EITS Security Architect — Contract

Overview

The EITS Security Architect will bridge the CISO’s strategic objectives and the IT organization’s technical implementation. This role defines security architecture, translates business security requirements into technical controls, and supports ongoing risk management and compliance programs (HIPAA, NIST CSF, ISO27001/27002, PCI-DSS, state privacy laws). The architect will collaborate with enterprise architecture, security engineering, and cross-functional IT teams to design, review, and operationalize security controls.

Key Responsibilities

• Define, document, and socialize enterprise security architecture and standards across infrastructure, applications, and cloud platforms.
• Lead security architecture solutioning for pre-implementation projects; provide technical guidance and design reviews.
• Perform security reviews and gap analyses; produce actionable remediation recommendations and contribute to risk mitigation strategies.
• Design security controls aligned to information assurance principles and regulatory requirements.
• Conduct application vulnerability scans, interpret findings, and architect countermeasures.
• Evaluate and recommend data access control technologies and secure configuration management approaches.
• Collaborate with enterprise architecture to align business, technical, and security requirements.
• Work with security engineering to implement controls, configurations, and monitoring aligned with policy and audit needs.
• Keep leadership informed on threat trends, vulnerabilities, and relevant regulatory changes.
• Act as subject-matter expert to business units on information security and compliance (HIPAA, Joint Commission, DSRIP, COBIT, state privacy).

Required Qualifications

• Bachelor’s degree in Information Systems, Computer Science, or related field.
• Minimum 10 years of IT experience, with at least 7 years in IT/Cyber Security and solution design.
• Strong knowledge of infrastructure, application, and security protocols, and configuration management.
• Deep familiarity with HIPAA/HITECH, NIST CSF, ISO27001/27002, and PCI-DSS.
• Experience with identity and access management technologies (Active Directory, SSO/federation, MFA, PKI).
• Experience with vulnerability scanning tools and secure SDLC practices.
• Familiarity with Windows, Linux/UNIX, and MacOS environments.
• Strong problem-solving, communication, and stakeholder engagement skills.

Preferred Certifications & Skills

• CISSP, CISM, GSEC, CEH, or similar security certifications.
• Experience with encryption algorithms and key management.
• Knowledge of network security architecture, TCP/IP, OSI model, defense-in-depth strategies.
• Familiarity with IT supply chain security and third-party risk management.
• Ability to work independently and across multiple locations and shifts when required.

Other

• High degree of integrity and professionalism.
• Willingness to participate in special projects and cross-functional initiatives.
• Must be able to work onsite in New York as required.