Enable America Jobs

Job Description

Location: Chicago, IL

Hospital: RUSH University Medical Center

Department: Cybersecurity Engineering

Work Type: Full Time (Total FTE between 0.9 and 1.0)

Shift: Shift 1

Work Schedule: 8 Hr (8:00:00 AM - 4:00:00 PM)

Summary:

This position is responsible for all aspects of Rush's cybersecurity architecture and strategy. The role defines architectural strategy and directs the group's key information security initiatives. Identify, develop, implement, and maintain architectural processes that promote cyber culture within RUSH. Provides leadership to the IT security architectural team and guidance to engineering and operations teams. Collaborates with the IT leadership to develop and drive implementation of technical cyber security strategies aligned with Rush’s business and Information Services strategy, information risk management, and compliance goals. This position will also ensure the secure configuration and design of IT infrastructure and the safe implementation of the organization’s portfolio of applications. Exemplifies Rush's mission, vision, and values and acts by Rush’s policies and procedures.

Responsibilities:

• Establish the Security Architecture function and the modalities around it.

• Provide the strategic direction and leadership for the Information Security Architecture team. Align the team’s deliverables with both Business and Information Services objectives.

• Direct Architecture and Strategy services include defining and developing secure reference architectures, establishing secure baseline configuration standards, and participating in IT projects as security SMEs.

• Develop and communicate the cybersecurity architecture vision, goals, and objectives.

• Ensure that architectural solutions align with the organization's business strategy, risk appetite, and compliance requirements.

• Develop and maintain strategy and architectural roadmap for RUSH Zero-trust and cloud adoption programs.

• Conduct risk assessments to identify potential threats and vulnerabilities; develop risk mitigation strategies and recommendations to identified risks.

• Partner with information security engineering, IAM, Sec-Ops, and privacy teams to maintain and optimize the company's technical security posture.

• Collaborate with IT teams to develop technical security controls and standards; Ensure the standards are adhered to within the organization.

• Direct the information security technology roadmap and lifecycle management. Lead efforts to implement, replace, and maintain information security technologies following roadmap and lifecycle.

• Act as a subject matter expert and advocate for adopting information security best practices across the organization.

• Contribute to the Information Security leadership team, corporate boards, and committees as a leader and key participant.

• Recruit, develop, and manage a high-performance security architecture team, including setting objectives, performance management, and mentoring the team.

• Effectively manage finances, including budgets for the information security technology portfolio.

• Directs technical security assessments in support of third-party risk management programs.

Required Job Qualifications:

• Bachelor’s degree in computer science or computer science-related fields.

• 20+ years of experience in the cybersecurity field.

• Experience in leading security architecture teams.

• Extensive experience in cybersecurity architecture, strategy development, and implementation, preferably in a leadership role.

• Experience as a technology security leader building world-class security strategies and executing them.

• Experience with relevant compliance frameworks (e.g., ISO 27001, NIST, GDPR) and ability to integrate compliance requirements into architectural designs.

• Experience building effective internal and external relationships and interacting effectively with individuals at all levels.

• Experience influencing and collaborating to get work done through others.

• Experience with technical controls and resolving InfoSec problems.

• Experience with ensuring compliance with all information security policies, standards, and guidelines in developing Information Security plans.

• Development of architectural patterns for technology solutions

Preferred Job Qualifications:

• Experience in developing cloud security governance and standards

• Experience in developing IoT/OT security governance and standards

• Certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Cloud Security Professional (CCSP)

Rush is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other legally protected characteristics.

Position Director of Information Security Architecture & Strategy

Location US:IL:Chicago

Req ID 11836