Security Architect

Join a team dedicated to supporting the crucial mission of improving health outcomes.

At Merative,  you can apply your skills – and grow new ones – with colleagues who have deep expertise in health and technology. Merative provides data, analytics and software for the health industry. Our clients include providers, health plans, employers, life sciences companies and governments around the world. With industry-leading products and focused innovation, we help customers improve decision-making and performance so that together, we drive real progress in health. Learn more at merative.com

As the Cybersecurity Architect and member of the Chief Information Security Officer (CISO) organization you will provide technical leadership in support of the security of the company’s products and infrastructure. You will provide cybersecurity guidance with knowledge and understanding of concepts, technology, and tools to ensure the security of the company’s and our client’s critical information. This will include leading activities related to the implementation and maintenance of security tooling, investigation of security incidents and support company and client audits. You will represent the CISO and Cybersecurity leadership when you interface with the business and functional leaders in development, operations, information technology and other stakeholders to promote and support a secure environment.

Job Description 

• Provides technical leadership, advice, guidance and perform Cybersecurity related activities. 

• Represent the CISO and Security Leadership when working Development and Operations teams to provide innovative and cost-effective ways to architect and implement designs that protect Merative from cybersecurity threats.​ 

• Research security trends and provide strategic recommendations to support improvements to security protection for our environment. 

• Lead cybersecurity projects ensuring accountability for project results, timing, and productiveness in delivery activities. 

• Provide strategy and technical advice in Information Technology and on Security products with hands-on experience. 

• Lead data protection initiatives and other programs as necessary. 

• Participates in the internal and external audit program to demonstrate security procedures and tools to assure ongoing compliance. 

• Lead teams in activities related to the corrective and preventive action process. 

• Recognizes problems related to project objectives and applies sound judgement when addressing the issues. 

• Independently generates solutions based on analytical skills and business knowledge. 

• Provide guidance and education on company Security Policies and Procedures. 

• Provide training and education to other Merative employees on Cybersecurity topics. 

• Identifies and communicates possible improvements in the work process for customers and peers. 

• Pursues a program of self-development using selected reading, seminars, and participation in continuing education. 

  

Minimum Qualifications: 

• Bachelor’s degree in computer science, engineering, or related field. 

• 5+ years of security design, architecture, and implementation experience. 

• 5+ years of hands-on proficiency in multiple cybersecurity competencies (e.g., network security, systems security, application security, security operations) 

• 5+ years’ experience performing security testing or technical controls validation, including documentation of testing methods and results. 

• 5+ years’ experience in Azure cloud architecture and security services. 

 

Preferred Qualifications: 

• Experience with infrastructure control procedures and network security and integration, including the management of Firewalls, load balancers, switches, and routers. 

• Knowledge of security controls related to infrastructure technology, including enterprise storage (NAS/SANS), Windows and Linux Operation systems, ESX VMware, etc. 

• Experience using SIEM products (e.g., Sumo Logic) to collect data and investigate anomalies. 

• Experience in threat modeling, Vulnerability management, and penetration testing. 

• Knowledge of security standards and controls (e.g., NIST, CIS, etc.). 

• Experience implementing security controls to meet requirements of various security and privacy-related standards and regulations such as SOC I/II, ISO 2700x, HIPAA, GDPR, HITRUST, etc. 

• Proactive awareness of emerging cybersecurity threats and technologies 

• Detail oriented with strong verbal and presentation skills. 

• Excellent interpersonal, communication, and negotiation skills 

• Effective research and analytical skills 

• Effective written and oral communication, technical writing, and editing skills 

• Ability to work independently with minimal supervision 

• Experience Microsoft 365 Office Message Encryption (OME) 

• Security-related certification (i.e., Security+, CISSP, GIAC, etc.) 

It is the policy of Merative to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, HIV status, or any other characteristic protected by federal, state or local law. In addition, Merative will provide reasonable accommodations for qualified individuals with disabilities.