The Information Technology (IT) team plays a key role in providing business enablement throughout ResMed. We are focused on application, infrastructure, and user productivity solutions, with innovation, efficiency and security. Our goal is providing customer oriented agile delivery, effective business partnership and state-of-the-art technology solutions.
Let’s talk about the team
At Resmed, the Enterprise Security team safeguards the systems, data, and technologies that enable our mission to improve lives through connected health. We collaborate across engineering, data science, enterprise architecture, and business units to embed security into everything we build.
Let’s talk about the role
We are seeking an experienced Security Architect, focused on the product and software development domain, to join our growing Secure Architecture team. In this role, you will design secure solutions for modern application architectures, APIs, and cloud-native systems, including AI/ML workloads. You will partner with cross-functional teams to embed security into solution designs, implement secure development practices, and align architecture with Resmed’s overall security strategy.
This role is ideal for someone who thrives on innovation, thinks like an adversary, and believes secure design is critical to scalable growth.
Key Responsibilities
Define and drive the implementation of Zero Trust Architecture (ZTA) principles across systems.
Develop and execute cybersecurity strategies that align with business objectives, compliance requirements, and regulatory standards.
Drive the secure adoption of AI/ML by defining architecture principles, risk management practices, and detection capabilities that protect AI systems and data.
Collaborate with architects, developers, and product managers to embed security into cloud, AI/ML, DevOps, CI/CD, data, and application architectures, ensuring secure design and implementation.
Lead and support security design reviews, threat modeling and risk assessments throughout the software development lifecycle (SDLC).
Create and maintain security reference architectures, policies, and standards aligned with industry frameworks (e.g., NIST CSF, ISO 27001, OWASP SAMM).
Qualifications & Experience
Bachelor’s degree in Computer Science, Information Security, Engineering, or a related field; advanced degree preferred.
10+ years of experience in information security, including 3+ years in security architecture, secure software design, or product security.
Proven experience designing and implementing secure architectures that incorporate Zero Trust principles, encryption, web application firewalls, data protection, network security, and API security.
Experience architecting and securing cloud-native environments across major providers (e.g., AWS, Azure, GCP, Alicloud), integrating security into CI/CD pipelines, containerized workloads, and application delivery workflows.
Hands-on expertise with Infrastructure as Code (IaC) tools such as Terraform and Kubernetes, and scripting.
Strong understanding of security frameworks and architecture methodologies such as NIST CSF, ISO 27001, OWASP SAMM, TOGAF, and SABSA.
Experience with threat modeling, design reviews, and risk assessments in complex environments.
Strong collaboration and communication skills, with the ability to align security with business and product goals.
Relevant certifications (e.g., CISSP, CCSP, CSSLP, SABSA) are a plus.
#LI-India
Joining us is more than saying “yes” to making the world a healthier place. It’s discovering a career that’s challenging, supportive and inspiring. Where a culture driven by excellence helps you not only meet your goals, but also create new ones. We focus on creating a diverse and inclusive culture, encouraging individual expression in the workplace and thrive on the innovative ideas this generates. If this sounds like the workplace for you, apply now! We commit to respond to every applicant.