ChristianaCare has an exciting opportunity for a Cloud Security Architect to lead the design and development of the Azure and AWS security architectures for protecting PHI/PII/PCI data deployed into different types of cloud and cloud/hybrid systems. This position will directly contribute to the overall enterprise cloud architecture and lead the security vision and strategy around cloud-based applications, across all types including Infrastructure, Platform, and Software as a Service (IaaS/PaaS/SaaS). In this position you will partner with the cloud team, IT and business teams to provide the necessary leadership to drive overall Cloud Information Security architecture and technologies and other emerging technology solutions by weighing advantages of the existing standards, market availability of products, and risks and benefits of technology introduction into the computing environment.
The Cloud Security Architect will serve as the central point of contact for Enterprise Security for other Technology teams within the organization for all matters related to cloud security reporting into Chief Information Security Officer.
PRINCIPAL DUTIES AND RESPONSIBILITIES:
Design and develop Cloud Security architectures for cloud and cloud/hybrid based systems. Possess a firm understanding of the offerings within VmWare, Amazon Web Services (AWS) and the Microsoft Azure platforms.
Lead role in defining the appropriate Cloud Security architecture, technical requirements and strategies necessary to address information security needs for the organization. *
Conducts research, monitors new product developments and makes recommendations regarding cloud security technologies which have the potential to benefit the security of information assets.*
Determines cloud security requirements by evaluating business strategies and requirements, researching information security standards, conducting system security and vulnerability analyses and risk assessments, studying architecture/platform, identifying integration issues, preparing cost estimates.
Serves as the engineering cloud security expert in network and operating system security design, application development, database design, access and audit control development, and identity management solutions.
Evaluate cloud security controls employed by cloud service providers and other third party providers to ensure information assets are adequately protected and couple them with additional security controls including firewalls, intrusion prevention systems, and monitoring/event correlation solutions.
Focus on evolving secure cloud service provider architectures, developing an approach and strategy for addressing cloud security requirements within cloud architectures, creating new and evolving security services and standards pertaining to cloud services, consulting with internal and external customers, and developing and documenting strategies, standards, and roadmaps for cloud security components and architectures.
EDUCATION AND EXPERIENCE REQUIREMENTS:
Bachelor's degree in Information Systems or related field
At least 8 years related work experience in information security
Health care experience preferred
Special Certification (one or more of the following) preferred: Certified Information System Security Professional (CISSP(ISC2)), Certified Cloud Security Professional (CCSP), AWS Certified Security - Specialty, Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA)
An equivalent combination of education, certifications, and experience may be substituted
KNOWLEDGE, SKILL AND ABILITY REQUIREMENTS:
Experience architecting solutions within Amazon Web Services (AWS), Azure, VMware NSX
Experience with assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes (secure software development (Application Security), data protection, cryptography, key management, identity and access management (IAM), network security) within SaaS, IaaS, PaaS, and other cloud environments.
Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms (OAuth, OpenID, etc).
Experience with deployment orchestration, automation, and security configuration management (Jenkins, Puppet, Chef, etc) preferred.
Experience performing threat modeling and design reviews to assess security implications and requirements for introduction of new technologies.
Full Medical, Dental, Vision, Life Insurance, etc.
Two retirement planning offerings, including 403(b) with company contributions
Generous paid time off with annual roll-over and opportunities to cash out
12 week paid parental leave
Incredible Work/Life benefits including annual membership to care.com, access to backup care services for dependents through Care@Work, retirement planning services, financial coaching, fitness and wellness reimbursement, and great discounts through several vendors for hotels, rental cars, theme parks, shows, sporting events, movie tickets and much more!
Whether a position can be supported for remote work will be assessed based on whether ChristianaCare is able to meet the business requirements of the proposed remote location.
EEO Statement: Christiana Care Health System is an equal opportunity employer, firmly committed to prohibiting discrimination, whose staff is reflective of its community, and considers qualified applicants for open positions without regard to race, color, sex, religion, national origin, sexual orientation, genetic information, gender identity or expression, age, veteran status, disability, pregnancy, citizenship status, or any other characteristic protected under applicable federal, state, or local law.
UPDATE: ChristianaCare is committed to prioritizing the health and safety of our patients and caregivers. As we continue to meet the needs of our caregivers and our community through the COVID-19 pandemic, our commitment to health and safety requires that we take new steps to ensure a safe environment for medical care for our patients and a workplace that avoids preventable harm for our caregivers. For this reason, vaccination for COVID-19 is required for all caregivers at ChristianaCare and is considered a safety standard that is job-related and consistent with business necessity for all caregivers.
ChristianaCare Health System is headquartered in Wilmington, Delaware and is one of the country's largest health care providers, ranking 21st in the nation for hospital admissions. Christiana Care is proudly a Nurse Magnet recognized institution. Christiana Care Health System is also one of the largest health care providers in the mid-Atlantic region, serving all of Delaware and portions of seven counties bordering the state in Pennsylvania, Maryland and New Jersey. A not-for-profit, non-sectarian health system, Christiana Care includes two hospitals with more than 1,100 patient beds, and is a major teaching hospital with two campuses. Christiana Care is continually recognized for excellence on a regional and national level. Our role in the community is expressed in the Christiana Care Way: "We serve our neighbors as respectful, expert, caring partners in their health. We do this by creating innovative, effective, affordable systems of care that our neighbors value."Christiana Care is a great place to work because we value diversity and recognize it to be a core part of our success. Because of the diversity of our employees, affiliated health professionals and volunteers, we are ...positioned to meet the unique needs of our patients and community. We acknowledge and celebrate the uniqueness and talent of each employee. Because of our talented workforce we are able to provide a quality healthcare experience to our patients and community. We strive to create an inclusive environment in which individual diversity can be leveraged and thrive. Christiana Care Health System is an equal opportunity employer, firmly committed to prohibiting discrimination, whose staff is reflective of its community and considers qualified applicants for open positions without regard to race, color, sex, religion, national origin, sexual orientation, genetic information, gender identity or expression, age, veteran status, disability, pregnancy, citizenship status, or any other characteristic protected under applicable federal, state, or local law.