Senior Security Architect
Durham, North Carolina, United States of America
Full Time Senior-level / Expert USD 118K - 219K
IQVIA
Solutions to help life sciences organizations drive healthcare forward and get the right treatments to patients, faster.Role and Responsibilities
The Security Architect role presents a dynamic opportunity to ensure the secure operation of the IQVIA Global Technology & Operations (GTO) cloud-based and acquired/merged infrastructure and processes through developing and implementing new Cybersecurity safeguards, amending and improving existing safeguards, as well as contributing to implementation of necessary security measures and controls within projects across the enterprise. This role is part of the GTO M&A team with focusses on Information Security. The position will provide an excellent opportunity to liaise with key external and internal stakeholders while strengthening our Information Security function. You will also find yourself working together with other IQVIA Information Security managers and staff, and with Business Unit teams. This is an opportunity to join and progress with a forward-thinking department.
Principal responsibilities will include:
• Work with IQVIA integration teams to secure M&A environments in alignment with IQVIA process, policies and standards.
• Work to implement core controls around critical platforms such as the email systems, backup critical servers, network perimeter, reputational security, MFA, EDR, and DLP.
• Develop information security processes and projects aimed at securing M&A environments through integration into IQVIA enterprise-level cybersecurity solution or via applying dedicated cybersecurity solutions to M&A environment as necessary
• Support a security program focusing on acquisition environments, including both new technological and organizational capabilities across the enterprise
• Ensure delivery of security architecture frameworks, design templates, standards, reference architectures and guidance materials in alignment with the IQVIA Integrated Information Security Framework (IISF) in application to cloud and M&A environments
• Engage with third-party specialist service providers and vendors where necessary to support program deliverables, including carrying out vendor and product selections and organizing necessary operational support
• Work with a team to develop the improvement of the landscape of technical security safeguards, including assessment and deployment of new capabilities, technologies, and systems as it relates to the M&A environments
• Develop secure architecture strategies for IQVIA with respect to technology domain standards and design goals
• Research and identify emerging technology solutions that reduce costs, increase efficiencies, provide more value, provide more capabilities, reduce risks, and increase security posture
• Evaluate information security components and conduct feasibility studies for selecting appropriate and cost-effective solutions
• Assess risks for each security control included in the security integration process and work with Risk Management teams & IT Project Manager to update risk register, current controls and risk treatment plan
• Support the effort for the delivery of M&A projects by providing necessary cybersecurity subject-matter expertise and contribution to both secure solution designs and configurations
Required Experience and Qualifications
• 3 to 5 years of professional experience in Information Security, IT Delivery, IT Program Management or other related areas
• Experience with securing emails, servers, workstations
• Experience conducting security assessments to identify gaps in security architecture and controls.
• Experience with cloud security and cloud security platforms such as CASB, SASE, CSPM, CWPP, SaaS security, CSP (Azure and AWS) IaaS/PaaS security. • Bachelor's degree in Business Administration, Computer Sciences or equivalent work experience in related areas is preferred
• A CISSP, CISM, CCSP or equivalent professional certificate is mandatory
• Working knowledge of IT governance frameworks and standards such as CobiT, ITIL, ISO27001, NIST cybersecurity framework
• Working knowledge of IT architecture frameworks such as TOGAF and/or project management methodologies
• Working knowledge of regulatory and legal requirements frameworks related to information security for healthcare data, such as HIPAA, EU Data Protection Directive and/or equivalent regional frameworks is preferred
• Experience in information technology related positions with working knowledge of IT infrastructure, networks design, databases, processing systems, web applications, mobile technology, cloud, big data, virtualization, protocols and technologies supporting encryption, authentication, access control, information systems attack patterns, intrusion detection, and network security
IQVIA is a leading global provider of clinical research services, commercial insights and healthcare intelligence to the life sciences and healthcare industries. We create intelligent connections to accelerate the development and commercialization of innovative medical treatments to help improve patient outcomes and population health worldwide. Learn more at https://jobs.iqvia.com
We are committed to providing equal employment opportunities for all, including veterans and candidates with disabilities. https://jobs.iqvia.com/eoe
IQVIA’s ability to operate and provide certain services to customers and partners necessitates IQVIA and its employees meet specific requirements regarding COVID-19 vaccination status. https://jobs.iqvia.com/covid-19-vaccine-status
The potential base pay range for this role, when annualized, is $118,200.00 - $219,600.00. The actual base pay offered may vary based on a number of factors including job-related qualifications such as knowledge, skills, education, and experience; location; and/or schedule (full or part-time). Dependent on the position offered, incentive plans, bonuses, and/or other forms of compensation may be offered, in addition to a range of health and welfare and/or other benefits.Tags: AWS Azure Big Data CASB CCSP CISM CISSP Cloud COBIT CSPM EDR Encryption Governance HIPAA IaaS Intrusion detection ISO 27001 ITIL IT infrastructure Network security NIST PaaS Risk management SaaS SASE Security assessment TOGAF
Perks/benefits: Career development Health care
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.