Director,security Architecture

**Description****JOB SUMMARY**:**JOB RESPONSIBILITIES**:- Defines, develops, and leads engagement models and frameworks for technical, process, resource, and operational security considerations for solutions at all points of solution development lifecycle- Manages technical security consultancy, including providing design criteria, review and approval- Creates and maintains implementation standards, reference architectures, and designs patterns that support information security objectives- Develops and maintains threat models to incorporate into solution development process.- Participates in the Architecture Review Board and Change Management Board- Governs and oversees design and scope of all Security Operations initiatives- Works with the Corporate PMO to maintain velocity of all Security Operations initiatives- Disseminates Enterprise technical strategy within Security Operations; incorporates guidance into solutions- Liaison with research and development throughout the enterprise as required- Other duties as assigned**Qualifications****QUALIFICATION REQUIREMENTS (please indicate if ‘preferred’)**- Management and/or advisory consulting background - preferably to software, technology, and/or healthcare organization- Requires advanced technical and organizational skills with the ability to think strategically, act tactically and advocate and influence positive transformation within the broader Information Technology organization- Experience implementing security programs incorporating regulatory requirements including but not limited to SOX, HIPAA, FISMA, and European Union Data Privacy and Security Directives- Experience incorporating “security and privacy by design” into new infrastructure and systems- Familiarity with Information Technology Governance and Architecture standards including but not limited to, ITIL, ISO 2700x,TOGAF, SPRING, STRUTS, ESAPI and NIST preferred- Familiarity with security industry information and intelligence resources including OWASP, SANS, IEEE, IETF- Experience in at least three of the following vendor’s security products and services: CyberArk, Qualys, Crowdstrike, Proofpoint, Zscaler, Tanium, Fortinet, Palo Alto- Experience in developing and implementing security solution architecture and design diagrams, documentation, and supporting materials- Prior experience in healthcare, financial services, government, or any other highly regulated sector is preferred- Works with a sense of urgency while remaining calm under pressure- Demonstrated ability to show initiative to drive progress and improvement- Proven ability to develop consensus and collaborate with team members and management- Superior written and verbal communication skills for a wide range of audience.- Ability to work well independently and in a team environment.- Ability to handle multiple tasks, prioritize and meet deadlines.**Desired education and or Certifications**:- Masters Degree in a field related to Information Technology (or equivalent experience), preferred.- Certified Information Systems Security Professional (CISSP), preferred.- Certified in Risk and Information Systems and Control, preferred.- Information Systems Security Architecture Professional (ISSAP), preferred.As a healthcare company we have an important responsibility to protect individual and public health. This position will require individuals to be fully vaccinated against COVID-19 as part of their job responsibilities, unless an exemption can be confirmed based on a medical condition or sincerely held religious belief. Submission & Approval of an Exemption does not guarantee that an exemption can be accommodated.This job excludes Colorado applicants.**Disclaimer**:Tasks, duties, and responsibilities as listed in this job description are not exhaustive. The Company, at its sole discretion and with no prior notice, may assign other tasks, duties, and job responsibilities. Equivalent experience, skills, and/or education will also be considered so qualifications of incumbents may differ from those listed in the Job Description. The Company, at its sole discretion, will determine what constitutes as equivalent to the qualifications described above. Further, nothing contained herein should be construed to create an employment contract. Occasionally, required skills/experiences for jobs are expressed in brief terms. Any language contained herein is intended to fully comply with all obligations imposed by the legislation of each country in which it operates, including the implementation of the EU Equality Directive, in relation to the recruitment and employment of its employees. The Company is committed to compliance with the Americans with Disabilities Act, including the provision of reasonable accommodations, when appropriate, to assist employees or applicants to perform the essential functions of the job.LI-TC1