Information Security Architecture

 As an Information Security Architect, you’ll
lead the design and governance of robust, scalable, and compliant security
architectures that protect sensitive healthcare data and services. Your mission
will be to ensure confidentiality, integrity, and availability across our
digital ecosystem — including electronic health records (EHRs), cloud-based
systems, medical devices, and enterprise infrastructure. You'll
be a technical leader and trusted advisor, collaborating across engineering,
IT, product, and compliance teams to embed secure-by-design principles at every
level.

• Design and develop complex and comprehensive security
  architectures for our systems, applications, and infrastructure, considering
  both current and future needs.  
  
• Collaborates with stakeholders, including developers,
  engineers, and project managers, to integrate security requirements into the
  system design and development lifecycle.  
  
• Provides guidance and expertise in secure coding practices,
  network security, identity and access management, data protection, and other
  security domains.
  
• Model threats and risks designing the controls necessary to
  mitigate them, on both an organizational and technical level – thinking like an
  attacker, understanding and anticipating the moves and tactics that a hacker
  might use to attack systems.
  
• Follow the architecture analysis process, which consists of
  research, validation and evaluation of all new initiatives, with phase gates
  reviews presented to all stakeholders during key forums including current
  trends such as AI and LLMS.
  
• Evaluates and selects security technologies, tools, and
  frameworks to support oraganisation’s security.
  
• Define portfolio vision and reusable security patterns
  aligned with the EA strategy.
  
• Lead architecture reviews for high-risk projects, driving
  recommendations to resolution.
  
• Advise on security controls for hybrid and cloud platforms,
  balancing usability, cost, and compliance.
  
• Defines and applies security policies, standards, and
  procedures to ensure compliance with industry regulations and best practices.  
  
• Leads incident response activities, including identification,
  containment, eradication, and recovery, in coordination with the incident
  response team.  
  
• Experience with Cloud Security platform vendors and
  technologies such as Azure, and AWS.
  
• Manage
  security architects and mentor engineers, developers and vendors.
  
• Risk-based decision-making - expert
  in ISO 27001 / NIST / CIS controls, able to quantify and articulate risk, then
  select proportionate, cost-effective controls.
  
• Pen-testing & threat-modelling
  - scoping, overseeing and translating results into enforceable patterns and
  backlog items.
  
• Influential communication - proven
  ability to engage C-suite and delivery stakeholders alike, adapting style to
  gain agreement and drive secure-by-design culture.
  
• Teamwork and Energy – work across
  different functional and business teams with effective collaboration.
  
• Technical depth - hands-on
  knowledge of cloud security, IAM, container & API security, network
  segmentation, encryption and DevSecOps toolchains; capable of explaining
  exploitability of complex vulnerabilities. Zero trust design thinking.
  
• Mentoring & governance -
  experience line-managing or coaching security architects/engineers and running
  architecture assurance or design-review boards.
  
• Secure-system design leadership -
  demonstrable track record creating or validating architectures for large-scale,
  high-risk services using recognised frameworks (SABSA, TOGAF,).
  

Requirements

• Tertiary qualification in Computer Science, Engineering, or
  related field (preferred)
  
• Minimum of 5-10 years of experience in Security
  Architecture. 
  
• CISSP, CISA, CISM, or other relevant security related
  designation(s) preferred.
  
• Certifications in CISSP-ISSAP, TOGAF, or SABSA, cloud
  architecture (Microsoft, AWS, GCP)
  
• Experience in identifying gaps in existing architectures.
  
• Understanding of security infrastructure in Public and
  Private Cloud, e.g. virtual network infrastructure, hybrid IaaS/PaaS/SaaS
  solutions.
  
• Experience in designing security architectures to mitigate
  threats and sound knowledge of security strategies and technologies.
  
• Direct the Project and Security teams with the guidance to
  build policies, standards, risks and controls frameworks supporting operational
  requirements for the business.
  
• Good experience in security architecture design in Cloud and
  on-prem.
  
• Design and implementation of IOT, End point protection,
  secure IAM.
  
• Understanding of authentication and authorisation
  technologies (SAML, LDAP, PKI, etc.) and other IAM technologies
  
• Understanding of the implementation, operation and
  maintenance of SIEM, boundary protection technologies (firewalls, mail
  gateways), Antivirus and AD security products
  
• Knowledge
  of web application architectures and threat modelling.