Enterprise Application Security Architect

Enterprise Application Security Architect

Do not pass up this chance, apply quickly if your experience and skills match what is in the following description.

Ready to help us transform healthcare? Bring your true colors to blue.

What We Need

Enterprise Security Architecture is about defining, in a measurable way, what the business is trying to achieve (Goals, Objectives, Drivers, OKRs, business outcomes) and driving the change planning needed to achieve those goals.

The Enterprise Security Architect must have extensive experience in designing and implementing enterprise-level solutions.

Prior experience focusing on the healthcare payer space is a plus. They will be responsible for ensuring that our technology strategy aligns with the overall business strategy, and for driving innovation through technology solutions.

The intent of the Enterprise Application Security Architect is to focus on how we incorporate preventative and proactive approaches to our SDLC to protect our constituents and our enterprise.

The architect will work with other architects to ensure that security is an integral part of the design process. Working with the Enterprise Architecture team, the Enterprise Architect Application Security will focus on ensuring that we have a controlled approach to managing development risk.

Your Day to Day

• Develop and maintain an overall technology architecture and roadmap that supports the organization's strategic goals.
• Partner with business and IT leaders to identify and prioritize technology initiatives that will drive business value.
• Lead the strategic roadmap efforts around our primary enterprise assets including core payer systems for claims processing, member enrollment, provider management, and benefits administration.
• Lead strategic innovation and roadmap efforts for supporting platforms and systems including things in the back office (CRM, Content Management, Messaging, Chat, AI / ML).
• Define and maintain architecture standards and guidelines, ensuring that all technology solutions adhere to these standards.
• Partner with solution architects, development teams, and other stakeholders to ensure that technology solutions are scalable, reliable, and secure.
• Identify emerging technologies and trends that could impact the business and evaluate these technologies for potential adoption.
• Collaborate with other architects and IT leaders to ensure that technology solutions are integrated and aligned across the organization.
• Elaboration of related Security Development standards, patterns, and prototypes.
• Elaboration of capability models, target state architectures, and roadmaps for application security.
• Development of policies and practices to drive compliance with related standards and roadmaps.
• Development of measures to evaluate maturity in related areas.
• Work with developers to determine security concerns / needs for specific applications.
• Evaluate existing applications for vulnerabilities and provide recommendations for remediation.
• Define controls to address known audit concerns.
• Develop / define approaches for a secure SDLC approach.
• Educate developers and architects on security concerns and mitigation approaches.
• Help respond to security audits and incidents for architecture.

What You Bring

• Deep experience (5+ years) in enterprise-level architecture security domain.
• At least 10 years of experience in related focus area (applications security).
• Experience with industry-standard architecture frameworks such as TOGAF, Zachman, or FEA.
• Proven ability to develop and maintain technology roadmaps that align with business strategy.
• Excellent communication skills, with the ability to translate technical concepts into business terms.
• Strong leadership skills, with the ability to lead and influence others.
• Experience with cloud-based architecture and microservices is a plus.
• Knowledge of healthcare industry regulations and standards, such as HIPAA and HITECH, is a plus.
• Experience with standard IT and IT Security frameworks a plus (COBIT, ITIL, NIST, ASVS).
• Healthcare payer systems experience is a plus.
• Bachelor’s degree or comparable relevant experience in Computer Science, Information Systems, or a related field.
• Applications and Cybersecurity Related Certifications a plus.

It is our mission at Blue Cross Blue Shield of Massachusetts to foster a culture that enables associates to do their best work while living happy and healthy lives.

That's why we offer you a variety of ways to support your best physical, emotional, financial, and social well-being.

Minimum Education Requirements :

High school degree or equivalent required unless otherwise noted above.

Location

Boston, Hingham

Time Type

Full time

Salary Range : $161,280.00 - $197,120.00

This job is also eligible for variable pay.

We offer a comprehensive package of benefits including paid time off, medical / dental / vision insurance, 401(k), and a suite of well-being benefits to eligible employees.

WHY Blue Cross Blue Shield of MA?

We understand that the confidence gap and imposter syndrome can prevent amazing candidates from coming our way, so please don’t hesitate to apply.

We’d love to hear from you. You might be just what we need for this role or possibly another one at Blue Cross Blue Shield of MA.

J-18808-Ljbffr