.**Description****JOB SUMMARY**:**JOB RESPONSIBILITIES**:- Defines, develops, and leads engagement models and frameworks for technical, process, resource, and operational security considerations for solutions at all points of solution development lifecycle- Manages technical security consultancy, including providing design criteria, review and approval- Creates and maintains implementation standards, reference architectures, and designs patterns that support information security objectives- Develops and maintains threat models to incorporate into solution development process.- Participates in the Architecture Review Board and Change Management Board- Governs and oversees design and scope of all Security Operations initiatives- Works with the Corporate PMO to maintain velocity of all Security Operations initiatives- Disseminates Enterprise technical strategy within Security Operations; incorporates guidance into solutions- Liaison with research and development throughout the enterprise as required- Other duties as assigned**Qualifications****QUALIFICATION REQUIREMENTS (please indicate if 'preferred')**- Management and/or advisory consulting background - preferably to software, technology, and/or healthcare organization- Requires advanced technical and organizational skills with the ability to think strategically, act tactically and advocate and influence positive transformation within the broader Information Technology organization- Experience implementing security programs incorporating regulatory requirements including but not limited to SOX, HIPAA, FISMA, and European Union Data Privacy and Security Directives- Experience incorporating "security and privacy by design" into new infrastructure and systems- Familiarity with Information Technology Governance and Architecture standards including but not limited to, ITIL, ISO 2700x,TOGAF, SPRING, STRUTS, ESAPI and NIST preferred- Familiarity with security industry information and intelligence resources including OWASP, SANS, IEEE, IETF- Experience in at least three of the following vendor's security products and services: CyberArk, Qualys, Crowdstrike, Proofpoint, Zscaler, Tanium, Fortinet, Palo Alto- Experience in developing and implementing security solution architecture and design diagrams, documentation, and supporting materials- Prior experience in healthcare, financial services, government, or any other highly regulated sector is preferred- Works with a sense of urgency while remaining calm under pressure- Demonstrated ability to show initiative to drive progress and improvement- Proven ability to develop consensus and collaborate with team members and management- Superior written and verbal communication skills for a wide range of audience.- Ability to work well independently and in a team environment.- Ability to handle multiple tasks, prioritize and meet deadlines
