Enterprise Application Security Architect

Company: Blue Cross and Blue Shield of Massachusetts Inc.
Location: Boston
Posted on: November 1, 2024

Job Description:

Enterprise Application Security Architect
Locations: Boston, Hingham
Time Type: Full time
Posted on: Posted 9 Days Ago
Job Requisition ID: R07293
Ready to help us transform healthcare? Bring your true colors to blue.
What We Need
Enterprise Security Architecture is about defining, in a measurable way, what the business is trying to achieve (Goals, Objectives, Drivers, OKRs, business outcomes) and driving the change planning needed to achieve those goals. The Enterprise Security Architect must have extensive experience in designing and implementing enterprise-level solutions. Prior experience focusing on the healthcare payer space is a plus. They will be responsible for ensuring that our technology strategy aligns with the overall business strategy, and for driving innovation through technology solutions.
The intent of the Enterprise Application Security Architect is to focus on how we incorporate preventative and proactive approaches to our SDLC to protect our constituents and our enterprise. The architect will work with other architects to ensure that security is an integral part of the design process. Working with the Enterprise Architecture team, the Enterprise Architect - Application Security will focus on ensuring that we have a controlled approach to managing development risk.
Your Day to Day

• 
  
• Develop and maintain an overall technology architecture and roadmap that supports the organization's strategic goals.
  
• Partner with business and IT leaders to identify and prioritize technology initiatives that will drive business value.
  
• Lead the strategic roadmap efforts around our primary enterprise assets including core payer system for claims processing, member enrollment, provider management, and benefits administration.
  
• Lead strategic innovation and roadmap efforts for supporting platforms and systems including things in the back office (CRM, Content Management, Messaging, Chat, AI/ML).
  
• Define and maintain architecture standards and guidelines, ensuring that all technology solutions adhere to these standards.
  
• Partner with solution architects, development teams, and other stakeholders to ensure that technology solutions are scalable, reliable, and secure.
  
• Identify emerging technologies and trends that could impact the business and evaluate these technologies for potential adoption.
  
• Collaborate with other architects and IT leaders to ensure that technology solutions are integrated and aligned across the organization.
  
• Elaboration of related Security Development standards, patterns, and prototypes.
  
• Elaboration of capability models, target state architectures, and roadmaps for application security.
  
• Development of policies and practices to drive compliance with related standards and roadmaps.
  
• Development of measures to evaluate maturity in related areas.
  
• Will work with developers to determine security concerns/needs for specific applications.
  
• Evaluate existing applications for vulnerabilities and provide recommendations for remediation.
  
• Define controls to address known audit concerns.
  
• Develop/define approaches for a secure SDLC approach.
  
• Educate developers and architects on security concerns and mitigation approaches.
  
• Help respond to security audits and incidents for architecture.
  
  What You Bring
  
  • 
    
  • Deep experience (5+ years) in enterprise level architecture security domain.
    
  • At least 10 years of experience in related focus area (applications security).
    
  • Experience with industry-standard architecture frameworks such as TOGAF, Zachman, or FEA.
    
  • Proven ability to develop and maintain technology roadmaps that align with business strategy.
    
  • Excellent communication skills, with the ability to translate technical concepts into business terms.
    
  • Strong leadership skills, with the ability to lead and influence others.
    
  • Experience with cloud-based architecture and microservices is a plus.
    
  • Knowledge of healthcare industry regulations and standards, such as HIPAA and HITECH, is a plus.
    
  • Experience with standard IT and IT Security frameworks a plus (COBIT, ITIL, NIST, ASVS).
    
  • Healthcare payer system's experience is a plus.
    
  • Bachelor's degree or comparable relevant experience in Computer Science, Information Systems, or a related field.
    
  • Applications and Cybersecurity Related Certifications a plus.
    
    It is our mission at Blue Cross Blue Shield of Massachusetts to foster a culture that enables associates to do their best work while living happy and healthy lives. That's why we offer you a variety of ways to support your best physical, emotional, financial, and social well-being. For more information on our benefit offerings, visit .
    Minimum Education Requirements:
    High school degree or equivalent required unless otherwise noted above.
    Location
    Boston, Hingham
    Time Type
    Full time
    Salary Range: $161,280.00 - $197,120.00
    The job posting range is the lowest to highest salary we in good faith believe we would pay for this role at the time of this posting. We may ultimately pay more or less than the posted range, and the range may be modified in the future. An employee's pay position within the salary range will be based on several factors including, but limited to, relevant education, qualifications, certifications, experience, skills, performance, shift, travel requirements, sales or revenue-based metrics, and business or organizational needs and affordability.
    This job is also eligible for variable pay.
    We offer a comprehensive package of benefits including paid time off, medical/dental/vision insurance, 401(k), and a suite of well-being benefits to eligible employees.
    Note: No amount of pay is considered to be wages or compensation until such amount is earned, vested, and determinable. The amount and availability of any bonus, commission, or any other form of compensation that are allocable to a particular employee remains in the Company's sole discretion unless and until paid and may be modified at the Company's sole discretion, consistent with the law.
    WHY Blue Cross Blue Shield of MA?
    We understand that the confidence gap and imposter syndrome can prevent amazing candidates coming our way, so please don't hesitate to apply. We'd love to hear from you. You might be just what we need for this role or possibly another one at Blue Cross Blue Shield of MA. The more voices we have represented and amplified in our business, the more we will all thrive, contribute, and be brilliant. We encourage you to bring us your true colors, your perspectives, and your experiences. It's in our differences that we will remain relentless in our pursuit to transform healthcare for ALL.
    As an employer, we are committed to investing in your development and providing the necessary resources to enable your success. Learn how we are dedicated to creating an inclusive and rewarding workplace that promotes excellence and provides opportunities for employees to forge their unique career path by visiting our Company Culture page. If this sounds like something you'd like to be a part of, we'd love to hear from you. You can also join our Talent Community to stay "in the know" on all things Blue.
    At Blue Cross Blue Shield of Massachusetts, we believe in wellness and that work/life balance is a key part of associate wellbeing. For more information on how we work and support that work/life balance visit our "How We Work" Page.
    #J-18808-Ljbffr

Keywords: Blue Cross and Blue Shield of Massachusetts Inc., Boston , Enterprise Application Security Architect, Other , Boston, Massachusetts