IT SECURITY ARCHITECT, FCH - IT - SECURITY
About the Job
Come join our award winning team! See What Is Possible….
The Froedtert & the Medical College of Wisconsin regional health care network is composed of an academic medical center two community hospitals and more than 25 primary and specialty care health centers and clinics. The Froedtert & MCW health network offers exceptional care in the community and streamlined coordinated access to specialty expertise clinical trials and the full range of tertiary care capabilities of eastern Wisconsin’s only academic medical center when the need for more complex treatment arises.
Froedtert Health has been widely recognized for our dedication to our staff providing a work environment full of encouragement innovation collaboration and respect.
We invite you to review the job posting below. If you meet the requirements and qualifications for this opportunity you are encouraged to apply.
Thank you for considering a career with Froedtert Health!
Location: US:WI:MENOMONEE FALLS at our WOODLAND PRIME 400 facility.
*1.0 FTE is Full-Time any position less than 1.0 FTE is Part-Time and .001 FTE is Optional Part-Time*
*Positions with an "FTE" (full time equivalency) of .875 - 1.0 are eligible for full-time medical dental and vision benefits. Positions with an "FTE" of .5 - .874 are eligible for part-time pro-rated medical dental and vision benefits*
Shift: Remote 1st shift 8AM-4:30PM
As a senior member of Information Security team this enterprise-wide role is integral in defining and assessing the organization's security strategy architecture and practices. The enterprise security architect will be required to effectively translate business objectives and risk management strategies into specific security processes enabled by security technologies and services evaluate and incorporate emerging technologies and evaluate changes to the threat landscapes. Interacts with senior leaders across the enterprise and acts as a trusted senior advisor.
Develop and maintain a security architecture process that enables the enterprise to develop and implement security solutions and capabilities that are clearly aligned with business technology and threat drivers
Validate IT infrastructure and other reference architectures for security best practices and recommend changes to enhance security and reduce risks where applicable
Develop security strategy plans and roadmaps based on sound enterprise architecture practices
Develop and maintain security architecture artifacts (e.g. models templates standards and procedures) that can be used to leverage security capabilities in projects and operations
Track developments and changes in the digital business and threat environments to ensure that they're adequately addressed in security strategy plans and architecture artifacts
Participate in application and infrastructure projects to provide security-planning advice
Assist in the development of security technology standards and patterns that will be utilized within the environment
Validate security configurations and access to security infrastructure tools including firewalls IPSs WAFs and anti-malware/endpoint protection systems.
Review network segmentation to ensure least privilege for network access
Liaise with the Third Party Risk Management (TPRM) team to conduct security assessments of existing and prospective vendors
Liaise with the IT Security GRC team to review and evaluate the design and operational effectiveness of security-related controls
Support the testing and validation of internal security controls
Review security technologies tools and services and make recommendations to the broader security team for their use based on security financial and operational metrics
A minimum of 7-10 years of experience in a related field or equivalent experience in the industry.
Bachelor's degree in Computer Science or related field or equivalent experience required
Multiple certifications preferred.
Strong oral and presentation skills
In-depth knowledge of cybersecurity frameworks including but not limited to NIST CF HITRUST CSF ISO 27001
Strong knowledge of laws and regulations including but not limited to PCI-DSS HIPAA-HITECH
Experience in using architecture methodologies such as SABSA Zachman or TOGAF
Direct hands-on experience or strong working knowledge of managing security infrastructure — e.g. firewalls intrusion prevention systems (IPSs) web application firewalls (WAFs) endpoint protection SIEM and log management technology
Strong working knowledge of vulnerability management practices and tool
Direct experience designing IAM technologies and services such as AD LDAP and/or AWS IAM
Strong working knowledge of IT service management – ITIL related services – Change management Configuration management Asset management Incident management Problem management etc
Experience designing and securing applications and infrastructures in cloud environments such as AWS and/or Azure
We are proud to be an Equal Opportunity Employer who values and maintains an environment that attracts recruits engages and retains a diverse workforce. As a federal contractor/subcontractor we take affirmative action in employment based on race sex disability and status as a protected veteran. We welcome protected veterans to share their priority consideration status with us at 262-439-1961. We maintain a drug-free workplace and perform pre-employment substance abuse testing