Security Architect - IAM - Hybrid

at  Baylor Scott White Health

JOB SUMMARY

The Security Architect is a senior security resource that provides enterprise guidance on security related issues, including but not limited to technical infrastructure, processes, design, assessment, implementation, awareness, and governance. Security Architect provides leadership, experience and expertise to project teams. Develops and participates in complex security program management and design. Ensures alignment of security controls to risk as it relates to individual business units and enterprise and provides guidance accordingly. Serves as a security subject matter experienced as part of an in-house, on-shore, and off-shore security architecture team accountable for securing the enterprise information and systems by establishing security requirements across enterprise projects; planning, designing, and documenting security systems; preparing security standards, policies, and procedures.

PREFERRED QUALIFICATIONS

• Development languages: Java, javascript, XML, powershell, shell, SQL
• OS: Windows, Redhat
• Databases: SQL Server, Postres
• Authentication protocols: Kerberos, SAML
• Internal Tools: VSCode, Bitbucket / GIT

MINIMUM QUALIFICATIONS

• EDUCATION - Bachelor’s or 4 years of work experience above the minimum qualification
• EXPERIENCE - 5 Years of Experience

• Ability to perform complex and systemic risk assessment and help project efforts to attain timely and effective secure designs.
• Investigates and resolves problems, inefficiencies and enhances the enterprise risk mitigation stance. Possess deep technical knowledge and demonstrated the ability to apply security related knowledge for practical and timely outcomes.
• Must be able to effectively communicate the conceptual and straightforward design of holistic enterprise security solutions.
• Must be able to function as a technical change agent when appropriate so that enhancements to BSWH security can happen without introducing material un-planned impacts to projects (e.g. security, time, budget or scope.) This must often be done by creating new approaches when legacy standards and directives don’t cover the situation well or there are insurmountable and conflicting business requirements.
• Correlate data and reports from different sources, make reasoned inferences about that data, and be able to publish results. Ability to develop tools and scripts to aid in data processing or other aspects of log and or security research.
• Make / Implement recommendations for improvements in processes and procedures. Evaluate alerts and reports to assist in tuning security systems for accurate results.
• Participate and/or Run projects as requested.
• Assist to remediate compromised endpoints through established processes and procedures and with the current toolset.
• Review detailed log study. Provides / Review recommendations for remediation based on that review, correlation and log study. Prepare reports as requested.
• Configure IAM standards and controls
• Configuration of defined sustainability procedures related to Security Operations Management and IAM initiatives
• Providing workflow recommendations and completing provisioning configuration and entitlement management based on regulatory needs
• Implementing entitlement management solutions for role-based access controls and provisioning procedures for both external and internal application needs (understanding of multiple methods of role management)
• Supporting the implementation of IAM configuration for the joiner, mover, and leaver scenarios across in-scope platforms and applications (also includes complete user scenarios including recertification, password reset functionality, reporting, etc.)
• Analyzing and resolving complex authentication, integration, and automation issues