Manager, Enterprise Security - Information Security ArchitectureOrganization:
Manages the Emory Enterprise Security Architecture Team. Manages the design, implementation and evolution of Emory’s enterprise security architecture program across the entire Emory enterprise (all Emory schools, divisions, and lines of business), including Emory Healthcare. Develops and maintains current state and target state security architectures. Develops new security architectures that mitigate the risks posed by new technologies and business practices. Assists Emory’s Chief Information Security Officer in developing and implementing an effective enterprise information security strategy and program. Represents Enterprise Security on Emory’s Architecture Review Committee.
MINIMUM QUALIFICATIONS:A Bachelor's degree and seven years of related IT experience including demonstrated technical expertise in multiple information security domains, project management skills and lead or supervisory experience or an equivalent combination of education, training and experience. Excellent project management and team participation skills. Good written and verbal communication skills.
Demonstrated experience designing and implementing large scale enterprise security solutions. Demonstrated ability to identify risks associated with business processes, operations, information security programs and technology implementations. Significant experience with various SaaS, IaaS, and PaaS cloud services (especially Amazon Web Services). Significant experience designing and implementing security controls and technologies in cloud environments. Extensive experience conducting detailed application, system, and network vulnerability assessments and/or security configuration audits. Excellent written and verbal communication skills, including the ability explain complex technical topics to those without a technical background. Expert level knowledge of information security regulatory requirements and industry best practices.
Strongly preferred qualifications include: expert knowledge of information security technologies, methodologies, and practices in security architecture; security policy, standards, and best practices; cloud security; vulnerability assessment and management; secure system and application design; system administration; auditing and security administration of network, operating system, database and application security; access control; encryption; networking and network security; security awareness; IT risk assessment and management; and programming/scripting.
Please see additional qualifications online. How to Apply: