Security Architect

The Security Architect is responsible for designing and implementing enterprise security architecture with a focus on identity, endpoint, and data protection. This role provides strategic guidance, oversees vendor integrations, and ensures security controls align with organizational risk and compliance requirements., * Architect and maintain integrations for CrowdStrike, Rapid7, Netskope, Proofpoint, Axonius, and other assigned/procured platforms.

• Design and implement security controls and access management strategies across enterprise systems.
• Develop identity and access management architecture leveraging modern authentication and authorization frameworks.
• Collaborate with stakeholders to define security requirements for new systems and applications.
• Establish monitoring and reporting processes for threat detection, vulnerability management, and compliance.
• Lead vendor evaluations and manage relationships to ensure optimal configuration and performance.
• Create and maintain documentation for security architecture, standards, and operational procedures.
• Provide guidance on Zero Trust principles and secure configuration baselines for all integrated platforms.
• Support incident response efforts by ensuring architectural readiness and integration of forensic capabilities.
• Cybersecurity Incident Response specific responsibilities include:

• Lead incident response efforts from detection through recovery, ensuring timely containment and eradication.
• Assign roles and tasks to analysts and technical teams during an incident.
• Ensure compliance with HIPAA §164.308(a)(6) for incident response and documentation requirements.
• Communicate status updates to stakeholders, including legal, compliance, and executive leadership.
• Authorize escalation and resource allocation for major incidents impacting PHI or critical operations.
• Coordinate external notifications (e.g., OCR, affected individuals) per HIPAA Breach Notification Rule.
• Maintain incident response policies and procedures aligned with HITRUST CSF and organizational risk profile.
• Conduct tabletop exercises and training to validate readiness and improve team performance.
• Oversee post-incident analysis and ensure corrective actions are implemented.
• Report incident metrics and trends to governance committees for continuous improvement.

• Embody AnewHealth's Core Values in all communications and interactions.
• Other duties as assigned.

The above essential functions are representative of major duties of positions in this job classification. Specific duties and responsibilities may vary based upon departmental needs. Other duties may be assigned similar to the above consistent with knowledge, skills and abilities required for the job. Not all of the duties may be assigned to a position., Schedule: This is a full-time position with an expectation to work an average of 40 hours per week and be available outside of normal business hours to meet customer expectations on an ad-hoc basis. Schedules are set to accommodate the requirements of the position and the needs of the organization and may be adjusted as needed.

Travel: Travel may be required for special organization or department events, department team meetings, trade shows, conferences, and other client engagements.

Do you have experience in Technical documentation?, Do you have a Bachelor's degree?, * Bachelor's degree with a focus in Information Technology preferred.

• Relevant certifications such as CISSP, CCSP, or vendor-specific credentials preferred.

Experience

• 3+ years of IT experience as systems architecture or system design.
• Strong background in maintaining operational computer and network security, scripting languages, and Active Directory.
• Experience with security frameworks such as NIST, HITRUST, and Zero Trust.
• Expertise in CrowdStrike, Rapid7, Netskope, Proofpoint, and Axonius deployment and architecture.

Skills & Abilities

• Excellent skills with Microsoft Office Suite required.
• Strong analytical, interpersonal and communication skills required to work effectively with IT&S, Compliance, and clients.
• Ability to effectively document processes required.
• Must be self-starter who is inspired by technology, highly organized, and ability to work with minimal supervision.
• Strong understanding of identity and access management (IAM) principles and technologies.
• Ability to design scalable security solutions for hybrid and cloud environments.
• Proficiency in scripting and automation for security orchestration.

Pulled from the full job description

• 401(k)
• Health insurance
• Paid time off
• Vision insurance
• Dental insurance
• Life insurance
• Disability insurance, AnewHealth offers a comprehensive benefit package for full-time employees that includes medical/dental/vision, flexible spending, company-paid life insurance and short-term disability as well as voluntary benefits, 401(k), Paid Time Off and paid holidays. Medical, dental and vision coverage are effective 1st of the month following date of hire.

AnewHealth is one of the nation's leading pharmacy care management companies that specializes in caring for people with the most complex, chronic needs-wherever they call home. We enable better outcomes for patients and the healthcare organizations who support them. Established in 2023 through the combination of ExactCare and Tabula Rasa HealthCare, we provide a suite of solutions that includes comprehensive pharmacy services; full-service pharmacy benefit management; and specialized support services for Program of All-Inclusive Care for the Elderly. With over 1,400 team members, we care for more than 100,000 people across all 50 states.