Enterprise Security Architect at StanfordMedicineChildrensHealth

JOB SUMMARY This paragraph summarizes the general nature, level and purpose of the job. The Enterprise Security Architect define concepts, technology direction, and develop solutions that achieve planned states of value across all enterprise domains. The position requires strong knowledge in domains that define the enterprise (business, application, data, security and technology) and the ability to pragmatically establish an architecture program capable of defining and executing strategic roadmap. The enterprise architect is responsible for the development of enterprise security standards and technology architecture, technology evaluation and transfer, and related IS governance process. The position has the responsibility to define, apply, teach and evangelize secure frameworks, methodology and process related to the implementation of enterprise architecture concepts and solutions to accelerate the delivery of value and security across the enterprise. This position delivers secure solution elements that require a consulting demeanor yet require strong leadership, documentation and workshop skills to drive business and technical teams to implement effective and efficient operations through secure solutions that meet modern business needs for flexibility, agility, and re-usability. Interacting with executives to execution professionals this position bridges culture gaps and facilitates human adoption of change. The position will be responsible for developing, closing and managing all aspects of a unit/department's IT projects such as systems selection, design, database building, training, testing, activation and post activation activities. ESSENTIAL FUNCTIONS The essential functions listed are typical examples of work performed by positions in this job classification. They are not designed to contain or be interpreted as a comprehensive inventory of all duties, tasks, and responsibilities. Employees may also perform other duties as assigned. Employees must abide by all Joint Commission Requirements including but not limited to sensitivity to cultural diversity, patient care, patient rights and ethical treatment, safety and security of physical environments, emergency management, teamwork, respect for others, participation in ongoing education and training, communication and adherence to safety and quality programs, sustaining compliance with National Patient Safety Goals, and licensure and health screenings. Must perform all duties and responsibilities in accordance with the hospital's policies and procedures, including its Service Standards and its Code of Conduct. * Develops, and evangelizes secure enterprise technology architecture and standards through documented artifacts, formal and informal presentations (e.g., policies, procedures, technology blueprints, assessment reports, presentations, talks, seminars). * Assists Outsourcing (vendor management, Service Level Agreements (SLA) oversight, contract review etc.) * Assists Service Level Agreements for the outsourced core IT services, as it relates to Security, Data Center hosting, Server Management, Network Management, Storage management, Application Management, Desktop Management, Security Management, and Help Desk operations. * Leads the deep dive analysis of all vendor certified platforms and document in all technical aspects of the pros and cons of security for each server type, OS type, SAN type and software.Works with the CISO and other IS leaders to make recommendations on secure enterprise platforms that fit the hospital needs. * Creates detailed procurement order to vendors (Dell, HP, Microsoft, etc.) and negotiates the best model/price/delivery dates/technical support. * Serves as the overarching technical advisor for the security of the enterprise IT infrastructure (Core, BioMed, Epic, and others)/lead contributor for Information Technology projects and key organizational initiatives. Advises Senior Management on emerging trends' impact on strategies. * Participates in developing the overall security technology vision for the enterprise, lead the security technology infrastructure planning & deployment, and enable technology innovation that can create business value. * Attends and represents the enterprise at conferences, workshops, networking events with industry peers and solution providers. * Plans and manages large scale technical projects; Responsible for independent evaluation, selection, substantial adaptation, and modification of standard techniques, procedures, and criteria. * Assures smooth turnover of projects both at the initiation as well as the conclusion to users. * Determines project scope and deliverables, sets project expectations; develops and manages project plans e.g., identification of user requirements, analysis and design, buy/ proposals, contract negotiations, risk assessment, specification development, development and implementation, installation, configuration, testing, training, documentation, policy and procedure development, issue resolution, marketing and go-live customer support. * Monitors project schedule and budget; facilitate discussions on the assessment, documentation, and recommendations on business process flow to achieve project objectives.