Senior Domain Architect – Cybersecurity (REMOTE)
|Published||May 25, 2023|
Join us in providing and supporting outstanding care to our patients and community!!
Fairview Health Services is an award-winning nonprofit health care system with more than 24,000 employees and 2,300 aligned physicians. Based in Minneapolis, we provide exceptional, coordinated health care-from preventing illness and injury, to dealing with the most complex medical conditions. Hardworking, innovative, dedicated employees are critical to our future as we seek to improve the health of the communities we serve.
Senior Cybersecurity Domain Architect is a key role in the Enterprise Architecture practice in MHealth Fairview's IT department. The Senior Cybersecurity Domain Architect provides experienced guidance to address current security issues, but has the foresight to see where the industry is headed and proactively deliver optimal secure solutions. This role is expected to think like an adversary and identify how solutions should evolve as the threat landscape changes. This role must possess an executive presence and communication skills, as this role will often lead via influence across multiple IT functions to drive new thinking and practices.
+ Understand and diligently apply organizational methodology, framework and process in the development of a single, cohesive architecture for the IT enterprise.
+ Create architecture views, artifacts for architecture analysis and documentation, and management plan using the tools and templates prescribed by MHF's EA framework.
+ Lead EA review and analysis within the cybersecurity domain for architecture design and articulate choice points to CISO from both design and operations perspectives. Help CISO make vendor/product/service choices that align with domain KPIs and achieve target capability.
+ Upload architecture development plan and documentation into MHF's online living architecture and EA repository to enable reference and use across MHF.
+ Develop As-Is and To-Be views of cybersecurity domain as an integral component of architecture for the IT enterprise, including -
+ Cybersecurity domain OKRs (objectives & key results) as derived from IT strategy and domain plan to achieve them.
+ Cybersecurity domain products and services, related processes and investment portfolio over a 3-year period.
+ Cybersecurity standards, policies, procedures and processes. Upload these standards into MHF's online living architecture and EA repository.
+ Systems and applications including back-end systems for monitoring and automation.
+ Technology landscape, technical design (high-level diagrams), and capacity required to provide services that achieve IT SLA/OLA levels.
+ Cybersecurity and IT standards that must be intrinsically applied in all domains to achieve IT architecture and operations competency.
+ Workforce plan required to originate, sustain and mature target capabilities and services.
+ EA peer-review and formal endorsement of solutions and designs to ensure paced architecture development and deployment across domains.
+ Remain current with new cybersecurity threats and assess systems to ensure they can defend the business. Stay on top of new and disruptive trends in the industry. Formally communicate trends to EA and CISO.
+ Partner with CISO to define scope of work within the domain, domain resources required and direct dependencies within cybersecurity domain to achieve intended target state. Work with EA and CISO to develop supplemental EA resource plan as necessary.
+ Apply CISO's final selection of vendor/product/service to develop detailed deployment plan over a rolling 18-month cycle to achieve To-Be architecture. Translate vendor technology roadmaps into domain roadmaps to ensure continuous improvements to domain operations, including cost-to-serve and other financial KPIs.
+ Help CISO develop workforce strategy, including strategic sourcing, flexible talent pools and upskilling, required to achieve target state over 3-year period.
+ Help CISO develop and maintain lifecycle management and operations practices for the domain to achieve target KPIs.
+ Influence the planning and execution of incident response and postmortem exercises, with a focus on creating measurable benchmarks to show progress (or deficiencies requiring additional attention).
+ Perform engineering performance testing to stress the limitations of cybersecurity solutions while at the same time ensuring business innovation and day-to-day processes are not negatively impacted.
+ Balance EA priority and domain operations considerations to fulfill level 3 engineering responsibilities, including creating low-level diagrams, in the event of over-utilization or absence of engineering roles for a given duration.
+ Provide expert guidance during major incidents and help resolve implementation issues encountered with new and existing technologies.
