Information Security Architect-Full Time-DHTS-Durham

Company: Duke Health
Location: Durham
Posted on: September 24, 2022

Job Description:

DHTS: -Duke Health Technology Solutions is a robust, specialized division of Duke University Health System dedicated to the development and management of enterprise IT systems. -A 2020 'Most Wired' health system, Duke is nationally recognized for IT and information management as the first healthcare system to achieve the Davies Award - highest honor by the Healthcare Information and Management Systems Society (HIMSS) - for inpatient, ambulatory, and analytics health information technology capabilities. -Our employees are among the top-skilled IT experts in the Triangle and partner with leading scholars, clinicians, and researchers across Duke University and Duke Health to develop innovative technologies that support our mission of delivering tomorrow's healthcare today. - - -Enterprise Cloud Security ArchitectAnalyst, IT -Job Description:The Cloud Security Architect is responsible for leading the overall design and maturity of security architectures in Duke Health's cloud environments, to support next-generation Duke Health clinical, research, and business applications. This position will serve as the central representation of Information Security for all matters related to cloud security within Duke Health. The successful candidate will have a deep technical understanding of cloud-based security architectures as well as excellent interpersonal and communication skills required for partnering with other leaders across the organization to deliver effective and scalable solutions. - - -Required Education and Work Experience

• Bachelor's degree in a related field
• Current certification(s) for Microsoft Azure with an understanding of both AWS & GCP
• 10 years of experience with Security Architecture and/or Engineering
• 3 to 5 years of experience with Cloud platforms such as AWS, Azure, CGP
• One or more information security industry certifications (e.g. CISSP, CEH, GIAC certifications, or equivalent) are preferred. - - -Duties and Responsibilities
  • Develop a deep understanding of Duke Health's cloud presence and architecture in both cloud and hybrid cloud environments
  • Design and develop security architectures for cloud and hybrid cloud systems. Possess a firm understanding of the offerings within Microsoft Azure, Amazon Web Services and Google Cloud Platform
  • Experience building and securing cloud infrastructure (multi-cloud experience preferred), such as containers, virtual machines, databases, networking, security monitoring and administration
  • Work directly with Security Operations, GRC and Program Management teams to develop documentation and playbooks for integration of services into existing Information Security Office Programs.
  • Demonstrated understanding of available cloud platform services and technologies, their cost structures, and architectures that promote integration and security
  • Deep understanding of HIPAA, NIST and FISMA regulations and frameworks
  • Excellent written and oral communication skills
  • Excellent customer service skills
  • Excellent critical thinking, troubleshooting, problem solving skills
  • Proven ability to analyze customer requirements and translate into effective solutions
  • Experience working in an Agile/DevOps environment and Agile backlog management
  • Experience automating tasks using Ansible, Python, and PowerShell
  • Understand network topologies, firewall rules, certificate management, load balancing - - -Knowledge, Skills and Abilities
    • Experience with architecting solutions within Azure, AWS and/or GCP
    • Experience with assessment, development, implementation, and documentation of a broad set of security technologies and programs such as:
    • Data protection and loss prevention
    • Identity and Access Management
    • Web Application Protection
    • Key Management
    • Cryptography
    • Incident Detection and Prevention
    • Security Event Management
    • Experience with deployment orchestration, automation and security configuration management preferred
    • Experience presenting technical viewpoints to a diverse audience and making timely recommendations based on risk
    • Strong interpersonal and communication skills; ability to work in a team environment
    • Ability to work independently with minimal direction - Duke is an Affirmative Action/Equal Opportunity Employer committed to providing employment opportunity without regard to an individual's age, color, disability, gender, gender expression, gender identity, genetic information, national origin, race, religion, sex, sexual orientation, or veteran status. - Duke aspires to create a community built on collaboration, innovation, creativity, and belonging. Our collective success depends on the robust exchange of ideas-an exchange that is best when the rich diversity of our perspectives, backgrounds, and experiences flourishes. To achieve this exchange, it is essential that all members of the community feel secure and welcome, that the contributions of all individuals are respected, and that all voices are heard. All members of our community have a responsibility to uphold these values. - Essential Physical Job Functions: Certain jobs at Duke University and Duke University Health System may include essentialjob functions that require specific physical and/or mental abilities. Additional information and provision for requests for reasonable accommodation will be provided by each hiring department. -

Keywords: Duke Health, Durham , Information Security Architect-Full Time-DHTS-Durham, Other , Durham, North Carolina