hero






Principal Information Security Architect

Blue Cross Blue Shield of North Carolina

Blue Cross Blue Shield of North Carolina

IT
Posted on Friday, May 31, 2024

Job Description

IT is different here. Our work as technology specialists pushes the boundaries of what’s possible in health care. You will build solutions that make a real difference in people’s lives. Driven by the importance of their work, our team members innovate to elevate. We’re encouraged to be curious, collaborate, and turn ideas into solutions that can make health care better for all.

In this position you will be responsible for researching, evaluating, recommending, and validating complex and broad based security systems designs and security controls that deliver on accepted security best practices, regulatory compliance and documented policy. Partners with all areas of business and information technology to drive security requirements, and deliver on security objectives within product development, business process design, IT and business operations development, software development, and their respective life cycles. Develop and review architecture artifacts and manage adherence to architecture standards.

If you are ready to make a career out of making a difference, then you are the person for this team.

What You Will Do

  • Influence, consult with and build collaborative working relationships with senior business and IT leadership at the VP/Officer and C levels to help meet long term security objectives.
  • Conduct risk assessments, evaluate alternative strategies, develop recommendations and ensure responsive communication with business representatives, security management, and third party vendors.
  • Participate in the design review process and support the overall Security Architecture process.
  • Influence and drive change to security architecture processes, strategies and standards, as needed in areas such as: information security, Data Loss Prevention, Intrusion Prevention, Endpoint, Network, Applications, Threat and Vulnerability Management, and Identity and Access Management.
  • Partner with management in defining and setting appropriate, implementable information security policy and ensuring alignment to standard operating procedures, instructions and standards.
  • Develop, maintain and implement security policies, processes, tools and methodologies that support security architecture standards and ensure effective evolution of security architecture within the organization.
  • Research, evaluate, recommend, plan implementation of, and test new or improved information security software or devices
  • Coordinate analysis of new or enhanced software application or tool implementations for impacts to existing security software and devices.
  • Participate in and/or lead forensic investigations and eDiscovery of suspected information security issues or in compliance reviews as requested by auditors, HR, Ethics, or Legal.
  • Utilize security expertise and knowledge of new and emerging cyber-attacks threats to make recommendations to management regarding implementation of best practices and/or process improvements to proactively protect the company’s systems and networks.
  • Provide informal work coordination and leadership/coaching to less experienced information security staff.

What You Bring

  • Bachelor's degree or advanced degree (where required)
  • 8+ years of experience in related field.
  • In lieu of degree, 10+ years of experience in related field.
  • At least one security industry certification (i.e., CISSP, CISA, CISM, SANS), preferred.
  • Demonstrated ability to manage endpoint and end-user domains

    Salary Range

    $105,600.00 - $191,800.00