Enterprise Security Architect

Summary: 

Location: Commutable Remote; Springfield MA

Schedule: Monday-Friday 8a-5p

This position is accountable for the strategic design and management of the corporate security infrastructure and related services to guarantee timely, efficient, accurate and uninterrupted service in support of an Integrated Delivery System. The position accomplishes the above through a combination of consulting, planning, technical analysis and design, and technical management of systems functions consistent with Baystate Health, Inc. policies and procedures.

Ensure all designs and implementations support business architecture and IT-division service strategy and that they conform to accepted organizational standards for technology architecture and service delivery. Coordinate all architecture and change activities with other IT-division elements to ensure properly coordinated and documented service transition activities. Provide documentation, standards and procedures as required to enable operational team ongoing support of technology solutions. Coordinate design, implementation and support activities with business and technology architects to ensure full support of business and IT-division strategy. Carry out design and implementation to ensure the highest degree of standardization and synergy.

The incumbent in this position advises management on new emerging threats and security technologies and makes informed recommendations. Develops short and long range strategic plans for security infrastructure and related services. Guides evaluation, selection and implementation of infrastructure related vendor supplied software packages, including: installation, customization, and ongoing support. Develops specifications for major infrastructure software development projects. Trains and serves as technical resource to assigned personnel. Keeps management apprised of progress, plans and issues via weekly status reports. These functions are performed in accordance with Baystate Health's philosophy, policies, procedures, and standards.

This position reports to the Director of Information Security Operations

Job Responsibilities: 

• This position is responsible for the overall architecture, design and planning functions in support of the following areas:
• Current and future technical and administrative security controls.
• Review of current and emerging security technologies and practices.
• Provides security controls guidance and oversight to resource managers.
• Research and prepare security administrative controls such as procedures, standards, guidelines and best practice documents for both IT division and enterprise partners.
• Analysis and proposal of changes in anticipation of future needs.
• Construction of server topologies to maximize efficiency and security of systems.
• This position recommends corporate standards and procedures for utilization of security services and related technologies. The incumbent provides production escalation support and problem resolution. He/she maintains service levels consistent with agreements.
• This position provides guidance and oversight to resource managers in the following areas:
• Performance
• Availability
• Security
• Capacity planning
• Backup and recovery
• Disaster recovery
• Business continuity
• Network security
• Data loss prevention,
• Endpoint Security,
• Email Security
• Perimeter Security Services
• Defines security related requirements for all network devices, servers and workstation operating systems in production use. Consult with technology architects to ensure planned technologies are assessed for security policy and standards compliance, accepted for use and covered under a build standard prior to introduction to the BH network.     
• Develop standards for secure use of common services such as web, HTTP, SFTP, and others for both internal and perimeter networks.
• Establish methods and procedures to monitor security systems.
• Consult on standards for installation and configuration of security technologies.
• Evaluate security products and services, prepare cost estimates and obtain statements of work.
• May lead or direct other positions more junior or work in peer settings to establish team protocol on a wide variety of projects and/or task assignments. May provide team leadership within the Information Security Office or in groups containing members of other technical personnel.
• This position is responsible for vendor relationship development, management, negotiations, etc.

Required Work Experience: 

• 8+ years of hands-on systems administration and troubleshooting experience in a heterogeneous environment is a must

Skills and Competencies: 

• Knowledge of the Windows and common Linux operating systems
• TCP/IP networks supporting Windows based servers, and of DHCP, DNS, WINS, Web Servers, FTP Servers, SMTP Server, SNMP and other TCP/IP based services and applications
• Ability to troubleshoot complex systems and resolve problems to keep mission critical systems on line
• Ability to configure reliable, secure, performance tuned systems on Windows based servers
• Incumbent must possess an extensive knowledge of EDR, Authentication protocols, and email systems
• Incumbent must possess an extensive knowledge of Internet and Intranet technologies and strategies
• Demonstrated ability to think logically, work with and/or supervise others in problem troubleshooting, to communicate on technical issues effectively both orally and in writing, and to meet deadlines and to work accurately

You Belong At Baystate

At Baystate Health we know that treating one another with dignity and equity is what elevates respect for our patients and staff. It makes us not just an organization, but also a community where you belong. It is how we advance the care and enhance the lives of all people.

DIVERSE TEAMS. DIVERSE PATIENTS. DIVERSE LOCATIONS.

Education:

Certifications:

Equal Employment Opportunity Employer

Baystate Health is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, national origin, ancestry, age, genetic information, disability, or protected veteran status.