Senior Information Security Architect - hybrid onsite 2 days a week

Position Purpose
The Information Security Architect provides support and direction for various components of the medical center's information security program. This position is the technical lead for coordinating and leading efforts to detect, analyze and respond security incidents and breaches. Works with the security team and other IT areas to create and implement procedures for responding to security incidents. Designs, modifies, and implements SIEM detection criteria. This position is the principal point of contact in working with the medical centers contracted SOC and is also the escalation point of contact for security and IT team members when responding to security incidents. The Information Security Architect seeks to understand and review business processes to see where and how security controls might be implemented to reduce risk and improve on compliance with HIPAA, PCI, and other best practice security frameworks. Under general supervision, the Information Security Architect supports the medical center's information security posture and performs various duties primarily focused on protecting the information assets and security posture of the company.

Reporting Relationships
The Information Security Architect reports to the Information Security Officer. There are no subordinates reporting to this position.
Core Competencies
Establishes system controls by developing framework for controls and levels of access; recommends
improvements.
Ensures authorized access by investigating improper access; revoking access; reporting violations; monitoring of alerts, logs, and security reports.
Leads the technical response to security incidents, including investigation of, countermeasures to, and recovery from computer-based attacks, unauthorized access, data breaches, and other events and alerts detected by security controls.
Advises management and develops and executes plans for compliance and mitigation of risk.
Investigates intrusion attempts, security incidents, malware infections, exploit attempts, and other alerts and events detected by medical center security controls.
Advises management on risk mitigation, threat hunting discoveries, methodologies to better detect and respond to events and alerts.
Maintains and supports security controls including SIEM, secure email gateways, firewalls, and other detection technologies.

Department Specific Competencies
Standards of the Organization
Supports the Service, Excellence, Knowledge, Stability and Community and behaves in a manner that reflects these values.
Adheres to the company's Standards of Behavior.
Performs other work as required or requested.
Follows privacy and confidentiality rules in accordance with State, Federal and HIPAA regulations.
Adheres to all company policies, procedures and guidelines.
Attends and participates in staff meetings, performance improvement, workshops/seminars to enhance skills and performance effectiveness.
Maintains a neat, clean, and orderly work area.
Completes Self Evaluation for annual performance evaluation.
Interpersonal Relationships Interacts with all levels of staff, vendors, and business associates of the company.

Education
Degree / Diploma Program of Study
Bachelors Computer Science
Additional Information
Bachelor's degree in Computer Science, Cybersecurity, Mathematics, Engineering, Science, Information Systems or 6 years work experience in an Information Security related role.

Years of Experience Type of Experience
5 Experience in Information Security related role including: Security Engineer,
Additional Information
Min of 5 ys exp in an Information Security related role including: Security Engineer, Security Analyst, Security Manager,
and Security Architect.
License / Certification Requirements
CISSP, CISM, CISA, CEH, GSEC, GCIA, GCFA, GISP, GSNA, GSOC, GDSA, GNFA, and CompTIA Security+