Hybrid schedule - Lead IT security architecture activities required for the secure design, development, deployment, sustainment and decommissioning of IT systems supporting an academic medical center.
This Jobot Job is hosted by: Brett Walker Are you a fit? Easy Apply now by clicking the "Apply Now" button and sending us your resume. Salary: $135,000 - $170,000 per year
A bit about us:
A leading Healthcare IT Academic System based in Los Angeles, CA
Why join us?
Amazing Healthcare benefits. Hybrid schedule - Lead IT security architecture activities required for the secure design, development, deployment, sustainment and decommissioning of IT systems supporting an academic medical center.
Job Details
Summary:
This position will lead IT security architecture activities required for the secure design, development, deployment, sustainment and decommissioning of IT systems supporting an academic medical center. He/she ensures the effectiveness of IT security controls throughout a system lifecycle. The IT Security Architect communicates with and educates IT process owners on the importance of controls, leading practices, and effective control alternatives to achieve compliance with client policy and industry or government regulatory requirements to reduce risk.
Minimum Education:
Bachelor Science in Computer Science, Information Systems, Computer Engineering, or related field
Minimum Experience/Accountabilities:
7+ years of experience in an IT architecture role with strong emphasis on a customer service background (Healthcare and/or Academic industry preferred). Experience building project teams and driving change within an organization.
5+ years in Information Security. Experience meeting corporate policies, procedures and standards and regulatory requirements.
Some Project Management experience preferred
Coordinate with and advise senior management, CISO and CTO, on security architectures to support information technology (IT) security goals and objectives.
Communicate the value of information technology (IT) security throughout all levels of the organization stakeholders.
Collaborate with the CISO to design/integrate an information security strategy that outlines the vision, mission, and goals that align with client's strategic plans.
Apply risk-based methods, standards, and approaches for describing, analyzing, and documenting client's enterprise IT architecture
Communicate effectively in writing when describing complex information security and IT concepts
Assess and recognize vulnerabilities in security systems and recommend mitigation strategies to reduce risk
Apply organizational goals and objectives to develop and maintain IT architectures
Apply network security architecture concepts including network topologies (e.g. segmentation), protocols, components, and principles (e.g., application of defense-in-depth).
Apply system and security design tools, methods, and techniques, including automated systems analysis and design tools.
Apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
Document client information security system and enterprise architectures throughout IT system life cycles.
Ensure that acquired or developed system(s) and architecture(s) are consistent with client's information security guidelines.
Perform security reviews, identify gaps in security architectures, and develop security risk management plans.
Advise on project costs, design concepts, or design changes.
Provide input on security requirements to be included in statements of work and other appropriate procurement documents.
Define and document how the implementation of a new system or new interfaces between systems impacts the security posture of the current environment.
Analyze and evaluate candidate architectures to determine the adequacy of security designs, allocate security services, and select security mechanisms.
Write detailed functional specifications that document the architecture development process.
Analyze user needs and requirements to plan architecture.
Determine the protection needs (i.e., security controls) for the information system(s) and network(s) and document appropriately.
Define appropriate levels of system availability based on critical system functions and ensure that system requirements identify appropriate disaster recovery and continuity of operations requirements to include any appropriate fail-over/alternate site requirements, backup requirements, and material supportability requirements for system recover/restoration.
Define and prioritize essential system capabilities or business functions required for partial or full system restoration after a catastrophic failure event.
Interested in hearing more? Easy Apply now by clicking the "Apply Now" button.
