Information Security Architect

Detailed Overview

Supporting the Vision, Values, Purpose and Commitments of Fraser Health including service delivery that is centered around patients/clients/residents and families: Collaborates with internal and external stakeholders on key information security technologies at Fraser Health (FH); acts as a key resource and subject matter expert on information security policies, practices and standards; develops, implements, evaluates and manages internal and corporate information security policies, procedures and processes; undertakes a lead role in the delivery and development of information security and risk-related audits; monitors information security tracking systems, network and access controls and compliance systems throughout FH; assists management and staff to ensure information security is considered in the design and/or redesign of programs, services, projects and initiatives within FH; investigates information security incidents and provides information security training, education and awareness to staff and other internal and external stakeholders. Responsibilities Develops, assesses, implements, manages and provides recommendations on information security policies, procedures and processes; prepares reports, papers, updates and information security briefings for presentations to internal and external stakeholders; reviews, evaluates and provides recommendations on related information security policies and processes consistent with established FH policies. Designs, implements and maintains enterprise security solutions and access controls to ensure compliance with security procedures, policies, professional standards and related legislation; provides monitoring, auditing and investigation expertise into security, policy and appropriate use violations. Collaborates with teams within the IM/IT in leading the security vision and implementing strategy on security architectures of applications, programs and innovative initiatives. Develops specifications for information security systems to operate on a local and wide area network system by gathering information from stakeholders and support vendors, develops and documents systems and procedures and prepares implementation plans. Investigates and reviews information security incidents and/or violations of a sensitive nature that have varied implications including the potential for recommending disciplinary action or penalties for staff and third party vendors in breach of corporate policies and procedures. Provides expert technical advice and consultation to internal and external stakeholders by performing analysis, providing recommendations for proposed information security technology changes and providing input into systems development for new technology, technology solutions and technology alternatives. Collaborates with the Information Privacy department and other key stakeholders in promoting information security best practices by developing and assisting in the delivery of FH-wide security education and training materials to staff, internal and external stakeholders. Participates in information security, vulnerability and risk assessments related to the security features of the information systems, networks and relayed administrative activities; recommends mitigation strategies, where applicable. Analyzes complex information through acute problem solving in order to manage and investigate security incidents; develops reports, action plans and response communication on mitigation strategies; assists and supports the provincial e-Health programs and initiatives in security and privacy compliance. Participates in the development of information security technology solutions to align with industry and FH information security standards; evaluates and recommends third party solutions, where applicable. Acts as project leader on assigned security-related projects by developing project plans and charters, identifying major project milestones, associated tasks and timelines, managing deliverables and evaluating project outcomes. Develops annual goals and objectives for the area of responsiblity, in collaboration with the Director, ensuring alignment with department plans, organizational objectives and strategies. Maintains current awareness of global security trends and changes by monitoring federal and provincial initiatives, conducts industry comparisons and attends seminars and workshops. Qualifications Education and Experience Bachelor's degree in Computer Science, or a related field supplemented with five years' recent related experience in an information security role in a large complex multi-site organization including completion of cybersecurity certification such as Certified Information Systems Professional (CISSP) program or related SANS/GIAC security certifications, or an equivalent combination of education, training and experience. Competencies Demonstrates the leadership practices of the Fraser Health Leadership Framework of Clear, Caring and Courageous and creates the conditions for people to succeed. Professional/Technical Capabilities: Extensive knowledge of information security principles, frameworks, standards, best practices, and industry trends. Knowledge of information security issues as it relates to web-based applications Working knowledge of vulnerability assessment tools including VPN technologies Knowledge of security architecture concepts for enterprise solutions including technical design, concepts and methodology Working knowledge of threat risk analysis as it relates to information security risk assessments Demonstrated knowledge and understanding of core Microsoft and other software-based technologies and strategies Ability to plan, organize, prioritize and implement projects in a dynamic environment with changing priorities Ability to develop, implement and deliver education and training programs/initiatives Ability to operate related equipment including applicable software applications Physical ability to perform the duties of the position About Fraser Health Fraser Health is the heart of health care for over two million people in Metro Vancouver and the Fraser Valley in British Columbia, Canada, on the traditional, ancestral and unceded lands of the Coast Salish and Nlaka’pamux Nations and is home to 32 First Nations within the Fraser Salish region. People - those we care for and those who care for them - are at the heart of everything we do. Our hospital and community-based services are delivered by a team of 48,+ staff, medical staff and volunteers. We are committed to planetary health and value diversity in the work force. We strive to maintain an environment of respect, caring and trust. Fraser Health’s hiring practices aspire to ensure all individuals are treated in an inclusive, equitable and culturally safe manner. Together, we are the heart of health care. Instagram | Facebook | LinkedIn | X | Indeed | Glassdoor IMPORTANT: Recruitment scam warning Please be on alert for recruitment scams. We are aware of several scams targeting individuals by falsely claiming to represent Fraser Health. Always take precautions when sharing personal details with unverified sources. Please note that we will never ask for money or payment, nor ask you to download or install an app at any point during our recruitment process.