Information Security Architect

The Information Security Architect is responsible for designing, implementing, and maintaining robust security measures to protect an organization’s systems, networks, and applications. This role focuses on ensuring the organization’s digital assets remain secure and compliant. Makes decisions on complex or ambiguous IT architecture issues by coordinating with users to determine requirements and ensuring system improvements are successfully implemented/monitored. Provides consulting and compliance guidance to project teams and IT security regarding policies, industry regulations and best practices. Determines security requirements by evaluating business strategies/requirements. Assists in the development of estimates for security projects and contributes to defining timetables and project plans. 

Job Responsibilities:

• Designs and develops comprehensive security architectures, frameworks, and solutions tailored to the organization’s needs.
• Assess security risks, identify vulnerabilities, and define security requirements. Establishes a robust security posture that addresses current and future threats.
• Conducts risk assessments to identify potential security threats, vulnerabilities, and weaknesses. Prioritize risks based on severity and likelihood. Develops risk mitigation strategies and controls.
• Works with Information Assurance team to create, implement, and enforce security policies, standards, and procedures.
• Ensures compliance with industry regulations, legal requirements, and best practices.
• Establishes guidelines for access control, data protection, encryption, and authentication.
• Evaluates security technologies, tools, and solutions. Researches emerging threats and trends.
• Recommends innovative security solutions to enhance the organization’s security posture.
• Works with Incident Response team to detect, analyze, and respond to security incidents and breaches.
• Participates in the development of incident response plans and protocols.
• Minimizes the impact of security incidents and restore normal operations promptly.
• Aligns security solutions with organizational goals and objectives. Regularly assesses and test security measures.

Requirements:

• Education: Bachelor’s degree in relevant field (or 4 years of additional experience in lieu of degree)
• Experience: 5 years of experience in IT security architecture or security management.
• Certification: At least one security certification required upon start: Certified Information Systems Security Professional, CISM, HCISSP, Security+

We are Inova, Northern Virginia’s leading nonprofit healthcare provider. Every day, our 24,000+ team members provide world-class healthcare to the communities we serve. Our people are the reason we're a national leader in healthcare safety, quality and patient experience. And from best-in-class facilities to professional development opportunities, we support them at every step. At Inova, we're constantly striving to be ever better — to shape a more compassionate future for healthcare. 

Inova Health System is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to age, color, disability, gender identity or expression, marital status, national or ethnic origin, political affiliation, pregnancy (including childbirth, pregnancy-related conditions and lactation), race, religion, sex, sexual orientation, veteran status, genetic information, or any other characteristics protected by law.