Whatsapp
Posted : Sunday, November 12, 2023 11:18 AM
The Application Security Architect will be responsible for developing, establishing, and auditing Application Security Enterprise policies, standards, and guidelines for customer-facing software products.
The ASA works as part of the Tanner Enterprise Architecture team and with other Security stakeholders at Tanner to develop Enterprise Security policies and Software Assurance programs as part of EA Governance.
In this role, the ASA performs Application Security Threat Modeling, reviews, and audits, as well as organizes Security testing of individual products.
The ASA will also be responsible for organizing Application Security training for development and operations teams at Tanner.
In this role, the ASA will also act as a consultant to other architects and development teams for the planning and implementation of select IT initiatives across the Tanner Business Units.
Education Bachelor's Degree Experience Six years of related experience.
Requires advanced knowledge of highly specialized systems and procedures.
Qualifications *Ability to create technical procedural documentation *Bachelor's degree in Computer Science or IT Technology *Experience in training software teams for secure coding and code refactoring for security *Experience managing architects or development teams *Good knowledge of Quality frameworks and methodologies *Organized, accurate, good knowledge of English grammar and spelling *Prior experience performing in the role of an IT Architect.
*Strategic thinking and strong tactical execution *Strong and broad technology knowledge and architecture skillset *Understanding of computer, application, and network exploits and vulnerabilities *Understanding of Information Security frameworks and good practices (e.
g.
ISO, NIST), and ability to strike a balance between an academic and pragmatic approach.
Requirements: Area of Responsibilities *Assist in research, evaluation, design, test, recommend and plan the implementation of new or updated information security technologies.
*Assist security team and IT staff in the resolution of reported security incidents.
Help complete remediation activities and initiate actions to ensure that compliance and security gaps are successfully addressed.
*Develop Application Security Enterprise policies, standards, guidelines and best practices for Tanner in collaboration with other security stakeholders based on both Internal and External compliance requirements.
*Interface with the Project Management teams to ensure security services are met in all phases of the Tanner project management framework.
*Prepare security capability reports by collecting, analyzing, and summarizing data and trends.
*Advisory role in application development or acquisition projects to assess security requirements and controls and to ensure that security controls are implemented as planned.
*Assist with investigations and determinations of threats against business strategy and critical systems and create detection and prevention strategies around that threat intelligence.
*Audit 3rd party products and components for Security vulnerabilities and maintain a list of recommended and not-recommended components.
*Build security requirements into vendor agreements.
*Coordinate with the other members of the security team to align security activities.
*Determine security requirements by evaluating business strategies, infrastructure compliance and product requirements, researching information security standards, conducting system security and vulnerability analyses and risk assessments, studying architecture platform, identifying integration issues.
preparing cost estimates.
*Participate in Security Threat Modeling, Risk Assessment, Security Reviews and Audits, and Penetration tests for software applications used at Tanner.
*Research and assess new threats and security alerts and recommend remedial actions.
*Responsible for security training programs for developers, QA people and business-analysts.
*Update job knowledge by tracking and understanding emerging security practices and standards.
participating in educational opportunities.
reading professional publications.
maintaining personal networks.
participating in professional organizations.
*Work with information security leadership to develop strategies and plans to enforce security requirements and address identified risks.
Compliance Statement Employee performs within the prescribed limits of Tanner Health System's Ethics and Compliance program.
Is responsible to detect, observe, and report compliance variances to their immediate supervisor, the Compliance Officer, or the Hotline.
Education Bachelor's Degree Experience Six years of related experience.
Requires advanced knowledge in highly specialized systems and procedures.
Licenses & Certifications *NONE REQUIRED Qualifications *Ability to create technical procedural documentation *Bachelor?s degree in Computer Science or IT Technology *Experience in training software teams for secure coding and code refactoring for security *Experience managing architects or development teams *Good knowledge of Quality frameworks and methodologies *Organized, accurate, good knowledge of English grammar and spelling *Prior experience performing in the role of an IT Architect.
*Strategic thinking and strong tactical execution *Strong and broad technology knowledge and architecture skillset *Understanding of computer, application and network exploits and vulnerabilities *Understanding of Information Security frameworks and good practices (e.
g.
