- Leads preparation of security architecture viewpoints and models depicting current, target, and interim states. Use current state viewpoints to identify and analyze pain points and opportunities (PPOs). Lead advanced modeling and analysis to meet the strategic needs of the organization with respect to system, information, functional/non-functional needs, performance, and security/regulatory requirements. Create and utilize architecture patterns and ensure alignment with IT strategies and reference architectures. Ensure target state alignment and integration across architecture domains. Ensure upstream alignment / traceability to business needs via business architecture and downstream alignment / traceability with solution building blocks. Leads the enablement of security architecture strategies and development of standards, and guidelines. Identify and support development of reusable security patterns.
- Leads design, engineering, and implementation of assets for internal use in solutions to improve solution quality; collaborate through implementation phase. Leads peer reviews and represent the architecture domain in briefings to the Architecture Innovation Review Board. Oversees publishing and maintenance of viewpoints / work products in the architecture repository, ensuring they are organized, accurate, and accessible. Disposition stakeholder comments / feedback received via project and non-project channels. Ensures that regulatory and compliance issues are addressed in solutions.
- Leads collaboration with other teams (business and technical), key stakeholders, and partners to understand needs to maximize architecture impact and address technical limitations. Leads the evaluation/selection of a solution / product design that aligns with IT / Security strategies, standards, and guidelines.
- Leads research emerging security trends to determine their relevancy and fit for the organization.
- Participate in vendor evaluations and selection process broadly; leads vendor evaluation and selection, providing a security focused lens for CTS. Represent CTS from a security perspective in the drafting of RFIs/RFPs and the evaluation / scoring of vendor proposals.
- Leads the development / enhancement of security methods and tools. Ensure the alignment / integration of security best practices, processes / deliverables with those of other architecture domains and SDLC disciplines. Leads development of security related communications / education material and documentation for use with stakeholders and architecture / SDLC partners.
- Leads security assessments for most complex new / proposed projects for architecture impacts in support of annual planning, resource estimation, and alignment with IT strategy and enterprise architecture. Provide input to project, product, and enterprise technology roadmaps. Provide regular reporting on progress, issues, and opportunities related to architecture domain.
- Ensure that CTS and the CEE solutions and design aligns with Enterprise Security Architecture strategies & approved patterns. Serve as a key CTS contact, interacting frequently with Enterprise Security Architecture and Enterprise Architecture for alignment.
- The CareFirst infrastructure supports six thousand+ internal business users, five million members, and sixty thousand providers across twenty-two CareFirst locations
- In alignment with overall Enterprise and Enterprise Security Architecture strategies, the Principal Domain Architect will provide security focused guidance, design reviews, and design approvals for CTS focused supporting & enabling:
- Proficient understanding of the architectural principles of cloud-based platforms including SaaS, PaaS, multitenancy, multi-tiered infrastructure, etc. Proficient experience with Microsoft Azure and AWS preferred.
- Proficient experience and understanding of enterprise networking architecture & security in a hybrid cloud environment. Thorough understanding and expertise with network security stack & load balancing, including firewalls, load balancing (NLB & ALB), cloud native security components. Strong knowledge of network routing, NAT, Network segmentation, and Zero trust security is preferred.
- Good understanding of all cloud offerings in the market and ability to discuss cloud architectures with multiple audiences with different levels of understanding.
- Good understanding of the security processes, standards & issues involved in multi-tier cloud or hybrid applications & services. Familiarity with principles of network, application, and information security.
- Good understanding and experience with core shared infrastructure services such as DNS, DHCP, Active Directory, LDAP, etc.
- Good understanding of DevOps, CI/CD pipeline, test automation, environment, and configuration automation, etc. Software development experience not required but is a plus.
- Good understanding of voice and collaboration security is a plus. This includes SBC's, WebRTC, VOIP, SIP
- Azure cloud infrastructure experience is a plus.
- Microsoft O365 & Azure security solution experience is a plus, including Azure Defender, Sentinel, DLP (Azure information protection), MCAS, Azure Conditional Access, Azure Enterprise Applications, and Azure Enterprise Application Proxy.
- Familiar with Industry or vertical solutions or SaaS is a plus.
- Familiar with relevant (regional, market, industry) data privacy and compliance requirements.
-
Domain / Systems Architect - Healthcare
2 weeks ago
Zolon Tech Solutions, Inc. San Francisco, United States PermanentTitle : Domain / Systems Architect - Healthcare · Location : Owings Mills, MD (fully Remote) · Duration : 6 Months · Job Description:Fully RemoteWe are looking for an Architect with Relevant Experience in Healthcare Domain. The ideal candidate will be working with systems archite ...
-
Healthcare Domain Architect
1 week ago
ALTA IT Services Owings Mills, MD, United StatesHEALTH INSURANCE DOMAIN ARCHITECT · Remote – Contract opening 12+ months. · ALTA IT Services is seeking a Health Insurance Domain Architect to support a Maryland-based health insurance customer. This is a 100% remote position for candidates residing in the EDT and CT zones. · Our ...
