Jobs
>
San Diego

    IT Security Architect - San Diego, United States - Sharp HealthCare

    Sharp HealthCare
    Sharp HealthCare San Diego, United States

    2 weeks ago

    Sharp HealthCare background
    Description

    Facility:
    Corporate Offices

    City San Diego

    Department

    Job Status

    Regular

    Shift

    Day


    FTE
    1

    Shift Start Time

    Shift End Time

    Certified Information Systems Security Professional (CISSP) - (ISC)2; Certified in Risk and Information Systems Control (CRISC) - ISACA; Offensive Security Certified Professional (OSCP) - Offensive Security; Bachelor's Degree; Master's Degree

    Hours


    Shift Start Time:
    9 AM


    Shift End Time:
    5 PM


    Additional Shift Information:

    Weekend Requirements:
    As Needed


    On-Call Required:
    Yes

    Hourly Pay Range (Minimum - Midpoint - Maximum):
    $ $ $105.328

    The stated pay scale reflects the range that Sharp reasonably expects to pay for this position.

    The actual pay rate and pay grade for this position will be dependent on a variety of factors, including an applicant's years of experience, unique skills and abilities, education, alignment with similar internal candidates, marketplace factors, other requirements for the position, and employer business practices.

    What You Will Do


    Principal Information Technology (IT) Security Architects; perform risk assessments of Sharp HealthCare infrastructure, applications, services, and processes; develop and implement policies and minimum security standards; and develop, implement, and monitor security controls throughout Sharp HealthCare enterprise.

    In case of a security breach or directed insider threat, Principal IT Security Architects lead incident response and investigative activities as necessary.

    Principal IT Security Architects act as mentors to staff and subject matter experts to stakeholders across the wide spectrum of IT disciplines, e.g., applications, operating systems, databases, and digital forensics.

    Required Qualifications

    Bachelor's Degree Applicable field (Computer Science or Electrical, Mechanical, or Computer Engineering is highly desired.)

    10 Or More Years Experience designing, developing, configuring, installing, supporting, and monitoring IT systems such as; TCP/IP networking devices; operating systems; databases; and other IT applications

    Preferred Qualifications

    Master's Degree

    Ability to develop moderately complex applications utilizing common languages such as Java, Python, C, or C++ Certified Information Systems Security Professional (CISSP) - (ISC)2 -PREFERRED

    Certified in Risk and Information Systems Control (CRISC) - ISACA -PREFERRED

    Offensive Security Certified Professional (OSCP) - Offensive Security -PREFERRED

    Other Qualification Requirements

    Certified Information Security Auditor (CISA) Required within 12 months of hire. EnCase Certified Examiner (EnCE) Required within 12 months of hire.

    Essential Functions


    Communication and mentoringAssumes a technical leadership role in ITRM process and solutions development, providing supervision and guidance to other team members as appropriate.

    Must demonstrate a consistent ability to lead others and work without supervision. Presents feedback to both team members and leadership to effectively manage both individual and team performance. Manages stakeholder and department expectations through effective client communication, resolving conflicts and department issues independently through effective decisions.
    Provides guidance for new and existing ITRM team members in operational tasks in order to maximize effectiveness.
    Proposes and implements creative solutions to IT security issues with follow-through to resolution.
    Works independently with ability to exercise discretion and make decisions based on distinct issues.
    Provides technical direction, guidance and oversight for service-related activities of ITRM members.
    Leads training of ITRM forensic and investigative processes.


    Department supportEnsure that information systems are designed, acquired, installed, implemented, documented and supported to provide the best business value to the information security program.

    Ensure that any applicable standards, workflows and processes associated with these solutions are documented and communicated to all team members.

    Demonstrates a strong understanding of Sharp HealthCare, IT and ITRM business goals and objectives.
    Integrate ITRM governance into the overall enterprise governance framework.

