partner with Security Operations and Cloud Operations to ensure detection capabilities are actionable and aligned with incident response processes.

• Ensure security telemetry is consistently captured and integrated into enterprise monitoring and SIEM platforms.

Platform & Product Enablement

• Work with Platform Engineering to translate security standards into reusable platform capabilities and default configurations.

• Ensure security controls are embedded into account provisioning, infrastructure templates, and CI/CD pipelines.

• Enable product teams to inherit security controls through platform consumption rather than custom implementation.

Risk, Audit & Compliance

• Support audits, regulatory reviews, and control assessments by providing clear documentation and evidence of control design and enforcement.

• Reduce risk through preventive controls and automated enforcement rather than reactive remediation.

• Partner with Cybersecurity and Risk teams to align cloud security posture with enterprise standard

Required Knowledge and Experience:

Requires 10+ years of experience with a bachelor's degree or 8+ years of experience with an advanced degree or 12+ years of experience with a high school diploma or equivalent.

Preferred Experience:

• 10+ years of experience in cloud security, cloud architecture, or cybersecurity engineering roles.

• Deep expertise inAWS security architecture, with working knowledge ofAzureand/orGCPsecurity models.

• Strong understanding of identity and access management, network security, encryption, and cloud-native security services.

• Experience designing and implementing security controls ininfrastructure-as-codeandpolicy-as-codeframeworks.

• Proven ability to define and enforce security standards across large-scale, multi-account or multi-project environments.

• Experience operating in regulated or audit-heavy environments.

• Experience with cloud security posture management (CSPM) platforms and automated control enforcement.

• Familiarity with enterprise identity systems (e.g., federated identity, SSO, IGA platforms).

• Experience supporting multi-cloud or hybrid cloud environments.

• Knowledge of compliance frameworks (e.g., HIPAA, SOC 2, ISO 27001) and their application in cloud environments.

• Relevant certifications such asAWS Security Specialty,Certified Cloud Security Professional (CCSP), or equivalent.

The base salary range is applicable across the United States, excluding Puerto Rico and specific locations in California. The offered rate complies with federal and local regulations and may vary based on factors such as experience, certification/education, market conditions, and location. Compensation and benefits information pertains solely to candidates hired within the United States (local market compensation and benefits will apply for others).

Physical Job Requirements

The above statements are intended to describe the general nature and level of work being performed by employees assigned to this position, but they are not an exhaustive list of all the required responsibilities and skills of this position.

The physical demands described within the Responsibilities section of this job description are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. For Office Roles: While performing the duties of this job, the employee is regularly required to be independently mobile. The employee is also required to interact with a computer and communicate with peers and co-workers. Contact your manager or local HR to understand the Work Conditions and Physical requirements that may be specific to each role.

Benefits & Compensation

MiniMed offers a competitive salary and flexible benefits package

At MiniMed, we put people first. A commitment to our employees lives at the core of our values: We recognize their contributions. They share in the success they help create. We offer a wide range of benefits, resources, and competitive compensation plans designed to support you at every stage of your career and life.

Salary ranges for U.S (excl. PR) locations (USD):$141,600.00 - $212,400.00

This position is eligible for a short-term incentive called the Short Term Incentive (STI).

At MiniMed, we are committed to supporting the well-being and financial security of our employees. Regular employees working 20 or more hours per week are eligible for a robust benefits package, including health, dental, and vision insurance, as well as access to a Health Savings Account, Healthcare Flexible Spending Account, life insurance, long-term disability leave, and a dependent daycare spending account. In addition, all regular employees enjoy incentive plans, a 401(k) plan with company match, short-term disability coverage, paid time off and holidays, participation in our Employee Stock Purchase Plan, and access to our Employee Assistance Program. Eligible employees may also benefit from our Non-qualified Retirement Plan Supplement and Capital Accumulation Plan, subject to IRS minimum earnings requirements. Please note that "regular employees" refers to those who are not temporary staff, such as interns, and some benefits may not apply to employees in Puerto Rico.

For further details about our comprehensive benefits, we encourage you to visit the link below.

MiniMed Benefits ( Overview

About MiniMed

MiniMed is a full-stack insulin delivery company dedicated to supporting people living with diabetes through every step of their journey - when and how they need it. For more than 40 years, we've been committed to redefining what's possible: intelligent dosing systems designed for real life, predictive insights that stay a step ahead, and always on support when it's needed most. At the heart of everything we do is a simple Mission: to make every day a better day for people with diabetes.

Learn more about our business, and our mission here ( .

It is the policy of MiniMed to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, familial status, membership or activity in a local human rights commission, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state, or local law. In addition, MiniMed will provide reasonable accommodations for qualified individuals with disabilities.

If you are applying to perform work for MiniMed in any position which will involve performing at least two (2) hours of work on average each week within the unincorporated areas of Los Angeles County, you can find here ( a list of all material job duties of the specific job position which MiniMed reasonably believes that criminal history may have a direct, adverse and negative relationship potentially resulting in the withdrawal of a conditional offer of employment. MiniMed will consider for employment qualified job applicants with arrest or conviction records in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.