Principal Security Architect JOB DESCRIPTION.SHARE.HTML
CAROUSEL PARAGRAPH
JOB DESCRIPTION.SHARE.HTML
- United States
- Surgical Care Affiliates
- Technology
- Regular
- Full-time
- 1
- USD $122,100.00/Yr.
- USD $170,000.00/Yr.
- 39531
Inhouse Job Description
At SCA Health, we believe health care is about people - the patients we serve, the physicians we support and the teammates who push us forward. Behind every successful facility, procedure or innovation is a team of 15,000+ professionals working together, learning from each other and living out the mission, vision and values that define our organization.
As part of Optum, SCA Health is redefining specialty care by developing more accessible, patient-centered practice solutions for a network of more than 370 ambulatory surgical centers, over 400 specialty physician practice clinics and numerous labs and surgical hospitals. Our work spans a broad spectrum of services, all designed to support physicians, health systems and employers in delivering efficient, value-based care to patients without compromising quality or autonomy.
What sets SCA Health apart isn't just what we do, it's how we do it. Each decision we make is rooted in seven core values:
- Clinical quality
- Integrity
- Service excellence
- Teamwork
- Accountability
- Continuous improvement
- Inclusion
Our values aren't empty words - they inform our attitudes, actions and culture. At SCA Health, your work directly impacts patients, physicians and communities. Here, you'll find opportunities to build your career alongside a team that values your expertise, invests in your success, and shares a common mission to care for patients, serve physicians and improve health care in America.
At SCA Health, we offer a comprehensive benefits package to support your health, well-being, and financial future. Our offerings include medical, dental, and vision coverage, 401k plan with company match, paid time off, life and disability insurance, and more. Click here to learn more about our benefits.
Your ideas should inspire change. If you join our team, they will.
As the Principal Security Architect, you will be responsible for defining and implementing the enterprise-wide security architecture strategy. You will lead the development of security frameworks, patterns, and standards while ensuring alignment with business objectives and regulatory requirements in healthcare. This role combines strategic leadership with deep technical expertise in cybersecurity.
Key Accountabilities:
- Develop and maintain the enterprise security architecture framework, ensuring alignment with business strategy and regulatory requirements
- Provide thought leadership in the design and implementation of enterprise-wide security solutions that protect healthcare systems, applications, and data
- Create and evolve security reference architectures, patterns, and standards for cloud, on-premises, and hybrid environments
- Perform security architecture reviews of major initiatives and provide guidance on risk mitigation strategies
- Lead threat modeling exercises and security assessments for critical systems and applications
- Collaborate with the Infrastructure Team, the Cloud Team, End User Services, the Security Team, as well as other members of the enterprise architecture team to ensure security is embedded in all architecture decisions
- Guide development teams in implementing secure-by-design principles
- Evaluate emerging security technologies and recommend adoption strategies
- Develop security architecture roadmaps aligned with business objectives
- Lead incident response planning and security crisis management at the architecture level
- Mentor security architects and provide technical leadership across the organization
- Establish zero-trust architecture (ZTA) principles, strategies, patterns, and roadmaps to move SCA Health toward a zero-trust enterprise framework
Leadership Responsibilities:
- Drive security architecture vision and strategy
- Lead security architecture governance
- Build and mentor security architecture teams
- Collaborate with C-level executives on security initiatives
- Represent security architecture in enterprise architecture forums
- Master's degree in Computer Science, Cybersecurity, or related field
- 12+ years of IT experience with at least 8 years focused on security architecture
- Extensive experience in healthcare security architecture and compliance
- Deep understanding of security frameworks (NIST, ISO 27001, SABSA)
- Strong knowledge of healthcare compliance requirements (HIPAA, HITECH)
- Experience with cloud security architecture across major platforms (AWS, Azure, GCP)
- Proven track record of designing and implementing enterprise-wide security solutions
- Experience with zero-trust architecture and implementation
- Strong background in identity and access management architectures
- Understanding of security operations and incident response
- CISM (Certified Information Security Manager)
- CRISC (Certified in Risk and Information Systems Control)
- Advanced expertise in threat modeling methodologies (STRIDE, DREAD, PASTA)
- Experience with threat modeling tools (Microsoft Threat Modeling Tool, OWASP Threat Dragon)
- Experience with blockchain security and distributed systems
- Background in AI/ML security architecture
- Experience with medical device security architecture
- Knowledge of emerging security technologies (quantum cryptography, AI-driven security)
- Publications or speaking engagements in security architecture
- Healthcare industry security architecture experience
Desired Certifications:
- CISSP-ISSAP (Information Systems Security Architecture Professional)
- One or more advanced security certifications:
- SABSA Chartered Security Architect
- TOGAF certification with security focus
- AWS Certified Security - Specialty
- Azure Security Engineer Associate
- Certified ArchiMate 3 Practitioner
PI32f6b9f0f5-