Experience Inc. Jobs

JOB SUMMARY

As a Cloud Security Architect, you will paly a key leadership role in the success of the security operations program by providing guidance on cloud security related issues, including but not limited to technical infrastructure, process, design, assessment, implementation, awareness, and governance. The Sr. Cloud Security Architect will provide leadership, experience, and expertise to project teams on driving the cloud architecture of BSWH to be secure, auditable, and of course, usable by our customers. You will serve as a security subject matter expert as part of an in-house, on-shore, and off-shore security architect team responsible for securing the enterprise information and its systems by determining security requirements across enterprise projects; planning, designing, and documenting security systems; preparing security standards, policies and procedures

ESSENTIAL FUNCTIONS OF THE ROLE

• Serve as a key player in the security architect team, responsible for securing enterprise information and systems

• Plan, design, and document SaaS, IaaS, security systems

• Assist in preparing security standards, policies, and procedures for projects involving SaaS, Iaas, PaaS

• Utilize SIEM for monitoring, analyzing, and responding to security events and incidents

• Provide technical and operational security expertise to cross-functional teams

• Collaborate with on-shore and off-shore teams to implement security requirements across the enterprise

• Focus on Cloud and participate in the CASB/ZTN/SASE roadmap and planning with other Sr. Security architects, ensuring compliance with healthcare industry regulations and standards

• Serve as a key player in Cyber Intelligence Planning (CI-WRL-004)

• Advance the functionality of the SIEM, including correlation across cloud-sourced indexes, ultimately leveraging ML and AI

KNOWLEDGE, SKILLS AND ABILITIES

Systems Analysis

• T1035: Determine how threat activity groups employ encryption to support their operations

• T1354: Identify system cybersecurity requirements

• K0018: Knowledge of encryption algorithms

• K0689: Knowledge of network infrastructure principles and practices

• K0718: Knowledge of network communications principles and practices

• K0915: Knowledge of network architecture principles and practices

• K1037: Knowledge of target critical capabilities

• K1052: Knowledge of the Tasking, Collection, Processing, Exploration, and Dissemination (TCPED) process

• K1101: Knowledge of data modeling and predictive analytics techniques for cybersecurity applications

Knowledge Management

• K0674: Knowledge of computer networking protocols

• K0680: Knowledge of cybersecurity principles and practices

• K0751: Knowledge of system threats

• K0752: Knowledge of system vulnerabilities

• K0977: Knowledge of intelligence collection management tools and techniques

• K1005: Knowledge of data lifecycle management, including data storage, retrieval, and archival

• K1100: Knowledge of data governance frameworks and best practices for ensuring data quality and integrity

• S0506: Skill in data visualization tools and techniques to communicate complex security concepts

Analyze:

All-Source Analysis

• T0718: Identify intelligence gaps and shortfalls

• T1020: Determine the operational and safety impacts of cybersecurity lapses

• T1657: Develop a diverse program of information materials

• T1661: Asses all-source data for intelligence or vulnerability value

• K1005: Knowledge of intelligence collection capabilities and applications

• K1029: Knowledge of statistical analysis methods and tools for analyzing security event data

• S0709: Skill in developing and applying machine learning algorithms to detect cybersecurity threats

• S0783: Skill in creating decision support materials using data-driven insights

Oversee and Govern

Strategic Planning and Policy

• T1036: Integrate leadership priorities

• T1718: Implement changes to planning policies and procedures

• T1729: Synchronize intelligence planning activities and operational planning timelines.

• T1779: Coordinate strategic planning efforts with internal and external partners.

• K0676: Knowledge of cybersecurity laws and regulations

• K0734: Knowledge of Risk Management Framework (RMF) requirements

• K0983: Knowledge of data privacy laws and their implications on cybersecurity practices.

• S0763: Skill in integrity organization objectives with data strategy to enhance decision-making.

Performs other position appropriate duties as required in a competent, professional, and courteous manner

BENEFITS

Our competitive benefits package includes the following

• Immediate eligibility for health and welfare benefits

• 401(k) savings plan with dollar-for-dollar match up to 5%

• Tuition Reimbursement

• PTO accrual beginning Day 1

Note: Benefits may vary based upon position type and/or level

PREFERRED CERTIFICATIONS

• Certified Information System Security Professional (CISSP) certification

• Certified Information Security Manager (CISM) certification

• CompTIA Advanced Security Practitioner (CASP+)

QUALIFICATIONS

• EDUCATION - Bachelor's or 4 years of work experience above the minimum qualification

• EXPERIENCE - 7 Years of Experience

As a health care system committed to improving the health of those we serve, we are asking our employees to model the same behaviours that we promote to our patients. As of January 1, 2012, Baylor Scott & White Health no longer hires individuals who use nicotine products. We are an equal opportunity employer committed to ensuring a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.