Enterprise Architect (Security)

Enterprise Architect (Security)

As a key leader in our digital transformation, the Enterprise Security Architect will own the design and evolution of our company's security architecture. This is a strategic role responsible for creating the long-term vision and technical roadmap to protect our most critical assets and enable new business initiatives across the Village. You will be accountable for defining and enforcing enterprise-wide security standards, policies, and principles. Your designs will directly impact the security posture of our patient-facing applications, our cloud infrastructure, and the protection of sensitive patient data. This role will influence security decisions across engineering, operations, and business leadership. You'll be instrumental in protecting our organization against an ever-evolving threat landscape. This means continually assessing our security posture against emerging threats, architecting new defenses for both our on-prem and cloud environment, and leading the charge on new security initiatives"

 ESSENTIAL DUTIES AND RESPONSIBILITIES

The following duties and responsibilities generally reflect the expectations of this position but are not intended to be all-inclusive.

• Lead the development and maintenance of the enterprise security architecture roadmap and strategy, aligning with business objectives and risk tolerance
• Design and implement secure architecture and solutions for complex enterprise systems, applications, and infrastructure, including cloud, on-premises, and hybrid environments.
• Conduct proactive threat modeling and risk assessments across the enterprise, identifying vulnerabilities, and developing effective mitigation strategies.
• Define and enforce enterprise-wide security policies, standards, and guidelines in adherence with industry best practices and regulatory compliance frameworks such as NIST, ISO, HITRUST and HIPAA.
• Evaluate and recommend security technologies and solutions, including but not limited to Firewalls, IDS/IPS, SIEM, DLP, MFA, XDR, CSPM, and Data Security, ensuring optimal integration and effectiveness within the enterprise architecture.
• Provide subject matter expertise and technical leadership to security teams and other stakeholders on cybersecurity best practices, architecture principles, and risk management.
• Oversee the implementation of security controls and countermeasures across the enterprise, collaborating with engineering and operations teams to ensure seamless integration and ongoing effectiveness.
• Participate in incident response planning, investigation, and analysis, providing expert guidance and recommendations to minimize the impact of security breaches.
• Continuously research and analyze emerging security threats, technologies, and trends, adapting security architecture and strategies to stay ahead of the curve.
• Develop and maintain comprehensive documentation of the enterprise security architecture, policies, procedures, and controls.
• Partner to develop strategies and roadmaps to introduce technologies, tools and processes to strengthen defenses against cyber threats, including building robust security controls.
• Collaborate effectively with business stakeholders, IT leadership, and other architects to ensure security requirements are integrated into all projects and initiatives.

Knowledge, Skills and Abilities:

• Demonstrated ability to collaborate with highly skilled technical individuals.
• Demonstrated skills and abilities like analytical, problem-solving, critical thinking and adaptability.
• Demonstrated ability to communicate ideas with Senior IT and business leadership Extensive experience in Data Architecture work, including executing at least 3 large scale Data platform modernization and/or Data Migration projects from inception to production.
• Deep knowledge of GCP cloud data platform technologies.
• Clear overall experience and industry knowledge of IT infrastructure, programming languages, networking, network security, penetration testing, cloud security, IAM and other security controls.
• Healthcare industry experience that fosters better requirements aligned to common standards and regulations (HL7, FHIR, CCDA, and HIPAA) is preferable.

MINIMUM QUALIFICATIONS

Education, licenses, certifications, and experience required to fulfill the essential duties, include computer skills as required.

• Bachelor’s or master’s degree in computer science, Software Engineering, Cybersecurity, or related fields.  
• 10+ years of experience in IT and cybersecurity, with a focus on security architecture
• Extensive experience in using security frameworks like NIST and ISO.
• Hands-on experience with cloud platforms (e.g., GCP, AWS, Azure) and their security features.
• Deep experience and knowledge in the areas of Vulnerability assessments, Threat Modeling, Network security.
• Extensive experience in implementing IAM and other security principles, best practices in building applications.
• 3-5 years of hands-on experience in architecting and designing security solutions leveraging GCP cloud security technologies like Cloud IAM, Cloud Armor, Apigee, IAP, SIEM and VPC security controls.
• Healthcare experience with thorough understanding and familiarities of HIPAA, HITECH regulations and HITRUST framework.
• Industry leading certifications for security professionals like CISSP.
• Experience with structured Enterprise Architecture practices, hybrid cloud deployments, and on premise-to-cloud migration deployments and roadmaps.
• Experience in driving solutions that map to the global target architecture, standards, and roadmaps in a distributed hardware, operating systems, and cloud computing.

Here is what you can expect when you join our Village: 

• A "community first, company second" culture based on Core Values that really matter.
• Clinical outcomes consistently ranked above the national average.
• Award-winning education and training across multiple career paths to help you reach your potential.
• Performance-based rewards based on stellar individual and team contributions.
• A comprehensive benefits package designed to enhance your health, your financial well-being and your future.
• Dedication, above all, to caring for patients suffering from chronic kidney failure across the nation.    

About Information Technology

The Information Technology Department designs, develops and maintains software programs required to keep DaVita on the leading edge of medical technology. DaVita's Information Technology Department has both clinic facing and non-clinic facing subgroups that provide our clinician teammates the tools to provide quality patient care. DaVita IT utilizes designers, developers, system architects, project managers, application architects, nurses, trainers and many more professionals to incorporate the technology needs of our clinicians, business and physician customers.

Join us as we pursue our vision "To Build the Greatest Healthcare Community the World has Ever Seen."

Why wait? Explore a career with DaVita today.

Go to http://careers.davita.com to learn more or apply.

To learn more about our Village and the world of dialysis, click here.

What We’ll Provide:

More than just pay, our DaVita Rewards package connects teammates to what matters most. Teammates are eligible to begin receiving benefits on the first day of the month following or coinciding with one month of continuous employment. Below are some of our benefit offerings.

• Comprehensive benefits: Medical, dental, vision, 401(k) match, paid time off, PTO cash out
• Support for you and your family: Family resources, EAP counseling sessions, access Headspace®, backup child and elder care, maternity/paternity leave and more

• Professional development programs: DaVita offers a variety of programs to help strong performers grow within their career and also offers on-demand virtual leadership and development courses through DaVita’s online training platform StarLearning.

#LI-SM5