SSE Cyber Security Architect

City/State

Overview

Work Shift

Sentara Health is seeking a passionate Cybersecurity professional to join our team as SSE Cybersecurity Architect !

This position is 100% Remote -Candidates must have a current residence in one of the follow states: Alabama, Delaware, Florida, Georgia, Idaho, Indiana, Kansas, Louisiana, Maine Maryland, Minnesota, Nebraska, Nevada, North Carolina, New Hampshire, North Dakota, Ohio, Oklahoma, Pennsylvania, South Carolina, South Dakota, Tennessee, Texas, Utah, Virginia, Washington (state), West Virginia, Wisconsin, Wyoming !

As the Secure Service Edge (SSE) Principal Cyber Security Architect you will focus on selecting, designing, implementing, and managing the SSE infrastructure within Sentara. You will play a vital role in researching and recommending security vendors to provide network security solutions to address current and emerging threats. You will have the opportunity to collaborate with various teams and stakeholders in system-wide technology initiatives to ensure information security and compliance considerations are represented in future state decisions. SSE core services include secure web gateway (SWG), zero trust network access (ZTNA), cloud access security broker (CASB), remote browser isolation (RBI), decryption and firewall as a service (FWaaS).

Primary Responsibilities:

• Designing and implementing SSE infrastructure: The SSE Architect is responsible for designing the SSE architecture that best suits Sentara's needs. They must also implement this design, ensuring that it functions correctly and efficiently.
• Managing SSE infrastructure: Once the SSE infrastructure is in place, the SSE Architect must manage it with a team of Cyber Security architects and engineers. This involves monitoring its performance, troubleshooting any problems that arise, and making any necessary adjustments or upgrades.
• Ensuring security: One of the key responsibilities of the SSE Architect is to ensure that the organization's network is secure. This includes setting up security measures, monitoring any breaches, and responding to any security incidents.
• Training staff: The SSE Architect will also be responsible for training staff on how to use the SSE infrastructure. This could involve creating training materials, conducting training sessions, or providing one-on-one support.
• Staying up to date with SSE technology: As SSE technology is constantly evolving, the SSE Architect must stay up to date with the latest developments. This could involve attending industry events, reading relevant publications, or taking part in professional development opportunities.
• Collaborating with other IT professionals: The SSE Architect will work closely with other IT professionals, such as Cyber Security, Data Protection, Network, and Infrastructure analysts, engineers, architects, and leaders. This will require strong collaboration and communication skills.

Requirements:

• 8+ years of progressive experience in information security with a focus on security architecture
• 5+ years' experience with SSE vendor(s).
• Proven experience as an SSE Architect or in a similar role.
• Strong understanding of SSE architecture and technology.
• Strong understanding of Data Protection concepts and tools.
• Strong subject matter expertise with industry standard information security authoritative sources e.g. COBIT, ISO, NIST and associated architecture control and design methodologies.
• Strong understanding on how to best secure sanctioned and unsanctioned Software as a Service (SaaS) applications.
• Strong understanding on how to best secure managed, unmanaged, and bring your own devices (BYOD).
• Strong understanding of VPNs and how to use ZTNA to replace them for remote workflows.
• Strong knowledge of cloud platforms (AWS, Azure, GCP, etc.).
• Knowledge of CI/CD tools (e.g., Jenkins, Travis CI).
• Familiarity with risk management and compliance.
• Familiarity with web application security concepts, technologies, and frameworks (e.g., HTTP, SSL/TLS, OWASP, etc.).
• Strong analytical and problem-solving skills, with the ability to effectively assess and communicate security risks.
• Excellent written and verbal communication skills, with the ability to collaborate with cross-functional teams and explain complex security concepts to non-technical stakeholders.
• Knowledge of various technical frameworks and concepts (MITRE ATT&CK, CIS, Kill Chain, etc)
• Experience working in a highly regulated environment.
• Ability to express complex technical concepts in business terms.
• Organized and detail-oriented, able to work well under deadlines in a changing environment and complete multiple projects effectively and concurrently.
• Evaluate effectiveness of the internal security control framework and recommend adjustments as business needs change.
• Regularly interact with all levels of management to present and discuss control effectiveness.
• Review and coordinate changes to cyber security policies, procedures, and standards.

Sentara Overview:

For more than a decade, Modern Healthcare magazine has ranked Sentara Health as one of the nation's top integrated healthcare systems.That's because we are dedicated to growth, innovation, and patient safety at more than 300 sites of care in Virginia and northeastern North Carolina, including 12 acute care hospitals.

SentaraBenefits

Sentara Health offers employees comprehensive health & welfare and retirement benefits (401(k)/403(b) with employer match) designed with you and your family's well-beingin mind. You have a variety of options for medical, dental and vision insurance, life insurance, disability, educational assistance, student loan repayment and voluntary benefits as well as Paid Time Off in the form of sick time, vacation time and paid parental leave.Colleagues have the opportunity to earn an annual discretionary bonus if established system and employee eligibility criteria is met.

Salary Range:$127,414- $168,495/ Annually

keyword: #LI-AR2, #INDEED , SSE, Secure Service Edge, Cybersecurity, Talroo-IT

Job Summary

Qualifications:

Skills

Sentara Healthcare prides itself on the diversity and inclusiveness of its close to an almost 30,000-member workforce. Diversity, inclusion, and belonging is a guiding principle of the organization to ensure its workforce reflects the communities it serves.

Per Clinical Laboratory Improvement Amendments (CLIA), some clinical environments require proof of education; these regulations are posted at ecfr.gov for further information. In an effort to expedite this verification requirement, we encourage you to upload your diploma or transcript at time of application.

In support of our mission "to improve health every day," this is a tobacco-free environment.