ISO, NIST), and ability to strike a balance between an academic and pragmatic approach.
Definitions *The Application Security Architect will be responsible for developing, establishing and auditing Application Security Enterprise policies, standards and guidelines for customer facing software products.
The ASA works as part of the Tanner Enterprise Architecture team and with other Security stakeholders at Tanner to develop Enterprise Security policies and Software Assurance programs as part of EA Governance.
In this role, the ASA performs Application Security Threat Modeling, reviews and audits, as well as organizes Security testing of individual products.
The ASA will also be responsible for organizing Application Security training for development and operations teams at Tanner.
In this role, the ASA will also act as a consultant to other architects and development teams for planning and implementation on select IT initiatives across the Tanner Business Units.
Contact With Others Appreciable contacts as regular part of the job with others outside of the department or organization.
Requires discretion and tact to give or get specialized information to perform duties of job.
Effect Of Error Probable errors not easily detected and may adversely affect external as well as internal relationships and may result in major expenditures for equipment, materials, or procedures detrimental to the patient?s welfare or the organization?s interest.
Work is subject to general review only and requires considerable accuracy and responsibility.
Continually works with reports, records, plans, and programs of a major functional area of the organization where integrity is required to safeguard the organization?s position.
Duties may involve the preparation of data on which the administration bases important decisions and are highly confidential.
Supervisory Responsibility Exercises no supervision, work direction, or instruction of other employees or students Mental Demands Work involves a variety of problems in a general field, some of which are complex.
Involves some independent judgment to decide what to do to assemble facts, determine variations from standard procedures, or plan other action to be taken to meet general objectives.
Physical Effort Minimum physical effort - Physical demands encountered are those of a typical office job.
Working Conditions Generally pleasant working conditions/normal office environment.
Physical Aspects Continually (at least once per day) *Typing *Manual Dexterity ? picking, pinching With fingers etc.
*Hearing *Visual *Color Vision Frequently (at least 3 times a week) *Speaking *Standing Occasionally (at least once a month) *Lifting up To 25 lbs.
*Handling ? seizing, holding, grasping *Carrying *Pushing/Pulling ? up To 25 lbs.
The ASA works as part of the Tanner Enterprise Architecture team and with other Security stakeholders at Tanner to develop Enterprise Security policies and Software Assurance programs as part of EA Governance.
In this role, the ASA performs Application Security Threat Modeling, reviews, and audits, as well as organizes Security testing of individual products.
The ASA will also be responsible for organizing Application Security training for development and operations teams at Tanner.
In this role, the ASA will also act as a consultant to other architects and development teams for the planning and implementation of select IT initiatives across the Tanner Business Units.
Education Bachelor's Degree Experience Six years of related experience.
Requires advanced knowledge of highly specialized systems and procedures.
Qualifications *Ability to create technical procedural documentation *Bachelor's degree in Computer Science or IT Technology *Experience in training software teams for secure coding and code refactoring for security *Experience managing architects or development teams *Good knowledge of Quality frameworks and methodologies *Organized, accurate, good knowledge of English grammar and spelling *Prior experience performing in the role of an IT Architect.
*Strategic thinking and strong tactical execution *Strong and broad technology knowledge and architecture skillset *Understanding of computer, application, and network exploits and vulnerabilities *Understanding of Information Security frameworks and good practices (e.
g.
ISO, NIST), and ability to strike a balance between an academic and pragmatic approach.
Requirements: Area of Responsibilities *Assist in research, evaluation, design, test, recommend and plan the implementation of new or updated information security technologies.
*Assist security team and IT staff in the resolution of reported security incidents.
Help complete remediation activities and initiate actions to ensure that compliance and security gaps are successfully addressed.
*Develop Application Security Enterprise policies, standards, guidelines and best practices for Tanner in collaboration with other security stakeholders based on both Internal and External compliance requirements.
*Interface with the Project Management teams to ensure security services are met in all phases of the Tanner project management framework.
*Prepare security capability reports by collecting, analyzing, and summarizing data and trends.
*Advisory role in application development or acquisition projects to assess security requirements and controls and to ensure that security controls are implemented as planned.
