"Alerted.org

Bausch + Lomb (NYSE/TSX: BLCO) is a leading global eye health company dedicated to protecting and enhancing the gift of sight for millions of people around the world—from the moment of birth through every phase of life. Our mission is simple, yet powerful: helping you see better, to live better.

Our comprehensive portfolio of over 400 products is fully integrated and built to serve our customers across the full spectrum of their eye health needs throughout their lives. Our iconic brand is built on the deep trust and loyalty of our customers established over our 170-year history. We have a significant global research, development, manufacturing and commercial footprint of approximately 13,000 employees and a presence in approximately 100 countries, extending our reach to billions of potential customers across the globe. We have long been associated with many of the most significant advances in eye health, and we believe we are well positioned to continue leading the advancement of eye health in the future.

The **Cybersecurity Architect** will focus on designing and implementing security strategies for cloud, hybrid environments, on-prem, advanced technologies like Artificial Intelligence (AI), and Identity and Access Management (IAM). The ideal candidate will have deep expertise in cybersecurity principles, cloud security best practices, hybrid cloud environments, on-prem solutions, AI-driven security solutions, and robust IAM frameworks.

Key Responsibilities:

+ **Security Architecture Design & Implementation:**

Design and implement secure architectures for cloud, hybrid, on-prem, and AI-driven environments. Integrate AI-powered security tools for threat detection, automation, and decision-making. Ensure security controls, policies, and protocols are embedded across infrastructures.

+ **Cloud and Hybrid Security:**

Develop and implement security solutions for public, private, and hybrid cloud environments. Ensure seamless security integration between on-premises and cloud infrastructure, leveraging cloud-native security tools, encryption, and identity management.

+ **AI-Driven Security:**

Deploy AI-powered tools for threat detection, anomaly detection, and risk analysis. Enhance proactive threat hunting and automated response using machine learning. Collaborate with AI and data teams to ensure secure AI frameworks and data governance.

+ **Identity and Access Management (IAM):**

Develop and manage IAM strategies, including SSO, MFA, and RBAC, across cloud and hybrid environments. Ensure secure authentication, authorization, and access control while maintaining strong security governance.

+ **Risk Assessment & Management:**

Conduct risk assessments to identify vulnerabilities in cloud, hybrid, and AI systems. Develop and implement risk mitigation strategies to counter emerging threats.

+ **Incident Response & Monitoring:**

Lead security incident detection and resolution, utilizing AI-driven monitoring tools. Enhance investigation and response workflows through automated threat analysis.

+ **Compliance & Regulatory Oversight:**

Ensure adherence to security regulations (GDPR, ISO 27001, HIPAA, PCI-DSS) across all platforms. Support audits and maintain compliance with industry best practices.

+ **Collaboration & Mentorship:**

Partner with cross-functional teams (engineering, DevOps, IT, AI, data science) to align security frameworks. Provide mentorship and promote cybersecurity best practices.

Required Qualifications:

+ **Education:**

+ Bachelor's degree in Computer Science, Information Security, or a related field (Master's preferred).

+ **Experience:**

+ 6 years or more experience in cybersecurity, with a focus on cloud and hybrid infrastructure security.

+ Proven experience with AI-driven security tools, machine learning models, and anomaly detection.

+ Demonstrated expertise in Identity and Access Management (IAM) frameworks and implementations.

+ Hands-on experience with cloud platforms (AWS, Azure, Google Cloud) and hybrid IT environments.

+ **Technical Skills:**

+ Deep knowledge of cloud security concepts and frameworks (e.g., NIST, CSA CCM, CIS).

+ Expertise in implementing AI and machine learning for cybersecurity applications, including threat detection, incident response, and automation.

+ Hands-on experience with IAM tools (e.g., Sailpoint, Azure Entra, AWS) and practices such as SSO, MFA, RBAC, and Identity Federation.

+ Strong understanding of cloud-native security tools and technologies, including IAM, encryption, firewalls, and network segmentation.

+ Familiarity with containerization, DevSecOps, and serverless architectures.

+ Experience with security automation and orchestration (e.g., SIEM, SOAR platforms).

+ **Certifications (Preferred):**

+ CISSP, CCSP, CISM or CIAM

+ **Required Skills:**

+ Strong problem-solving abilities with a proactive approach to security.

+ Excellent communication skills, with the ability to articulate complex security concepts to non-technical stakeholders.

+ Ability to work independently and collaborate effectively within a cross-functional team.

+ Experience with multi-cloud environments, on-prem and hybrid IT architecture.

+ Familiarity with AI technologies and frameworks used in security, including anomaly detection, predictive analytics, and risk scoring (preferred).

+ Knowledge of privacy and data governance standards, especially in AI-driven environments (preferred).

+ Experience with cloud security automation and AI-based security incident management (preferred).

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

Job Applicants should be aware of job offer scams perpetrated through the use of the Internet and social media platforms.

To learn more please read Bausch + Lomb's Job Offer Fraud Statement (https://performancemanager.successfactors.eu/doc/custom/BauschLomb/Bausch\_job\_posting\_statement.docx) .

Our Benefit Programs: Employee Benefits: Bausch + Lomb (https://www.bausch.com/careers/benefits/)

Applicants must be authorized to work for ANY employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time.