Job Summary
This position is responsible for developing the architectural artifacts, models, patterns, and transition initiatives and activities ensuring strategic initiatives and goals are achievable, operationally efficient, technically sound, and accounted for from a cybersecurity perspective. In addition, ensures that the stakeholder cybersecurity requirements necessary to protect Banners mission and business processes are adequately addressed in all aspects of enterprise architecture including reference models, segment and solution architectures, and the resulting systems supporting those missions and business processes. This position has responsibility for one or more areas in cybersecurity, including threat & vulnerability management, security operations, GRC, strategy. Acting as a contributing member of the cybersecurity architecture team and center of excellence in architecture, this role will develop architectural artifacts, roadmaps, and strategy documentation. This role will educate and influence key stakeholders throughout the enterprise, acting as an advocate and steward for our information assets. This position designs solutions to resolve complex and highly complex technical and business issues related to cybersecurity.
Essential Functions
Analyzes the business and IT environment to detect critical deficiencies and/or redundancies from a cybersecurity risk perspective and recommend solutions for improvement.
In collaboration with a team of architects, develops and maintains cybersecurity capability documentation, targets cybersecurity architecture and partners with IT and the Business to develop architectures in support of strategic initiatives, goals, and industry trends.
Serves as a credible expert advisor to executives on the appropriateness of current and future technologies based on the highest level of TCO, ROI, strategic value to the business and cybersecurity risk.
Maintains in-depth knowledge of business strategies and goals as well as industry trends, regulatory requirements, and cybersecurity threats.
Develops and fosters relationships with business stakeholders and information technology management.
Advises functional leaders and executives making strategic investments in applications, databases, technologies, systems, services, or processes as a result of architectural development and cybersecurity risk assessment.
Operates as the companys highest level expert in the Cybersecurity Architecture discipline.
Ensures consistent adherence to standards for architectural artifact documentation and implementation.
Minimum Qualifications
Must possess strong knowledge of business, information security and/or computer science as normally obtained through the completion of a bachelor's degree.
Must also possess ten plus years experience in a healthcare environment or an equivalent combination of relevant education, technical, business and healthcare experience with one-year experience being in cybersecurity architecture at the enterprise-scale, preferably in healthcare. Experience with the acquisition process, including vendor selection, define requirements, contractual documentation development. Requires independent judgment, critical decision making, excellent analytical skills, with excellent verbal and written communications. Ability to think quickly under difficult or complex conditions and clearly communicate to appropriate staff; ability to balance project workloads with customer support. Requires communication and presentation skills to engage technical and non-technical audiences. Requires ability to communicate and interact across facilities and at various levels. Incumbent will have skills to mentor less experienced team members.
Preferred Qualifications
Four plus years technical project experience designing, developing, integrating, and implementing solutions to resolve complex technical and business issues preferred.Relevant technical/professional certification in two or more of the following areas within one year of entering the position Systems Security Certified Practitioner (SSCP), HealthCare Information Security & Privacy Practitioner, (HCISPP), CompTIA Security+, Certified Information Systems Security Professional (CISSP) Engineering (ISSEP), Certified Ethical Hacker (CEH), SANS GIAC, or Certified Information Systems Auditor (CISA), SABSA Chartered Security Architect Foundation (SCF), Certified Information Systems Security Professional (CISSP) Architecture (ISSAP), TOGAF 9 Foundation.
Additional related education and/or experience preferred.
