IS Security Architect

Weve made a lot of progress since opening the doors in 1942 but one thing has never changed - our commitment to serve heal lead educate that every award earned every record broken and every patient helped is because of the dedicated employees who fill our hallways.

At Ochsner whether you work with patients every day or support those who do you are making a difference and that matters. Come make a difference at Ochsner Health and discover your future today!

To perform this job successfully an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge skill and/or ability required. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential duties.

This job description is a summary of the primary duties and responsibilities of the job and position. It is not intended to be a comprehensive or all-inclusive listing of duties and responsibilities. Contents are subject to change at the companys discretion.

Required Education

• High school diploma or equivalent and a Bachelors degree in related field.

• Equivalent combination of education and experience will be considered.

Required Work Experience

58 years of experience in Information Security with at least 3 years focused on security architecture security engineering or solution design.

Preferred Certifications

Relevant certifications such as CISSP CCSP or cloud provider certifications (AWS Azure GCP).

Knowledge Skills and Abilities (KSAs)

• Strong verbal written and diagrammatic communication skills with the ability to clearly translate complex security concepts to technical and non-technical stakeholders.

• Working knowledge of enterprise IT environments including cloud (AWS Azure GCP) on-prem infrastructure networking and application architectures.

• Understanding of security architecture principles including secure-by-design least privilege and zero trust concepts.

• Knowledge of identity and access management concepts including SSO MFA service accounts and non-human identity patterns.

• Familiarity with systems development lifecycle (SDLC) and the ability to integrate security into design development and implementation phases.

• Working knowledge of integration patterns APIs and enterprise service architectures including their security implications.

• Understanding of security considerations for clinical systems and medical devices including patient safety and operational risk impacts.

• Knowledge of regulatory and security frameworks including National Institute of Standards and Technology guidance and HIPAA requirements.

• Ability to assess risk analyze complex problems and recommend practical and scalable security solutions.

• Strong organizational and time management skills with the ability to manage multiple initiatives and priorities.

• Ability to work independently take initiative and remain accountable for delivering results.

• Ability to work a flexible schedule (e.g. 24/7 weekend holiday on call availability).

Job Duties

• Develops and maintains security architecture designs and patterns that align with business clinical technology and threat drivers across cloud on-prem and medical environments.

• Participates in application infrastructure and clinical technology initiatives to provide security architecture guidance during design and implementation phases.

• Conducts formal security architecture reviews through established governance processes and provides clear actionable recommendations to project teams.

• Designs and recommends security controls across cloud platforms (AWS Azure GCP) network segmentation and identity integration ensuring alignment with enterprise standards.

• Reviews medical devices and clinical systems including FDA-regulated and connected technologies to ensure appropriate security controls and consideration of patient safety and operational impact.

• Identifies security risks in proposed solutions and works with stakeholders to define mitigation strategies compensating controls and acceptable risk decisions.

  Documents security risks exceptions and architectural decisions in alignment with enterprise risk management and governance practices.

• Validates that implemented solutions align with approved security designs and works with Security Engineering teams to confirm control effectiveness and proper configuration.

• Collaborates with Identity and Access Management teams to ensure consistent implementation of authentication authorization and least privilege access models.

• Ensures security designs align with enterprise standards and regulatory requirements including National Institute of Standards and Technology guidance and HIPAA requirements.

• Interfaces with audit compliance and GRC teams to support control validation regulatory reviews and audit activities.

• Tracks changes in technology and threat landscapes and incorporates relevant considerations into security architecture recommendations.

• Performs other related duties as required.

The above statements describe the general nature and level of work only. They are not an exhaustive list of all required responsibilities duties and skills. Other duties may be added or this description amended at any time.

Remains knowledgeable on current federal state and local laws accreditation standards or regulatory agency requirements that apply to the assigned area of responsibility and ensures compliance with all such laws regulations and standards.

This employer maintains and complies with its Compliance & Privacy Program and Standards of Conduct including the immediate reporting of any known or suspected unethical or questionable behaviors or conduct; patient/employee safety patient privacy and/or other compliance related concerns.

The employer is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race color religion sex sexual orientation gender identity national origin protected veteran status or disability status.

Physical and Environmental Demands

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Light Work - Exerting up to 20 pounds of force occasionally and/or up to 10 pounds of force frequently and/or a negligible amount of force constantly (Constantly: activity or condition exists 2/3 or more of the time) to move objects. Physical demand requirements are in excess of those for Sedentary Work. Even though the weight lifted may be only a negligible amount a job should be rated Light Work: (1) when it requires walking or standing to a significant degree; or (2) when it requires sitting most of the time but entails pushing and/or pulling of arm or leg controls; and/or (3) when the job requires working at a production rate pace entailing the constant pushing and/or pulling of materials even though the weight of those materials is negligible. NOTE: The constant stress and strain of maintaining a production rate pace especially in an industrial setting can be and is physically demanding of a worker even though the amount of force exerted is negligible.

Normal routine involves no exposure to blood body fluid or tissue and as part of their employment incumbents are not called upon to perform or assist in emergency care or first aid.

There is no occupational risk for exposure to communicable diseases.

Because the incumbent works within a healthcare setting there may be occupational risk for exposure to hazardous medications or hazardous waste within the environment through receipt transport storage preparation dispensing administration cleaning and/or disposal of contaminated waste. The risk level of exposure may increase depending on the essential job duties of the role.

Are you ready to make a difference Apply Today!

Ochsner Health does not consider an individual an applicant until they have formally applied to the open position on this careers website.

Please refer to the job description to determine whether the position you are interested in is remote or on-site. Individuals who reside in and will work from the following areas are not eligible for remote work position: Colorado California Hawaii Illinois Maryland Massachusetts Minnesota New Jersey New York Vermont Washington and Washington D.C.

Ochsner Health endeavors to make our site accessible to all users. If you would like to contact us regarding the accessibility of our website or if you need an accommodation to complete the application process please contact our HR Employee Solution Center at (select option 1) or. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications.

Ochsner is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to any legally protected class including protected veterans and individuals with disabilities.