Job Information
Magellan Health Services Principal Information Security Architect - Remote in United States
Candidates for this remote position should have a favorably adjudicated T3 investigation / secret clearance to be eligible for this role. This position is contingent upon a contract award.
This is also a fully remote position.
Provide technology leadership by understanding the line of business, IT strategy and Security posture by providing the leadership required for an IT Service or Solution Area to align with Magellan's Security direction. Responsible for the development, design, implementation, and maintenance of a secure environment for Magellan Health. Promotes a positive security culture for the organization by protecting the confidentiality, integrity, and availability of data and assets while assisting the company to successfully meet its strategic goals. Serves as a leader and mentor for the team and others, providing master level expertise from various IT disciplines with focus in information security. Be a champion to their team and other business units to promote a secure organization through positive knowledge sharing, training, influences, and conduct.
Monitors current and future security trends, technology and information that will positively affect products and services applies and integrates emerging technological trends to new and existing systems architecture.
Work closely with other Solution Architects to align the security requirements and the solution design with the customers’ business drivers and demonstrate unique value.
Provide technical and security expertise to IT and business teams to identify security technology solutions and develop security reference architectures and strategies to achieve business results.
Be the liaison between customers and product teams for Security requirements/enhancements.
Responsible for the development, design, implementation, and maintenance of a secure environment for Magellan Health.
Ensure Magellan information security processes and solutions are protected against a failure or attack that reduces the organization’s ability to respond to security incidents.
Ensure Magellan processes and solutions are maintained securely and highly available to protect the confidentiality, integrity, and availability of assets.
Address security implications in the software acceptance phase including completion criteria, risk acceptance and documentation, common criteria, and methods of independent testing.
Translate security requirements into application design elements including documenting the elements of the software attack surfaces, conducting threat modeling, and defining any specific security criteria.
Oversee the monitoring, remediation, and mitigation of security violations for network, devices, servers, and other assets.
Develop technical solutions to autonomously verify compliance with required technical controls.
Provide enterprise cybersecurity and supply chain risk management guidance for development of Continuity of Operations Plans.
Perform security reviews, identify gaps in security architecture, and develop a security risk management plan.
Develop a system security context and define baseline system security requirements in accordance with applicable cybersecurity requirements.
Research and implement emerging technologies to enhance the security portfolio.
Persistently evaluate adherence with defined policies and standards.
Accountable for the monitoring, systems revisions and patches are up to date.
Manage changes to the solutions and remove unnecessary services.
Understand risks and impact to all downstream systems in the corporate environment and their interconnectivity.
Other Job Requirements
Responsibilities
Bachelor’s degree in Information Security preferred and 7+ years' IT experience (with 5+ years' experience in information security).
May consider additional IT experience in lieu of degree.
May substitute 2 or more relevant certifications for one year of experience.
Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
Proven ability to develop custom threat signatures in response to zero-day and emerging security threats.
Knowledge of organizational process improvement concepts and process maturity models (e.g., Capability Maturity Model Integration (CMMI) for Development, CMMI for Services, and CMMI for Acquisitions).
Knowledge of Personally Identifying Information (PII), Payment Card Industry (PCI) and Protected Health Information (PHI) data security standards (DSS).
Knowledge of information security publications (e.g., NIST 800-53, 53A, 37).
Ability to lead multi-disciplinary teams and cross-functional management to defined deadlines.
Self-starter with the ability to lead tasks with demonstrated ability to work independently.
Strong verbal and written communication skills with the ability to collaborate effectively with other groups.
Expert level knowledge and experience with the following (may vary dependent on role within organization):
Network protocols and packet analysis tools
Network infrastructure, including routers, switches, firewalls.
Network and host- based firewalls and intrusion prevention systems.
Proxy servers, SSL inspection techniques, load- balancers, reverse proxy servers, and web application firewalls.
Public-Key Infrastructure (PKI) encryption and digital signature capabilities (e.g., S/MIME email, SSL traffic).
Security-related systems and applications, firewalls, packet analysis tools, intrusion detection/prevention, and web content filtering.
Digital forensics and eDiscovery skills and experience.
Incident response, problem resolution, and vulnerability remediation.
Automated security testing.
General Job Information
Title
Principal Information Security Architect - Remote
Grade
30
Work Experience - Required
Information Security, IT
Work Experience - Preferred
Education - Required
Education - Preferred
Bachelor's - Information Security, Master's
License and Certifications - Required
License and Certifications - Preferred
CISM - Certified Information Security Manager - Enterprise, CISSP - Certified Information Systems Security Professional - Enterprise
Salary Range
Salary Minimum:
$105,230
Salary Maximum:
$178,890
This information reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Actual pay will be adjusted based on an individual's skills, experience, education, and other job-related factors permitted by law.
This position may be eligible for short-term incentives as well as a comprehensive benefits package. Magellan offers a broad range of health, life, voluntary and other benefits and perks that enhance your physical, mental, emotional and financial wellbeing.
Magellan Health, Inc. is proud to be an Equal Opportunity Employer and a Tobacco-free workplace. EOE/M/F/Vet/Disabled.Every employee must understand, comply with and attest to the security responsibilities and security controls unique to their position; and comply with all applicable legal, regulatory, and contractual requirements and internal policies and procedures.
Magellan is the employer of choice for hard working people interested in making a difference in the health care industry and in the communities where we work and live. Our strong culture of caring is the common thread in both our business strategy and our work environment. We value professional growth and development, total health and wellness, rewards and recognition as well as employee unity. Magellan is a place where you can thrive.
Magellan is committed to providing equal employment opportunities to employees and applicants for employment without regard to race, color, creed, religion, sex, gender identity and expression, sexual orientation, marital status, age, national origin, ancestry, citizenship, physical or mental disability, disabled veteran or veteran of the Vietnam Era status, or any other factors protected by law.
Magellan is committed to meeting applicable Federal labor and employment law posting requirements by providing necessary posters in a format which is easily accessible and conspicuous to all applicants. Copies of applicable posters are accessible by clicking here (https://www.magellanhealth.com/media/760295/mg-federal-contractors-applicant-english.pdf) .
Warning: Employment Scam
It has come to our attention that a false representative is contacting potential candidates and offering them work at home positions with Magellan Health. “Interviews” are conducted completely through email and the false job offer includes the promise of a check to be issued to the candidate for the purposes of setting up a home office.
Please know that Magellan Health does not interview any candidate through email, nor do we issue checks to candidates to set up home offices. All of our available positions are posted on legitimate job boards and our recruitment team directly contacts candidates should there be a fit.
If you suspect you are being contacted by a false representative of Magellan Health, please call 410-953-2911