Senior Information Security Architect - C2H

Description:

• Active CISSP Certification
• 710 years of IT infrastructure architecture and/or operations experience
• 3 years of experience architecting solutions in a cloud environment
• 5 years of experience in enterprise security architecture role with a focus in Identity & Access Management
• Basic understanding of HITRUST framework
• 3 years of experience performing network and application security penetration testing and/or threat assessments

Nice to have:

• Prior Healthcare Payer experience
• Certifications: CCNA CCENT CCNP GSEC MCSA CISM

Responsibilities:

• Develops security architecture strategies for the organization in the form of standards frameworks and guidelines with the emphasis on application security network security and identity and access management concerns
• Serves as primary information security interface to collaborate with product teams business representatives systems development and business users for establishing business requirements information security functional requirements security solution options and implementation plans
• Advises and contributes to strategies and initiatives to strengthen the Security Program which is identified as part of the corporate Information Security Practice or HITRUST corporate compliance
• Provides security controls processes and technical advisory support to business units and projects by working crossfunctionally to develop and implement strategies that balance security recommendations with business needs
• Works with leadership to develop a run book for the operational organization to enable safe and rapid responses to reported vulnerability disclosures
• Provides mentoring and technical leadership to the team
• Acts as Subject Matter Expert and provides thirdlevel support resolving the most difficult technical issues
• Establishes and maintains an effective relationship with product management and product engineering leadership as a trust advisor
• Adapts and supports the enterprise business strategy gains executive approval and support and oversees successful execution of initiatives
• Reviews and gains approval of security specific technical solutions through the architecture governance process
• Helps define department strategic objectives and drives business outcomes in alignment to the organizational strategy
• Assists leadership and other members of the team with information security vendor assessments security attestations recertifications audits risk assessments testing coordination or investigations as required

Preferred Training Certification and Education:

• Bachelor degree in computer science information systems engineering business administration or comparable experience in a related field
• Certifications: CCNA CCENT CCNP GSEC MCSA CISM