Associate Security Architect

The Information Technology (IT) team plays a key role in providing business enablement throughout ResMed. We are focused on application, infrastructure, and user productivity solutions, with innovation, efficiency and security. Our goal is providing customer oriented agile delivery, effective business partnership and state-of-the-art technology solutions.

Let’s talk about the Team

Resmed’s Enterprise Security Service team plays a pivotal role in enabling secure innovation across our connected health ecosystem. We partner with engineering, product, architecture and operations teams to embed security into every stage of the development lifecycle balancing protection with performance, compliance and user experience.

Let’s talk about the Role:

We’re looking for an Associate Security Architect to support the design of secure infrastructure and application architectures across our hybrid cloud environments. This role will focus on ensuring that public, private SaaS platforms and Resmed products are resilient, compliant, and aligned with Resmed’s security strategy. You’ll bring expertise in infrastructure, application, and API security helping shape secure design patterns for a modern, distributed enterprise.

Let’s talk about responsibilities:

• Collaborate with engineering and architecture teams to embed security by design in infrastructure, application, and integration patterns.

• Support Lead threat modeling and architecture reviews for high-impact systems, including APIs, web applications, and microservices.

• Define and promote secure development patterns, including application-layer protections (e.g., WAF, API gateways, secure SDLC, IaC scanning).

• Contribute to the implementation of zero trust principles across network, identity, and application layers.

• Develop and assess security controls leveraging technologies such as firewalls, ZTNA, SWG, segmentation, IDS/IPS, DNS security, and encryption.

• Support the development of standards and policies aligned with frameworks such as NIST, CIS, and ISO 27001.

• Stay current on emerging threats, cloud vulnerabilities, AI/ML risks, and evolving regulations relevant to digital health and patient data.

Let’s talk about you:

• 5+ years of experience in cybersecurity, cloud security, or DevSecOps roles, including architectural role.

• Strong understanding of secure infrastructure and application design in cloud-native environments (AWS, Azure, GCP).

• Experience with web application firewalls (WAFs), API security (OAuth, JWT) and secure SDLC practices.

• Hands-on experience with technologies like Kubernetes, Terraform, and scripting (Python, JavaScript).

• Familiarity with cloud security frameworks and controls: NIST, CIS Benchmarks, CSA-CCM, ISO 27017.

• Understanding of regulatory requirements such as HIPAA, GDPR, PCI DSS, and CCPA.

• Strong communication and collaboration skills, with the ability to influence both technical and business stakeholders.
  
  #LI-India

Joining us is more than saying “yes” to making the world a healthier place. It’s discovering a career that’s challenging, supportive and inspiring. Where a culture driven by excellence helps you not only meet your goals, but also create new ones. We focus on creating a diverse and inclusive culture, encouraging individual expression in the workplace and thrive on the innovative ideas this generates. If this sounds like the workplace for you, apply now! We commit to respond to every applicant.