Enterprise Security Architect (1.0 FTE, Days)
1.0 FTE, 8 Hour Day Shift
At Stanford Children’s Health, we know world-renowned care begins with world-class caring. That's why we combine advanced technologies and breakthrough discoveries with family-centered care. It's why we provide our caregivers with continuing education and state-of-the-art facilities, like the newly remodeled Lucile Packard Children's Hospital Stanford. And it's why we need caring, committed people on our team - like you. Join us on our mission to heal humanity, one child and family at a time.
This paragraph summarizes the general nature, level and purpose of the job.
The Enterprise Security Architect define concepts, technology direction, and develop solutions that achieve planned states of value across all enterprise domains. The position requires strong knowledge in domains that define the enterprise (business, application, data, security and technology) and the ability to pragmatically establish an architecture program capable of defining and executing strategic roadmap. The enterprise architect is responsible for the development of enterprise security standards and technology architecture, technology evaluation and transfer, and related IS governance process. The position has the responsibility to define, apply, teach and evangelize secure frameworks, methodology and process related to the implementation of enterprise architecture concepts and solutions to accelerate the delivery of value and security across the enterprise. This position delivers secure solution elements that require a consulting demeanor yet require strong leadership, documentation and workshop skills to drive business and technical teams to implement effective and efficient operations through secure solutions that meet modern business needs for flexibility, agility, and re-usability. Interacting with executives to execution professionals this position bridges culture gaps and facilitates human adoption of change. The position will be responsible for developing, closing and managing all aspects of a unit/department's IT projects such as systems selection, design, database building, training, testing, activation and post activation activities.
The essential functions listed are typical examples of work performed by positions in this job classification. They are not designed to contain or be interpreted as a comprehensive inventory of all duties, tasks, and responsibilities. Employees may also perform other duties as assigned.
Employees must abide by all Joint Commission Requirements including but not limited to sensitivity to cultural diversity, patient care, patient rights and ethical treatment, safety and security of physical environments, emergency management, teamwork, respect for others, participation in ongoing education and training, communication and adherence to safety and quality programs, sustaining compliance with National Patient Safety Goals, and licensure and health screenings.
Must perform all duties and responsibilities in accordance with the hospital’s policies and procedures, including its Service Standards and its Code of Conduct.
- Develops, and evangelizes secure enterprise technology architecture and standards through documented artifacts, formal and informal presentations (e.g., policies, procedures, technology blueprints, assessment reports, presentations, talks, seminars).
- Assists Outsourcing (vendor management, Service Level Agreements (SLA) oversight, contract review etc.)
- Assists Service Level Agreements for the outsourced core IT services, as it relates to Security, Data Center hosting, Server Management, Network Management, Storage management, Application Management, Desktop Management, Security Management, and Help Desk operations.
- Leads the deep dive analysis of all vendor certified platforms and document in all technical aspects of the pros and cons of security for each server type, OS type, SAN type and software.Works with the CISO and other IS leaders to make recommendations on secure enterprise platforms that fit the hospital needs.
- Creates detailed procurement order to vendors (Dell, HP, Microsoft, etc.) and negotiates the best model/price/delivery dates/technical support.
- Serves as the overarching technical advisor for the security of the enterprise IT infrastructure (Core, BioMed, Epic, and others)/lead contributor for Information Technology projects and key organizational initiatives. Advises Senior Management on emerging trends' impact on strategies.
- Participates in developing the overall security technology vision for the enterprise, lead the security technology infrastructure planning & deployment, and enable technology innovation that can create business value.
- Attends and represents the enterprise at conferences, workshops, networking events with industry peers and solution providers.
- Plans and manages large scale technical projects; Responsible for independent evaluation, selection, substantial adaptation, and modification of standard techniques, procedures, and criteria.
- Assures smooth turnover of projects both at the initiation as well as the conclusion to users.
- Determines project scope and deliverables, sets project expectations; develops and manages project plans e.g., identification of user requirements, analysis and design, buy/ proposals, contract negotiations, risk assessment, specification development, development and implementation, installation, configuration, testing, training, documentation, policy and procedure development, issue resolution, marketing and go-live customer support.
- Monitors project schedule and budget; facilitate discussions on the assessment, documentation, and recommendations on business process flow to achieve project objectives.
Any combination of education and experience that would likely provide the required knowledge, skills and abilities as well as possession of any required licenses or certifications is qualifying.
- Education: Bachelor's degree in a work-related field/discipline from an accredited college or university
- Experience: Seven (7) years of progressively responsible and directly related work experience
- License/Certification: CISSP, CISM, GSE, or other equivalent
Knowledge, Skills, & Abilities
These are the observable and measurable attributes and skills required to perform successfully the essential functions of the job and are generally demonstrated through qualifying experience, education, or licensure/certification.
- Knowledge of Architecture principles and industry standard frameworks.
- Knowledge of Business Process Modeling and Logic Design.
- Knowledge of Enterprise Application Development, Enterprise Access and Communication, Enterprise Security. Enterprise Data and Information, Business Intelligence, Integration and Interoperability and Operations and Maintenance.
- Knowledge of Program and Project Management.
- Knowledge Transfer and Continuity, Infrastructure Hardware and Software and Enterprise Systems Management.
Knowledge of local, state and federal regulatory requirements related to areas of functional responsibility.
- Ability to conduct assessments of present business, performance, application (service), data (information), and technology architectures.
- Ability to model a present and future state architecture, gaps and roadmaps including patterns to help leaders select between alternative approaches to realize their vision.
- Ability to solving categories of problems and not each problem encountered.
- Ability to move easily between the big picture and detailed technical issues and discussions.
- Ability to communicate among highly political stakeholders in ways that generate trust and facilitate completion of delivered enterprise solutions of high benefit; bridging communications between technical and business teams as well as among executive and operational stakeholders.
- Ability to document overall architecture efficiently and in ways that facilitate implementation of solutions for business benefit.
- Ability to facilitating governance, open communication and fact-based decision making.
- Ability to understand and use information technology to drive process changes.
Equal Opportunity Employer