-
Domain Architect
2 weeks ago
Zolon Tech Inc. Maryland, United StatesJob Title: Domain Architect/Senior Systems Architect · Location: Remote · Duration: 6+ Months · Job Description: · We are looking for an Architect with Relevant Experience in Healthcare Domain. The ideal candidate will be working with systems architecture. · Drives enterprise o ...
-
M365 Domain Architect-UCC
3 weeks ago
Allegis Group Catonsville, United States Regular Full timeOverview · The Domain Architect (DA) is a member of a delivery team, supporting both new development/product-based efforts, and production support; and is considered the highest-level domain technology expert. · The DA is responsible for: · The assessment of business requiremen ...
-
Manager, Domain Architecture
3 weeks ago
CareFirst BlueCross BlueShield Owings Mills, United States Full timePURPOSE: · Manages the planning, development, modification and application of domain strategies, standards and practices to align, optimize and enable the enterprise to achieve business objectives. Commissions the development of new standards and practices as needed. Manages bud ...
-
Data Architect
3 weeks ago
Saxon Global Owings Mills, United StatesUSC/ GC / H1B · Client- T Rowe price · Hybrid · Data Architect Experience. I will share the job description below. The role is hybrid with 2 days onsite in Owings Mills, MD and 3 days remote. This is a 12 month contract to extend and the rate for this position is about $95-115 ...
-
Adobe Marketing Data
1 day ago
Georgia IT Inc Owings Mills, United StatesJob Title : dobe Marketing Data & Analytics Architect · Location : Owings Mills MD - Hybrid · Position Type : Contract · US Citizen, Green Card, TN, GC EAD and H4 EAD only No Third-party agencies corp to corp. · DESIRED QUALIFICATIONS Bachelor's Degree in Computer Science, ...
-
Dynatrace Observability Engineer/Architect
6 days ago
System One Holdings, LLC Owings Mills, United StatesDynatrace Observability Engineer/Architect · Per Client Relationship U.S. Citizenship or Green card Required · 100% Remote · Contract to Hire Permanent · Work Based in Owings Mills, MD · Applicants must reside in one of the following states- Maryland, VA, DC, West Virginia, Penns ...
-
Dynatrace Observability Engineer/Architect
6 days ago
System One Owings Mills, United StatesDynatrace Observability Engineer/Architect · Per Client Relationship U.S. Citizenship or Green card Required · 100% Remote · Contract to Hire Permanent · Work Based in Owings Mills, MD · Applicants must reside in one of the following states- · Maryland, VA, DC, West Virgini ...
-
Dynatrace Observability Engineer/Architect
3 days ago
Mindlance Owings Mills, United StatesJob Description: JOB TITLE: PRINCIPAL SYSTEMS ENGINEER · PURPOSE: Dynatrace Observability Engineer/Architect · The Dynatrace Observability Engineer/Architect is talented and passionate about Observability and will be responsible for designing and implementing observability solut ...
-
Dynatrace Observability Engineer/Architect
1 week ago
Mindlance Owings Mills, United StatesJob Description: JOB TITLE: PRINCIPAL SYSTEMS ENGINEER · PURPOSE: Dynatrace Observability Engineer/Architect · The Dynatrace Observability Engineer/Architect is talented and passionate about Observability and will be responsible for designing and implementing observability soluti ...
-
Dynatrace Observability Engineer/Architect
1 week ago
System One Holdings, LLC Owings Mills, United StatesDynatrace Observability Engineer/ArchitectPer Client Relationship U.S. Citizenship or Green card Required100% RemoteContract to Hire PermanentWork Based in Owings Mills, MDApplicants must reside in one of the following states- Maryland, VA, DC, West Virginia, Pennsylvania, Delawa ...
-
Sr. Data Engineer
3 weeks ago
Alta It Services Pikesville, United StatesSr. Data Engineer · Onsite -Troy Michigan-Open to c2c · Duties And Responsibilities · The Sr. Data Engineer is responsible in understanding and supporting the businesses through the design, development, and execution of Extract, Transform, and Load (ELT/ETL), data integration, ...
-
Remote position Performance Architect
1 week ago
ALTA IT Services Owings Mills, MD, United StatesHEALTH INSURANCE DOMAIN ARCHITECT · Remote – Contract opening 12+ months. · ALTA IT Services is seeking a Health Insurance Domain Architect to support a Maryland-based health insurance customer. This is a 100% remote position for candidates residing in the EDT and CT zones. · ...
-
Sr. Data Engineer
1 week ago
System One Pikesville, United StatesSr. Data Engineer · Onsite -Troy Michigan-Open to c2c · Duties and Responsibilities: · The Sr. Data Engineer is responsible in understanding and supporting the businesses through the design, development, and execution of Extract, Transform, and Load (ELT/ETL), data integration ...