+ Coach and mentor engineering and operations staff on technology, standards development, and best practices for domain operations maturity.
+ Help CISO to conduct operations and financial analysis, domain maturity assessments and next steps to achieve target state in Q3 of each annual budget cycle.
+ Bachelor's degree in computer science or combination of equivalent education and experience (see addendum for more specific education required)
+ 8-9 years of cybersecurity domain experience
+ 7-8 years of security industry experience
+ 7-8 years of cybersecurity architecture experience
+ Demonstrated experience working in rapid-paced work environment and agile delivery.
+ Demonstrated ability to synthesize research on broad industry trends, present different and leading discussion on pro/con around approach and choices of design, technology and operations.
+ Demonstrated ability to simplify complex technical subject matter and communicate the business and operations impact of choices to business and IT leaders.
+ Possess a DevOps focus across technology and cybersecurity architecture, automation, integration and distribution.
+ Advanced degree in computer science or related field.
+ 10+ years of cybersecurity domain experience
+ 9-10 years of healthcare industry experience
+ 9-10 years of cybersecurity architecture experience
+ Any one of common architecture frameworks (TOGAF, Zachmann, DODAF, FEAF)
+ Certified Information Systems Security Professional (CISSP)
Are you ready to transform healthcare with us?
For more than 100 years, Fairview has been meeting community needs and achieving breakthrough medical advances in care. We are committed to delivering great value for our patients-higher quality, better experience and lower cost. Fairview has seven hospitals and medical centers and more than 90 primary and specialty care clinics throughout the state.
In partnership with the University of Minnesota, Fairview is an academic health system committed to nation-leading research and educating tomorrow's physicians and health care professionals. We serve patients from across the state of Minnesota, the upper Midwest and beyond.
True to our values of dignity, integrity, service and compassion, our employees provide exceptional care to each patient, every day. Consider being part of our team today.
All qualified applicants will receive consideration without regard to any lawfully protected status.
**Need help finding the right job?**
We can recommend jobs specifically for you!
_Fairview Health Services (fairview.org) is an award-winning, nonprofit health system providing exceptional care across the full spectrum of health care services. Fairview is one of the most comprehensive and geographically accessible systems in the state, with 12 hospitals-including an academic medical center and long-term care hospital-serving the greater Twin Cities metro area and north-central Minnesota._
_Its broad continuum also includes 56 primary care clinics, specialty clinics, senior living communities, retail and specialty pharmacies, pharmacy benefit management services, rehabilitation centers, counseling and home health care services, medical transportation, an integrated provider network and health insurer PreferredOne. In partnership with the University of Minnesota, Fairview's 32,000 employees and 2,400 affiliated providers embrace innovation to drive a healthier future through healing, discovery and education._
_As part of our ongoing efforts to protect the wellbeing of our teams and to provide a safe and healthy environment for the patients and communities we serve, all Fairview employees will be required to receive both an annual flu vaccination and the COVID-19 vaccination series. Current employees must have completed both vaccination schedules on or before October 31, 2021.Beginning August 9, 2021, any new hires who are not fully vaccinated against COVID-19 are required to receive their first dose prior to their start date and their second dose (if receiving Moderna or Pfizer vaccines) within 4 weeks of their start date. Annual flu vaccinations are also required before the employment start date for employees who begin employment during the flu season.Accommodations requests will be reviewed on an individual basis._
_EEO/AA Employer/Vet/Disabled All qualified applicants will receive consideration without regard to any lawfully protected status._
**Job Locations** _US-MN-Minneapolis_
**Posted Date** _1 week ago_ _(5/1/2023 12:55 PM)_
**_Requisition ID_** _2021-85560_
**_Profession_** _Business Operations_
**_Speciality_** _Information Technology_
**_Department_** _Enterprise Architecture_
**_Hours per 2 weeks_** _80_
**_Location_** _Fairview offices at 2101 Kennedy_