Security Architect

New York City Health and Hospitals (HHC) is seeking a Security Architect

Tasks and Responsibilities

• Monitor security information and event management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), and other security tools for potential threats
• Analyze security logs and alerts to identify suspicious activity and potential security incidents
• Research and analyze emerging threats, vulnerabilities, and attack vectors
• Assist in the development and maintenance of threat intelligence feeds
• Assist in the investigation and containment of security incidents
• Gather and document evidence related to security incidents
• Follow established incident response procedures and playbooks
• Assist in post-incident analysis and reporting
• Assist in the management and support of the enterprise EDR solution
• Define, test, and deploy prevention configurations
• Test and deploy updated EDR sensors
• Collaborate with other teams to assist in troubleshooting EDR issues
• Assist senior analysts in proactive threat hunting activities
• Utilize threat intelligence and security tools to identify potential threats
• Document findings and contribute to threat hunting reports
• Assist in the preparation of security reports and presentations
• Maintain accurate and up-to-date documentation of security incidents, vulnerabilities, and threat intelligence
• Contribute to the development of security awareness materials
• Stay up to date on the latest security threats, vulnerabilities, and industry best practices
• Lead and coach on the definition of security architecture including the development and implementation of effective security administration processes for all platforms
• Engage in security architecture solutioning within key pre-implementation systems
• Identify and implement emerging data access control technologies, information systems security issues, safeguards, and techniques
• Perform security reviews and identify gaps in security architecture and recommend mitigation strategies
• Provide security architecture guidance to senior IT management and cross-functional teams
• Conduct application vulnerability scans and design countermeasures to identified security risks
• Design security controls based on information assurance principles and tenets
• Work with enterprise architecture teams to align business, technical, and security requirements
• Liaise with IT management to align existing technical infrastructure with future architectural requirements
• Collaborate with security engineering teams to develop and implement controls and configurations aligned with security policies and regulatory requirements
• Keep informed on current threats and industry regulations
• Participate in special projects and perform additional duties as assigned

Minimum Qualifications

• Bachelor''s degree in Information Systems or related field
• Minimum of 15 years of IT experience
• At least 12 years dedicated to IT or Cybersecurity including solution design
• Strong knowledge of infrastructure, application, and security protocols
• Strong knowledge of configuration management techniques and risk management, compliance, and audit standards
• Deep knowledge of HIPAA/HITECH, NIST CSF, ISO27001/27002, and PCI-DSS standards and requirements
• Knowledge of encryption algorithms
• Knowledge of known vulnerabilities from alerts, advisories, errata, and bulletins
• Knowledge of network security architecture concepts including topology, protocols, components, and traffic flows (TCP/IP, OSI)
• Experience with network access, identity, and access management such as Active Directory, access federation, multifactor authentication, and PKI
• Experience working with operating systems including Microsoft Windows, Linux, UNIX, and MacOS
• Knowledge of security management and secure configuration management techniques
• Knowledge of software engineering
• Ability to assess the robustness of security systems and designs including resilience and dependability
• Knowledge of IT supply chain security and risk management policies and procedures
• Ability to work independently and within a fast-moving team environment
• Ability to work at various locations and work different shifts when necessary

Preferred / Desired Qualifications

• CISSP, CISM, GSEC, CEH, or other relevant security certification
• High degree of integrity and trustworthiness
• Strong collaboration and communication skills for cross-functional engagement
• Experience contributing to enterprise-level security strategy and architecture planning

Additional Details:

• Role will be Remote