• Cybersecurity Architect

    Cleveland Clinic (Cleveland, OH)


    Join the Cleveland Clinic team where you will work alongside passionate caregivers and make a lasting, meaningful impact on patient care. Here, you will receive endless support and appreciation while building a rewarding career with one of the most respected healthcare organizations in the world.

     

    As a Cybersecurity Architect at Cleveland Clinic, you will help safeguard information technology assets and protect systems from intentional or inadvertent access. This role develops and maintains enterprise-wide cybersecurity architecture, evolving it to align with business needs, emerging technologies, and the changing threat landscape. You will also contribute to the security risk strategy and framework development by creating reference models and conceptual architectures across multiple security domains. As a member of the Enterprise Cybersecurity Architecture team, you will be joining a supportive environment with a formal talent development strategy, tuition reimbursement, and continuous learning opportunities.

     

    A caregiver in this position works remotely Monday - Friday 8:00am-5:00pm EST (Flexible).

    A caregiver who excels in this role will:

    + Develop and maintain security architecture artifacts (e.g., models, templates, standards and procedures) that can be used to leverage security capabilities.

    + Conduct or facilitate threat modeling of services and applications that tie to the risk and data associated with the service or application.

    + Design and deploy numerous enterprise technical security services such as SIEM, DLP, PKI, IDS/IPS, and enterprise authentication/authorization frameworks and models.

    + Perform requirements of analysis and the development of use cases, architectural views (e.g. conceptual, logical, and physical), reference models and architectures, architectural principles, and architectural patterns.

    + Present technical concepts to a non-technical audience.

    + Create an approach for addressing the specific architectural, design, or process challenge.

    + Interview personnel to understand current operations and areas for improvement.

    + Research available state-of-the-art technologies and solutions.

    + Create white papers and presentations on the proposed solution.

    + Provide technical briefings to leadership.

    + Participate in various forums, and create meeting reports, recommendations, and feedback as directed by leadership.

    + Other duties as assigned.

    Minimum qualifications for the ideal future caregiver include:

    + Bachelor's degree in Information Technology/Computer Science or related field and 7 years of experience in the information security field with expert knowledge of applications, cloud and mobile security, platforms and infrastructure.

    + Offset: High School Diploma / GED or equivalent and 11 years of experience in the information security field.

    + For Information Technology Division caregivers, ITIL Foundations certification is required within 6 months of the position start date.

    + Must have the highest level of experience in security operations, cyber security tools, intrusion detection, secure networks and current state-of-the-art cybersecurity technologies, standards, policies, procedures.

    + Knowledge of Regulations, Standards and Frameworks, including HIPAA/HITECH, HITRUST, SABSA, Zachman, TOGAF, NIST Cybersecurity Framework, ISO 27001/2

    + Strong analytical, administrative, presentation, and project management skills are required

    + Must have strong communication skills (both written and verbal) and the ability to work independently.

    + Ability to conduct a gap analysis of current versus desired capabilities.

    + Advanced knowledge of networking/distributed computing environment concepts.

    + Advanced knowledge with complex domain structures, user authentication mechanisms, and cryptography.

    + Has in-depth knowledge of intrusion detection and data correlation.

    + Intricate knowledge of network topology and the underlying OSI model.

    + Understands principles of client/server configuration.

    + Understands enterprise risk management frameworks and principles.

    The ideal candidate will have:

    + Proven experience in cybersecurity operations, preferably within a regulated healthcare research environment (e.g., CRO, IDN, NIH intramural program, or FDA-regulated organization).

    + Familiarity with laboratory-based, external grant-funded biomedical research environments, including NIH grants and indirect cost structures.

    + Understands biomedical data types, including genomic data, electronic health records (EHRs), and clinical trial data.

    + Strong understanding of regulatory frameworks and standards, including HIPAA/HITECH, the Common Rule, NIST standards, FDA regulations, 21 CFR part 11, and GDPR.

    + Demonstrated experience securing systems in environments that use open-source, academic, or custom-built software, as well as multi-module software ecosystems (e.g., Python, R).

    + Experience with cloud architecture, shared security models, and the secure adoption of cloud technologies.

    + Knowledge of Linux distributions, long-term support models, and OS patching processes.

    + Awareness of public databases, academic data/code resources, and NIH/NLM/NCBI resources, including the associated controls and compliance requirements.

    Preferred qualifications for the ideal future caregiver include:

    + Certified Information Systems Security Professional (CISSP) or from the International Information Systems Security Certification Consortium (ISC2) preferred.

    + Certifications from SysAdmin, Audit, Network and Security Institute (SANS), Computing Technology Industry Association (CompTIA) or other position related certifications preferred.

     

    Our caregivers continue to create the best outcomes for our patients across each of our facilities. Click the link and see how we're dedicated to providing what matters most to you: https://jobs.clevelandclinic.org/benefits-2/

    Physical Requirements:

    + Ability to perform work in a stationary position for extended periods.

    + Ability to travel throughout the hospital system.

    + Ability to operate a computer and other office equipment.

    + Ability to communicate and exchange accurate information.

    Personal Protective Equipment:

    + Follows standard precautions using personal protective equipment as required.

     

    Pay Range

     

    Minimum hourly: $62.91

     

    Maximum hourly: $100.67

     

    The pay range displayed on this job posting reflects the anticipated range for new hires. While the pay range is displayed as an hourly rate, Cleveland Clinic recruiters will clarify whether the compensation is hourly or salary. A successful candidate's actual compensation will be determined after taking factors into consideration such as the candidate's work history, experience, skill set, and education. This is not inclusive of the value of Cleveland Clinic's benefits package, which includes among other benefits, healthcare/dental/vision and retirement.

     

    Cleveland Clinic Health System is pleased to be an equal employment employer: Women / Minorities / Veterans / Individuals with Disabilities