*Assist with investigations and determinations of threats against business strategy and critical systems and create detection and prevention strategies around that threat intelligence.
*Audit 3rd party products and components for Security vulnerabilities and maintain a list of recommended and not-recommended components.
*Build security requirements into vendor agreements.
*Coordinate with the other members of the security team to align security activities.
*Determine security requirements by evaluating business strategies, infrastructure compliance and product requirements, researching information security standards, conducting system security and vulnerability analyses and risk assessments, studying architecture platform, identifying integration issues.
preparing cost estimates.
*Participate in Security Threat Modeling, Risk Assessment, Security Reviews and Audits, and Penetration tests for software applications used at Tanner.
*Research and assess new threats and security alerts and recommend remedial actions.
*Responsible for security training programs for developers, QA people and business-analysts.
*Update job knowledge by tracking and understanding emerging security practices and standards.
participating in educational opportunities.
reading professional publications.
maintaining personal networks.
participating in professional organizations.
*Work with information security leadership to develop strategies and plans to enforce security requirements and address identified risks.
Compliance Statement Employee performs within the prescribed limits of Tanner Health System's Ethics and Compliance program.
Is responsible to detect, observe, and report compliance variances to their immediate supervisor, the Compliance Officer, or the Hotline.
Education Bachelor's Degree Experience Six years of related experience.
Requires advanced knowledge in highly specialized systems and procedures.
Licenses & Certifications *NONE REQUIRED Qualifications *Ability to create technical procedural documentation *Bachelor?s degree in Computer Science or IT Technology *Experience in training software teams for secure coding and code refactoring for security *Experience managing architects or development teams *Good knowledge of Quality frameworks and methodologies *Organized, accurate, good knowledge of English grammar and spelling *Prior experience performing in the role of an IT Architect.
*Strategic thinking and strong tactical execution *Strong and broad technology knowledge and architecture skillset *Understanding of computer, application and network exploits and vulnerabilities *Understanding of Information Security frameworks and good practices (e.
g.
ISO, NIST), and ability to strike a balance between an academic and pragmatic approach.
Definitions *The Application Security Architect will be responsible for developing, establishing and auditing Application Security Enterprise policies, standards and guidelines for customer facing software products.
The ASA works as part of the Tanner Enterprise Architecture team and with other Security stakeholders at Tanner to develop Enterprise Security policies and Software Assurance programs as part of EA Governance.
In this role, the ASA performs Application Security Threat Modeling, reviews and audits, as well as organizes Security testing of individual products.
The ASA will also be responsible for organizing Application Security training for development and operations teams at Tanner.
In this role, the ASA will also act as a consultant to other architects and development teams for planning and implementation on select IT initiatives across the Tanner Business Units.
Contact With Others Appreciable contacts as regular part of the job with others outside of the department or organization.
Requires discretion and tact to give or get specialized information to perform duties of job.
Effect Of Error Probable errors not easily detected and may adversely affect external as well as internal relationships and may result in major expenditures for equipment, materials, or procedures detrimental to the patient?s welfare or the organization?s interest.
Work is subject to general review only and requires considerable accuracy and responsibility.
Continually works with reports, records, plans, and programs of a major functional area of the organization where integrity is required to safeguard the organization?s position.
Duties may involve the preparation of data on which the administration bases important decisions and are highly confidential.
Supervisory Responsibility Exercises no supervision, work direction, or instruction of other employees or students Mental Demands Work involves a variety of problems in a general field, some of which are complex.
Involves some independent judgment to decide what to do to assemble facts, determine variations from standard procedures, or plan other action to be taken to meet general objectives.
Physical Effort Minimum physical effort - Physical demands encountered are those of a typical office job.
Working Conditions Generally pleasant working conditions/normal office environment.
Physical Aspects Continually (at least once per day) *Typing *Manual Dexterity ? picking, pinching With fingers etc.
*Hearing *Visual *Color Vision Frequently (at least 3 times a week) *Speaking *Standing Occasionally (at least once a month) *Lifting up To 25 lbs.
*Handling ? seizing, holding, grasping *Carrying *Pushing/Pulling ? up To 25 lbs.
• Phone : NA
• Location : Carrollton, GA
• Post ID: 9065506005
