Cybersecurity Architect

At Cleveland Clinic Health System, we believe in a better future for healthcare. And each of us is responsible for honoring our commitment to excellence, pushing the boundaries and transforming the patient experience, every day.

We all have the power to help, heal and change lives - beginning with our own. That's the power of the Cleveland Clinic Health System team, and The Power of Every One.

Job Title
Cybersecurity Architect

Location
Cleveland

Facility
Remote Location

Department
Cybersecurity Advisory COE-Information Tech Div

Job Code
T98506

Shift
Days

Schedule
8:00am-5:00pm

Job Summary

Job Details

Join the Cleveland Clinic team where you will work alongside passionate caregivers and make a lasting, meaningful impact on patient care. Here, you will receive endless support and appreciation while building a rewarding career with one of the most respected healthcare organizations in the world.

As a Cybersecurity Architect at Cleveland Clinic, you will help safeguard information technology assets and protect systems from intentional or inadvertent access. This role develops and maintains enterprise-wide cybersecurity architecture, evolving it to align with business needs, emerging technologies, and the changing threat landscape. You will also contribute to the security risk strategy and framework development by creating reference models and conceptual architectures across multiple security domains. As a member of the Enterprise Cybersecurity Architecture team, you will be joining a supportive environment with a formal talent development strategy, tuition reimbursement, and continuous learning opportunities.

A caregiver in this position works remotely Monday - Friday 8:00am-5:00pm EST (Flexible).

A caregiver who excels in this role will:

• Develop and maintain security architecture artifacts (e.g., models, templates, standards and procedures) that can be used to leverage security capabilities.

• Conduct or facilitate threat modeling of services and applications that tie to the risk and data associated with the service or application.

• Design and deploy numerous enterprise technical security services such as SIEM, DLP, PKI, IDS/IPS, and enterprise authentication/authorization frameworks and models.

• Perform requirements of analysis and the development of use cases, architectural views (e.g. conceptual, logical, and physical), reference models and architectures, architectural principles, and architectural patterns.

• Present technical concepts to a non-technical audience.

• Create an approach for addressing the specific architectural, design, or process challenge.

• Interview personnel to understand current operations and areas for improvement.

• Research available state-of-the-art technologies and solutions.

• Create white papers and presentations on the proposed solution.

• Provide technical briefings to leadership.

• Participate in various forums, and create meeting reports, recommendations, and feedback as directed by leadership.

• Other duties as assigned.

Minimum qualifications for the ideal future caregiver include:

• Bachelor's degree in Information Technology/Computer Science or related field and 7 years of experience in the information security field with expert knowledge of applications, cloud and mobile security, platforms and infrastructure.

• Offset: High School Diploma / GED or equivalent and 11 years of experience in the information security field.

• For Information Technology Division caregivers, ITIL Foundations certification is required within 6 months of the position start date.

• Must have the highest level of experience in security operations, cyber security tools, intrusion detection, secure networks and current state-of-the-art cybersecurity technologies, standards, policies, procedures.

• Knowledge of Regulations, Standards and Frameworks, including HIPAA/HITECH, HITRUST, SABSA, Zachman, TOGAF, NIST Cybersecurity Framework, ISO 27001/2

• Strong analytical, administrative, presentation, and project management skills are required

• Must have strong communication skills (both written and verbal) and the ability to work independently.

• Ability to conduct a gap analysis of current versus desired capabilities.

• Advanced knowledge of networking/distributed computing environment concepts.

• Advanced knowledge with complex domain structures, user authentication mechanisms, and cryptography.

• Has in-depth knowledge of intrusion detection and data correlation.

• Intricate knowledge of network topology and the underlying OSI model.

• Understands principles of client/server configuration.

• Understands enterprise risk management frameworks and principles.

The ideal candidate will have:

• Proven experience in cybersecurity operations, preferably within a regulated healthcare research environment (e.g., CRO, IDN, NIH intramural program, or FDA-regulated organization).

• Familiarity with laboratory-based, external grant-funded biomedical research environments, including NIH grants and indirect cost structures.

• Understands biomedical data types, including genomic data, electronic health records (EHRs), and clinical trial data.

• Strong understanding of regulatory frameworks and standards, including HIPAA/HITECH, the Common Rule, NIST standards, FDA regulations, 21 CFR part 11, and GDPR.

• Demonstrated experience securing systems in environments that use open-source, academic, or custom-built software, as well as multi-module software ecosystems (e.g., Python, R).

• Experience with cloud architecture, shared security models, and the secure adoption of cloud technologies.

• Knowledge of Linux distributions, long-term support models, and OS patching processes.

• Awareness of public databases, academic data/code resources, and NIH/NLM/NCBI resources, including the associated controls and compliance requirements.

Preferred qualifications for the ideal future caregiver include:

• Certified Information Systems Security Professional (CISSP) or from the International Information Systems Security Certification Consortium (ISC2) preferred.

• Certifications from SysAdmin, Audit, Network and Security Institute (SANS), Computing Technology Industry Association (CompTIA) or other position related certifications preferred.

Our caregivers continue to create the best outcomes for our patients across each of our facilities. Click the link and see how we're dedicated to providing what matters most to you:

Physical Requirements:

• Ability to perform work in a stationary position for extended periods.
• Ability to travel throughout the hospital system.
• Ability to operate a computer and other office equipment.
• Ability to communicate and exchange accurate information.

Personal Protective Equipment:

• Follows standard precautions using personal protective equipment as required.

The policy of Cleveland Clinic Health System and its system hospitals (Cleveland Clinic Health System) is to provide equal opportunity to all of our caregivers and applicants for employment in our tobacco free and drug free environment. All offers of employment are followed by testing for controlled substance and nicotine. All offers of employment are follwed by testing for controlled substances and nicotine. All new caregivers must clear a nicotine test within their 90-day new hire period. Candidates for employment who are impacted by Cleveland Clinic Health System's Smoking Policy will be permitted to reapply for open positions after one year.

Cleveland Clinic Health System administers an influenza prevention program. You will be required to comply with this program, which will include obtaining an influenza vaccination on an annual basis or obtaining an approved exemption.

Decisions concerning employment, transfers and promotions are made upon the basis of the best qualified candidate without regard to color, race, religion, national origin, age, sex, sexual orientation, marital status, ancestry, status as a disabled or Vietnam era veteran or any other characteristic protected by law. Information provided on this application may be shared with any Cleveland Clinic Health System facility.

Please review the Equal Employment Opportunity poster.

Cleveland Clinic Health System is pleased to be an equal employment employer: Women / Minorities / Veterans / Individuals with Disabilities