Information Security Architect, Consultant

Work in Chief Information Security Officer (CISO) office under Director of IT Security Architecture to strategize and improve security posture. Transform healthcare with business aligned agile, repeatable and standardized security technology ready for new emerging threats
Develop and maintain a security architecture process that enables the enterprise to develop and implement security solutions and capabilities aligned with business, technology and threat drivers.
Develop / support security strategy plans, and roadmaps based on sound enterprise architecture practices.
Develop and maintain security architecture artifacts (models, templates, standards and procedures) that can be used to leverage security capabilities in projects and operations.
Track developments and changes in the digital business and threat environments to ensure that these are adequately addressed in security strategy plans and architecture artifacts.
Influence and communicate effectively with non-technical audiences including senior product and business management
Participate in application and infrastructure projects to provide security planning advice. Participate in project meetings and Level of Effort estimate forecasts
Review and approve firewall rules on regular basis
Conduct Preliminary Security Assessment Reviews and Security Risk Assessments
Approve and create Proof of Concept / Proof of Value business and security case
Document data flows of sensitive information within the organization (e.g., PII or ePHI) and recommend controls to ensure adequate protection
Validate IT infrastructure and other reference architectures for security best practices and recommend changes to enhance security and reduce risk where applicable.
Validate security configurations and access to security infrastructure tools, including firewalls, intrusion prevention systems (IPSs), Security Information and Event Management (SIEM)s, web application firewalls (WAFs), anti-malware/endpoint protection systems, etc.
Provide leadership, mentorship and advisory services to IT, business, engineers, developers and project teams to ensure that solutions are in line with the architecture direction and business strategies. Attend change management meetings.
Works to achieve strategic and operational targets with significant impact on the IT Security Architecture results
Work across the company to drive adoption of technical standards, design principles and architecture patterns
Maintain a broad knowledge of new technology tools and trends, and apply that knowledge to architecture designs
Have excellent communication skills (written and verbal). Demonstrate strong problem-solving ability and analytical skills. Strong business acumen and a commitment to integrity, process improvement and customer satisfaction
Represents security interests to project teams by ensuring security standards and requirements are defined as part of the deliverables. Provides input and guidance on adherence to defined security requirements and/or means to address any identified gaps
Evaluates new products, methods, and technologies to protect against existing and emerging security threats
Persuasive in influencing strategic security architecture direction, framing reference architectures and pattern components, specifying policies and standards, drive consensus on target state architectures, and influence roadmaps
At least 10-15 years of related IT security and Security Architecture experience
Strong understanding of network security and security operations
Knowledge of healthcare industry and industry related technology a strong plus
General understanding and familiarity with protecting against web and web services security vulnerabilities including the OWASP Top Ten SANS Top Twenty-Five
Experience in designing, architecting, and implementing complex enterprise applications, infrastructures with security built in
In depth understanding and knowledge of network security capabilities and best-practices (e.g. IPS/IDS, firewalls, proxies, BYOD, SIEM, wireless security)
Fundamental working knowledge of industry-standard enterprise architecture models (e.g. TOGAF, NIST, ISO 27002, SABSA, HIPAA, HITECH, PCI-DSS) and such security frameworks
Strong understanding of operating environments including Windows, Linux and mobile operating system
Deep and broad understanding of services and architecture required to build secure cloud computing platforms; especially using encryption for data at rest and in transit
Bachelor's degree in Computer Science, Engineering or related field or equivalent work experience
CISSP, CCSP, CISM, TOGAF or other security and/or Enterprise Architecture methodology certifications.
Information Technology Infrastructure Library (ITIL) or Project Management Institute (PMI) / PMP preferred
Cloud Security certification preferred

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.

More Jobs

Specialist Information Security Architect
El Dorado Hills, CA Broadridge Financial Solutions
Sr Information Security Engineer/Consultant
Costa Mesa, CA AAA of Southern California
Information Security Consultant
Irvine, CA Resources Global Professionals (RGP)
Infrastructure Security Principal Architect (I...
Santa Clara, CA Palo Alto Networks
Architect, Information Security
Redwood City, CA C3 Energy