Architect - Information Security/Data Privacy (Memphis, TN)

Company: St. Jude Children’s Research Hospital
Location: Memphis
Posted on: April 1, 2026

Job Description:

At ALSAC you do more than make a living; you make a difference. We like people who are different…because we’re different, too. As one of the world’s most iconic and respected nonprofits, we know what it’s like to stand out. That’s why we’re looking at you. Your background, perspective, and desire to make an impact set you apart. As we work to help St. Jude cure childhood cancer, we're calling on the game-changers, innovators and visionaries to join our family. Not just for the kids of St. Jude, but also for you. Because at ALSAC, we develop and celebrate our employees. So, bring your whole, authentic self and become part of our shared mission: Finding cures. Saving children.® Job Description We are seeking a visionary Information Security & Data Privacy Architect to join our cybersecurity leadership team and shape the future of secure innovation across the enterprise. Reporting to the Director of Information Security , this senior role is responsible for designing resilient, scalable, and business?centric security architectures that protect the organization’s data and systems—while empowering the business to operate, grow, and innovate. This position partners across ITS, enterprise architecture, cloud engineering, application development, security operations, internal audit, legal, and compliance. The ideal candidate is both a strategist and a hands-on expert—deeply technical, forward?thinking, and motivated by solving complex security and privacy challenges. What You’ll Do Security Architecture, Data Privacy & Innovation Stay ahead of emerging security threats; assess enterprise systems and data to ensure robust defense. Evaluate cutting-edge and disruptive cybersecurity technologies and influence leadership on adoption strategies. Design, validate, and guide deployment of secure solutions that balance data protection, risk, and business value. Lead security and privacy architecture across public, private, and hybrid cloud environments (AWS/Azure). Architect secure business?to?business integrations, third?party solutions, vendor ecosystems, and outsourced services. AI/ML Security & Responsible Data Use Own the full-lifecycle security architecture for AI/ML systems , including: Secure data ingestion Controlled model development, training & deployment MLOps/DevSecOps integrations Model integrity, privacy risk assessments & secure inference Build automated controls that reduce model poisoning, data exfiltration, and AI misuse. Ensure compliance with evolving data privacy and AI regulations. Governance, Compliance & Risk Partner with legal, risk, and compliance teams to ensure adherence to regulatory and ethical requirements (privacy laws, AI regulations, internal risk frameworks). Develop and maintain security and data privacy standards, policies, procedures, and processes. Influence and participate in incident response planning and post-incident reviews, establishing measurable benchmarks. DevSecOps, Engineering Excellence & Leadership Apply a DevSecOps mindset focused on automation, operational efficiency, and scalable architecture. Drive security automation that increases team capacity for advanced work and reduces manual workload. Stress-test security controls and platforms to validate performance while protecting business operations. Coach, mentor, and lead engineering, development, and business partners on security-by-design and privacy-by-design principles. What You Bring Required Experience & Technical Expertise Bachelor’s degree in computer science, information assurance, MIS or related field, or equivalent. Certification Requirements: an expert level security certification (e.g., CISSP, CISM, OSCP, CASP, etc. 10 years in cybersecurity including risk, compliance, and security engineering. Strong experience architecting enterprise security and privacy solutions across datacenters and public, private, and hybrid cloud environments (AWS or Azure preferred). Proven background (5 years preferred) in enterprise technology design, implementation, and delivery. Deep expertise in cloud computing—SaaS, PaaS, IaaS—and modern cloud security architectures. Mastery of cybersecurity controls including SIEM, IDS/IPS, IAM, PKI, EDR, threat intelligence platforms, and security automation/orchestration. Solid understanding of risk and compliance frameworks such as NIST, ISO 27001, PCI DSS, and privacy regulations. Experience designing secure AI/ML systems and mapping controls to risk and regulatory frameworks. Ability to translate cybersecurity and privacy risks for technical and non-technical executives. Experience architecting SIEM, threat intelligence platforms, SOAR, IDS/IPS, FIM, DLP, and enterprise monitoring tools. Demonstrated ability to lead, mentor, influence, and communicate clearly across diverse engineering and business teams. Additional Qualifications Experience with AWS or Azure cloud security tools and architectures. AI/ML security experience, including model governance and secure MLOps. Proficiency in scripting languages such as Python, PowerShell, JavaScript, PHP, or Ruby. DevOps/DevSecOps background with compliance-driven engineering practices. Knowledge of: ISO 27001, NIST, PCI DSS, HIPAA, HITECH, GDPR, CIS, SOC 2 , and state privacy laws. Strong strategic and tactical decision-making capabilities. Highly trustworthy and leads with integrity and professionalism. Benefits & Perks The following Benefits & Perks apply to Full-Time Roles Only . We’re dedicated to ensuring children and their families have every opportunity to enjoy life’s special moments. We’re also committed to giving our staff excellent benefits so they can do the same. Core Medical Coverage: (low cost low deductible Medical, Dental, and Vison Insurance plans)? 401K Retirement Plan with 7% Employer Contribution Exceptional Paid Time Off Maternity / Paternity Leave Infertility Treatment Program Adoption Assistance Education Assistance Enterprise Learning and Development And more ALSAC is an equal employment opportunity employer. ALSAC does not discriminate against any individual with regard to race, color, religion, sex, national origin, age, sexual orientation, gender identity, transgender status, disability, veteran status, genetic information or other protected status. No Search Firms: ALSAC does not accept unsolicited assistance from search firms for employment opportunities. All resumes submitted by search firms to any ALSAC employee or ALSAC representative via email, the internet or in any form and/or method without being contacted and approved by our Employee Experience team and without a valid written search agreement in place will result in no fee being paid if a referred candidate is hired by ALSAC.

Keywords: St. Jude Children’s Research Hospital, Southaven , Architect - Information Security/Data Privacy (Memphis, TN), IT / Software / Systems , Memphis, Mississippi