The Security Architect provides support to the Indian Health Services (IHS), Health Information Technology Systems and Support (HITSS) project. This position secures enterprise information by determining security requirements; planning, implementing, and testing security systems and preparing security standards, policies, and procedures.
ESSENTIAL DUTIES AND RESPONSIBILITIES
Essential duties and responsibilities include the following. Other duties may be assigned.
Responsible for the integration of CNI Core Competencies into daily functions, including: commitment to integrity, knowledge / quality of work, supporting financial goals of the company, initiative / motivation, cooperation / relationships, problem analysis / discretion, accomplishing goals through organization, positive oral / written communication skills, leadership abilities, commitment to Affirmative Action, reliability / dependability, flexibility and ownership / accountability of actions taken.
Enhances security team accomplishments and competence by planning delivery of solutions and answering technical and procedural questions.
Determines security requirements by evaluating business strategies and requirements.
Researches information security standards and conducts system security and vulnerability analyses and risk assessments.
Studies enterprise infrastructure architecture identifies integration issues and prepares cost estimates.
Plans security systems by evaluating network and security technologies. Develops requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related security and network devices.
Designs public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software.
Implements security systems by specifying intrusion detection methodologies and equipment.
Directs equipment and software installation and calibration.
Prepares preventive and reactive measures. Creates, transmits, and maintains keys. Provides technical support and complete documentation.
Verifies security systems by developing and implementing test scripts.
Maintains security by monitoring and ensuring compliance to standards, policies, and procedures.
Conducts incident response analyses and develops / conducts training programs.
Upgrades security systems by monitoring the security environment, identifies security gaps, evaluates and implements enhancements.
Prepares system security reports by collecting, analyzing, and summarizing data and trends.
Updates job knowledge by tracking and understanding emerging security practices and standards.
Responsible for aiding in own self-development by being available and receptive to any training made available by the company.
Plans daily activities within the guidelines of company policy, job description and supervisor’s instruction in such a way as to maximize personal output.
Responsible for keeping own immediate work area in a neat and orderly condition to ensure safety of self and coworkers. Will report any unsafe conditions and/or practices to the appropriate supervisor and human resources. Will immediately correct any unsafe conditions to the best of own ability.
Bachelor’s degree in a relevant technical field and a minimum of five (5) years’ related experience in information technology, cybersecurity and risk management, or equivalent combination of education / experience.
CERTIFICATES / LICENSES / REGISTRATION
JOB SPECIFIC KNOWLEDGE / SKILLS / ABILITIES
Knowledge with the MS Office Suite applications of Outlook, Word, Access, PowerPoint and Excel to perform data evaluation, formulas, and analytics
Specialized knowledge and advanced skills in the tools, concepts, practices and procedures of security incident management, threat intelligence and continuous monitoring
Knowledgeable of security-related processes with respect to Federal risk and compliance regulations best practices
Ability to identify possible malware risks and help resolve any current system infections
Ability to write reports based on findings for previous security breaches and threats
Ability to read, analyze, develop and interpret common information systems security documents
Expert computer skills with advanced proficiency in a Windows and Linux based computer environment
Excellent critical thinking skills with ability to identify, analyze and resolve problems / complex issues
Excellent verbal and written communications skills with ability to prepare quality reports and effectively communicate / interact with a wide variety of technical and non-technical audiences (i.e., customers, team members, management and federal staff)
Exceptional customer service skills with ability to respond to requests in a professional, helpful and timely manner
Highly organized with ability to effectively manage multiple projects and priorities
Ability to work in a fast-paced environment and to learn and apply new knowledge and techniques related to incident response and continuous monitoring capabilities
Ability to effectively work both independently and in a team environment for the successful achievement of goals
Ability to read, analyzes, and interprets general business periodicals, professiona1journals, technical procedures, or governmental regulations. Ability to write reports, business correspondence, and procedure manuals. Ability to effectively present information and respond to questions from groups of managers, clients, customers, and the general public.
Ability to work with mathematical concepts such as probability and statistical inference. Ability to apply concepts such as fractions, percentages, ratios, and proportions to practical situations.
Ability to solve practical problems and deal with a variety of concrete variables in situations where only limited standardization exists. Ability to interpret a variety of instructions furnished in written, oral, diagram, or schedule form.
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this job. Work is primarily performed in an office environment. Regularly required to sit. Regularly required use hands to finger, handle, or feel, reach with hands and arms to handle objects and operate tools, computer, and/or controls. Required to speak and hear. Occasionally required to stand, walk and stoop, kneel, crouch, or crawl. Must frequently lift and/or move up to 10 pounds and occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this job include close vision, distance vision, depth perception, and ability to adjust focus. Exposed to general office noise with computers printers and light traffic.