-
Adobe Marketing Data
2 weeks ago
Georgia IT Inc Owings Mills, United StatesJob Title : · dobe Marketing Data & Analytics Architect · Location : Owings Mills MD - Hybrid · Position Type : · Contract · US Citizen, Green Card, · TN, GC EAD and H4 EAD only No Third-party agencies corp to corp. · DESIRED QUALIFICATIONS · Bachelor's Degree in Computer Sci ...
-
Chief Architect
3 weeks ago
Cognizant Owings Mills, United StatesChief Architect · Job Summary · Cognizant is looking for a · Chief Architect · with at least 15-18 years of experience in developing customized product and defining Architectural roadmap for the client's strategic modernization. Cognizant needs a motivated individual to challenge ...
-
Solution Architect
3 weeks ago
Bellese Technologies Owings Mills, United StatesIntroduction · Bellese Technologies is looking for someone with a passion for solving big problems in healthcare. We foster a learning environment that thrives on curiosity, innovation, and passion about improving healthcare in America. · Our remote-first team is spread across ...
-
Oracle ERP Financials Principal
3 weeks ago
CareFirst BlueCross BlueShield Owings Mills, United StatesResp & Qualifications · PURPOSE: · Implements the engineering best practices required to produce and deploy high quality products. Ensures engineering alignment with functional and technical requirements. Handles the design, implementation, testing, and maintenance of products as ...
-
Chief Architect
3 weeks ago
Cognizant North America Owings Mills, United StatesChief Architect · Job Summary · Cognizant is looking for a · Chief Architect · with at least 15-18 years of experience in developing customized product and defining Architectural roadmap for the client's strategic modernization. Cognizant needs a motivated individual to chall ...
Principal Domain Architect - Owings Mills, United States - CareFirst BlueCross BlueShield
Description
PURPOSE:
The Principal Domain Architect is a security expert with business acumen and in-depth knowledge and expert skills to advance domain strategies. Translates business needs for security into architectural solutions that meet performance, reliability, and security expectations. Applies enterprise roadmaps, principles, standards, and practices to drive their security strategies and execution. Acts as the key interface for Core Technology Services (CTS) to provide security architecture guidance for all CTS technology. Provides direct operational support to Cloud Engineering and Enablement (CEE) members, who are responsible for execution and implementation of cloud governance controls.ESSENTIAL FUNCTIONS:
SCOPE:
Cloud Security – CareFirst's approach is "cloud first, native first, Azure first, therefore the primary cloud is Azure, but AWS and various SaaS providers are applicable. CTS has operational ownership of AWS and Azure cloud environments. Zero trust security
Network security – On premise and cloud connectivity. Cisco switches / routers with Palo Alto on-Prem & cloud VMseries firewalls. Azure cloud NSG's, ASG's, segmentation, and automation. Alignment with Enterprise Security Architecture
Identity & access management – Okta, SailPoint, Azure AD, Active Directory. CTS is directly responsible only for Azure AD & Active Directory.
Cloud Migration – Cloud migration & datacenter exit. Principal Domain Architect will partner with Enterprise Security Architecture to ensure adequate security design, repeatable processes, and best practices are in place.
Governance & Compliance (cloud & on premises) – Enforce governance with group policy, configuration management, Azure policy, automation runbooks, and DevSecOps. As a healthcare provider with Federal customers, we require FedRamp moderate compliance within the identified boundaries. HIPAA, PCI, and other regulatory compliance must be enforced
Unified Communications – Office 365 Exchange, SharePoint, Teams, and OneDrive, Power BI, Power Platform. O365 Office plugins and Azure Enterprise Apps require security & risk review as well
Call Center Applications – CareFirst Call center applications, including signaling, IVR, Call recording, and workforce management on Nice cloud
On-premises Infrastructure – Datacenter exit and multi-region co-locations. Infrastructure PODs (Net/Storage/Compute) supporting cloud incompatible apps/services. Windows/Linux OS VM's running on VMware virtualization platform
SaaS/PaaS applications – Partnerships with Salesforce, Planon, KeyedIn, Splunk, and other SaaS providers. Marketplace partner solutions and SaaS/PaaS preferred over IaaS
End user computing & collaboration – Horizon VDI (non-admin & privileged admin jump VM's), Laptops with Palo Alto VPN, Teams meeting rooms, and BYOD with Intune app management
QUALIFICATIONS:
Education Level: B achelor's degree in Computer science, Information Technology, or related field OR in lieu of a bachelor's degree, a successful candidate possesses an additional 4 years of professional experience.
Experience: 10+ years of Security architecture experience.
Knowledge, Skills and Abilities (KSAs)
Department
Department:
Equal Employment Opportunity
CareFirst BlueCross BlueShield is an Equal Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information.