    Provides expert guidance to team members about monitoring, measuring, testing and reporting on the effectiveness and efficiency of ITRM controls and compliance policies.

    Leads department efforts to evaluate, recommend and implement methods and approaches to providing continuous monitoring of security activities in the enterprise's infrastructure and business applications.

    Plan, coordinate, and execute significant initiatives to a successful conclusion.

    Leads department efforts to evaluate, recommend and implement testing of the effectiveness and applicability of information security controls (e.g., penetration testing, password cracking, social engineering, assessment tools).Develops moderately complex applications and processes in order to optimize ITRM security operations.


    Data Loss Detection and PreventionDevelops and maintains skills in establishing controls to monitor for inappropriate handling or distribution of Sharp HealthCare's sensitive data.

    Establishes appropriate controls to protect Sharp HealthCare's sensitive data, and monitors for potential loss of that data.

    Leads efforts to develop and maintain processes and controls to monitor for anomalous and/or suspicious activity related the handling of Sharp HealthCare sensitive data.

    Responds appropriately to issues discovered through established controls.
    Works with stakeholders to ensure that proper handling and processing of Sharp HealthCare's sensitive data is maintained.
    Ensures that potential data breaches are communicated effectively to the appropriate management in a timely manner.


    Risk Assessment and Security ArchitectureDevelops and maintains skills in assessing risk, and creatively developing and communicating meaningful controls that align with Sharp HealthCare's business drivers.

    Acts as in-house consultant and subject matter expert to stakeholders, and is responsible for performing risk assessments, delivering risk reports and recommended remediation guidelines, and ensuring issues are effectively tracked to an acceptable resolution.

    Assesses risks, threats and vulnerabilities associated with new and existing systems and business processes.
    Develops and recommends internal control solutions that are proportional to risk.

    Report significant changes in IT security risk to appropriate levels of management for remediation on both a periodic and event-driven basis.

    Proactively monitors and reports on status and progress of all risk assessment and IT security architecture assignments.
    Performs detailed review for architectural and technical risk assessments prepared by ITRM team members as requested.

    Provides detailed feedback and mentoring to ITRM team members as appropriate regarding information security architecture and technical risk assessment principles, tools, and techniques.

    Demonstrates knowledge of regulatory requirements and their potential business impact from an IT security and risk management standpoint.

    Proactively reviews technology and industry trends in risk, threat, and vulnerabilities and leverages this knowledge to recommend meaningful internal control solutions to protect the systems, processes, and sensitive data of Sharp HealthCare.


    Security Event MonitoringDevelops and maintains effective security event monitoring, controls, processes, and technologies that identify threats to Sharp HealthCare's infrastructure and systems so that patient care is not disrupted.

    Collaborates with stakeholders and other ITRM team members to define reasonable, meaningful, and actionable security controls.

    Proactively monitors established controls for known threats and anomalous activity indicating potential risk to Sharp HealthCare's ability to deliver patient care.

    Responds to all security events within the required time period as defined by ITRM leadership.
    Ensures that all assigned aspects of security events are tracked to completion, and adequately resolved.

    Assists in the development, collection, and interpretation of key performance indicators and reports as to the efficacy of Sharp HealthCare's established controls.


    Incident Response and InvestigationsDevelops and maintains skills in responding to system and data breaches by internal and external threat actors.

    Performs forensic duties in support of Sharp HealthCare as necessary.
    Leads efforts to ensure that forensic capabilities and processes are tested periodically for proper functionality.
    Supports stakeholders in performing forensic collections and investigations, and delivering comprehensive reports of findings as requested.

    Leads investigations of information security events (e.g., forensics, evidence collection and preservation, log analysis, interviewing).Maintain and develop knowledge in the components of incident response and investigations.

