Director, Security Architecture

Working together, we can make a difference in healthcare for our customers and communities. Your contributions, along with colleagues around the world, are helping make healthcare safer and more productive every day.

This role is for a Director Information Security Architecture and User Access Management.  The ideal candidate will possess a strong information security architecture background and IT leadership experience. 

What Enterprise Architecture contributes to Cardinal Health

Enterprise Architecture is responsible for defining the architectural models, governance, and transition initiatives needed to effectively coordinate stakeholders toward a common goal. Enterprise Architecture has responsibility for all of the architecture domains including business, application, information, technology, and security architecture.

  • Demonstrates deep competence in enterprise architecture with an emphasis on information security architecture

  • Effectively communicates and influences others towards moving to future state architectures
  • Leads the creation of information security technology strategies and roadmaps based on business strategy, IT trends and the overall threat landscape as well as current and future architectures
  • Evaluates and obtains alignment on information security standards, patterns, and reference architecture
  • Leads the development of information security solution architectures that align requirements, reference architectures, design patterns and technology standards to achieve solution agility and speed to implementation
  • Ensures project adherence to information security architectures during solution build and implementation
  • Provides user access management team leadership for new projects and ongoing operational needs
  • Provides strategic leadership and direction for enterprise Identity Access Management Program
  • Defines client and regulatory aligned user access management service levels and measures team progress towards achieving those objectives
  • Assists in the development of multiyear information security strategy
  • Provides leadership to managers and experienced security architecture staff
  • Manages an organizational budget
  • Interacts with internal and/or external leaders, including senior management

Qualifications

  • Undergraduate degree in a technical field; master’s degree preferred.
  • 12 years of experience with IT security principles, practices, technologies, programs and procedures, accompanied by an understanding of risk management methodologies and frameworks
  • Prior supervisory experience
  • Experience leading the development of information security architectures in a global environment, specifically North America, Europe and Asia
  • Familiarity with IT Security and Governance standards including ISO 27002, NIST, HITRUST, etc.
  • Certifications such as Certified Information Security Professional (CISSP) or Certified Information Security Manager (CISM) preferred
  • Demonstrated ability to manage competing priorities
  • High-quality analytical skills, leadership experience, and exceptional relationship management competencies
  • Ability to provide leadership in a highly matrixed environment

What is expected of you and others at this level

  • Provides leadership to managers and experienced professional staff may also manage front line supervisors
  • Manages an organizational budget
  • Develops and implements policies and procedures to achieve organizational goals
  • Assists in the development of functional strategy
  • Decisions have an extended impact on work processes, outcomes, and customers
  • Interacts with internal and/or external leaders, including senior management
  • Persuades others into agreement in sensitive situations while maintaining positive relationships