Enterprise Application Security Architect

What We Need

Enterprise Security Architecture involves defining measurable business goals and driving change to achieve them. The Enterprise Security Architect should have extensive experience in designing and implementing enterprise-level solutions, preferably within the healthcare payer space. They will ensure our technology strategy aligns with business objectives and foster innovation through technological solutions.

The focus of the Enterprise Application Security Architect is to integrate preventative and proactive security approaches into our SDLC to protect our enterprise and constituents. They will collaborate with other architects to embed security into the design process and manage development risk effectively.

Your Day-to-Day Responsibilities

1. Develop and maintain a comprehensive technology architecture and roadmap aligned with strategic organizational goals.
2. Partner with business and IT leaders to identify and prioritize initiatives that deliver business value.
3. Lead strategic planning for core enterprise assets, including claims processing, member enrollment, provider management, and benefits administration systems.
4. Drive innovation and develop roadmaps for supporting platforms such as CRM, Content Management, Messaging, Chat, and AI/ML.
5. Establish and uphold architecture standards and guidelines ensuring adherence across solutions.
6. Collaborate with solution architects and development teams to ensure scalable, reliable, and secure technology solutions.
7. Identify emerging technologies and assess their potential impact and adoption.
8. Work with other architects and IT leaders to ensure integrated and aligned technology solutions.
9. Develop security standards, patterns, and prototypes; create capability models, target state architectures, and roadmaps for application security.
10. Formulate policies and practices to ensure compliance and measure maturity in security areas.
11. Engage with developers to address security needs and evaluate applications for vulnerabilities, providing remediation recommendations.
12. Define controls for audit concerns and develop secure SDLC approaches.
13. Educate teams on security concerns and mitigation strategies; respond to security audits and incidents.

What You Bring

• At least 5+ years of experience in enterprise security architecture.
• Over 10 years of related experience, particularly in application security.
• Knowledge of architecture frameworks like TOGAF, Zachman, or FEA.
• Proven ability to develop and maintain technology roadmaps aligned with business strategies.
• Excellent communication skills to translate technical concepts into business language.
• Strong leadership qualities to influence and guide teams.
• Experience with cloud architecture and microservices is advantageous.
• Understanding of healthcare regulations such as HIPAA and HITECH is a plus.
• Familiarity with IT security frameworks like COBIT, ITIL, NIST, and ASVS.
• Healthcare payer system experience is beneficial.
• Bachelor's degree or equivalent experience in Computer Science, Information Systems, or related fields.
• Relevant certifications in Applications and Cybersecurity are a plus.