    Demonstrates knowledge of the forensic requirements for collecting, preserving and presenting evidence (e.g. admissibility, quality and completeness of evidence, chain of custody).Develops processes in order to, and ensures that investigation reports, supporting evidence and data, and other incident or investigative-related documentation is adequately maintained.
    Proposes and develops new capabilities to align with the emerging technologies and changes to Sharp HealthCare's enterprise.
    Acts as ITRM Event Commander during critical ITRM Event Management instances.

    Knowledge, Skills, and Abilities

    Must have excellent customer service skills, and be a good communicator and team player.


    Must be able to effectively work with Sharp management, staff, physicians, and vendors; to communicate accurately and effectively with people, verbally and in writing; to achieve results for the organization with and through people; to practice good time management and to demonstrate good leadership skills.


    Demonstrates strong expertise in IT security principles and best practices, as applied to distributed systems, local area networks, clinical application systems, telecommunications, mobile devices and other IT disciplines.


    Must have a solid understanding of the legal, ethical, managerial and organizational principles and standards for acute care hospitals and multi-facility health systems in California (Preferred).

    Sharp HealthCare is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender, gender identity, sexual orientation, age, status as a protected veteran, among other things, or status as a qualified individual with disability or any other protected class
  • Pacific Premier Bank

    Enterprise Security Architect

    1 week ago

    Pacific Premier Bank San Diego, United States

    The Enterprise Security Architect performs a variety of technical and non-technical functions. This position has direct contact with a variety of company employees. · Normally receives mínimal instruction on day-to-day work, general instructions on new assignments. Develop/integr ...

  • Pragra

    Security Architect

    1 week ago

    Pragra San Diego, United States

    Top Skills · AWS · Security · Tokenization and encryption · Oracle · SQL · Postgres · Snowflake is a big plus · Top Skills' Details · AWS Cloud Architecture- we are looking for someone who was a hands on security engineer who has now moved into an Architecture specific role ( But ...

  • Qualcomm

    CPU Security Architect

    4 days ago

    Qualcomm San Diego, United States

    Company: · Qualcomm Technologies, Inc. · Job Area: · Engineering Group, Engineering Group > SoC Architecture · General Summary: · As the CPU security architect, you will define the CPU, SoC and platform level security technologies for enabling high assurance confidential com ...

  • MediaTek

    Server Level Security Architect

    2 weeks ago

    MediaTek San Diego, United States

    This is a leadership role in our system-on-chip security architecture team, with a focus on computing and automotive products. The architect will be responsible for determining the security requirements for MediaTek's next-generation SoC products targeted for client, edge (e.g., ...

  • MediaTek

    Server Level Security Architect

    1 week ago

    MediaTek San Diego, United States

    This is a leadership role in our system-on-chip security architecture team, with a focus on computing and automotive products. The architect will be responsible for determining the security requirements for MediaTek's next-generation SoC products targeted for client, edge (e.g., ...

  • Booz Allen Hamilton

    Enterprise Security Architect, Lead

    3 weeks ago

    Booz Allen Hamilton San Diego, United States

    Job Number: R0194524 · Enterprise Security Architect, Lead The Opportunity: · Everyone knows security needs to be "baked in" to a system architecture-you actually know how to bake it in. You can identify and implement ways to harden systems and reduce their attack surface. What ...

  • MediaTek

    Server Level Security Architect

    1 week ago

    MediaTek San Diego, United States

    This is a leadership role in our system-on-chip security architecture team, with a focus on computing and automotive products. The architect will be responsible for determining the security requirements for MediaTek's next-generation SoC products targeted for client, edge (e.g., ...

  • MediaTek

    Server Level Security Architect

    4 days ago

    MediaTek San Diego, United States

    This is a leadership role in our system-on-chip security architecture team, with a focus on computing and automotive products. The architect will be responsible for determining the security requirements for MediaTeks next-generation SoC products targeted for client, edge (e.g., a ...

  • Booz Allen Hamilton

    Enterprise Security Architect, Lead

    2 weeks ago

    Booz Allen Hamilton San Diego, United States Full time

    Job Number: R0194524 · Enterprise Security Architect, LeadThe Opportunity: · Everyone knows security needs to be "baked in" to a system architecture—you actually know how to bake it in. You can identify and implement ways to harden systems and reduce their attack surface. What i ...

  • Leidos

    Solution Architect with Security Clearance

    1 week ago

    Leidos San Diego, United States

    R Description Leidos has an immediate opening for a Solution Architect to join our team in San Diego, CA. In this role, you will help solve demanding challenges via technology, modernization, and transformation processes, and proven methods and solutions. As part of a creative, f ...

  • Department of the Navy

    NAVAL ARCHITECT with Security Clearance

    1 week ago

    Department of the Navy San Diego, United States

    Summary You will serve as a Naval Architect in the Hull Engineering Division of SUPERVISOR OF SHIPBUILDING BATH. Vacancies filled from this announcement may be filled at any grade level listed. Duties * You will be responsible for the resolution of technical issues under the cogn ...

  • HRUCKUS

    AWS Solutions Architect with Security Clearance

    3 weeks ago

    HRUCKUS San Diego, United States

    Veteran-Owned Firm Seeking an AWS Solutions Architect for an Onsite role in San Diego, CA My name is Stephen Hrutka, and I am the owner of a veteran-owned management consulting firm in Washington, DC, focused on Technical/ Cleared Recruiting for the DoD and IC. HRUCKUS helps othe ...

  • Booz Allen Hamilton

    Data Architect, Mid with Security Clearance

    3 weeks ago

    Booz Allen Hamilton San Diego, United States

    Job Number: R Data Architect, Mid · The Opportunity: For an organization to transform in today's digital world, it needs to properly collect, store, and organize its data. Effective data management can enable more efficient operations, yielding more growth. As a data architect, y ...

  • Department of Defense

    SUPERVISORY ENGINEER or ARCHITECT with Security Clearance

    3 weeks ago

    Department of Defense San Diego, CA, United States

    Duties · • You will develop acquisition strategies (e.g., long-range, near-term), methods, or goals for the execution of design and construction projects. · • You will write technical engineering plans to provide technical direction for an engineering program. · • You will compos ...

  • BAE Systems

    Senior Cyber architect with Security Clearance

    3 weeks ago

    BAE Systems San Diego, CA, United States

    Job Description BAE Systems is looking for a Cybersecurity/Information Assurance Engineer · The qualified candidate will be working on the security engineering team supporting engineering activities in a rapid development environment to support the specification, development, and ...

  • BAE Systems

    Senior Cyber architect with Security Clearance

    1 week ago

    BAE Systems San Diego, United States

    Job Description BAE Systems is looking for a Cybersecurity/Information Assurance Engineer. The qualified candidate will be working on the security engineering team supporting engineering activities in a rapid development environment to support the specification, development, and ...

  • Department of the Navy

    SUPERVISORY ENGINEER or ARCHITECT with Security Clearance

    1 week ago

    Department of the Navy San Diego, United States

    Summary This is a public notice flyer to notify interested applicants of anticipated vacancies. Applications will not be accepted through this flyer. Interested applicants must follow the directions in the "How to Apply" section of this flyer to be considered. There may or may no ...

  • Department of the Navy

    SUPERVISORY ENGINEER/ARCHITECT with Security Clearance

    3 weeks ago

    Department of the Navy Coronado, United States

    Summary This is a public notice flyer to notify interested applicants of anticipated vacancies. Applications will not be accepted through this flyer. Interested applicants must follow the directions in the "How to Apply" section of this flyer to be considered. There may or may no ...

  • Northrop Grumman

    Staff Systems Architect Engineer with Security Clearance

    1 week ago

    Northrop Grumman San Diego, United States

    At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advanc ...

  • ClearanceJobs

    Principal/Sr Principal Network Architect with Security Clearance

    3 weeks ago

    ClearanceJobs San Diego, United States

    At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advanc ...