SIGN IN
IT Security Architect jobs in United States
cer-icon
Apply on Employer Site
company-logo

Vail Health · 8 hours ago

IT Security Architect

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
money$104K/yr - $144K/yr
date5+ years exp
Vail Health has become the world’s most advanced mountain healthcare system, and they are seeking an IT Security Architect to lead their Information Security program. This role is responsible for designing, implementing, and maintaining the enterprise security architecture to ensure the confidentiality, integrity, and availability of systems and data.
BiotechnologyNon ProfitHealthcareWellnessHospitalHealth CareMedicalOncologyTherapeutics

Responsibilities

Owns the enterprise security architecture and multi year roadmap, defining target state designs, security standards, and investment priorities; acts as a trusted advisor to executive leadership and drives cross functional delivery across IT, cloud, and product teams
Establishes and governs enterprise identity, access, and data protection strategy, including SSO/MFA, federation (SAML, OIDC, OAuth), RBAC/ABAC, IGA lifecycle automation, privileged access management (PAM), and secrets and certificate management—enforcing least privilege and zero standing access at scale
Defines and executes cloud security strategy across Azure and AWS by designing secure landing zones and zero trust guardrails; implements and operationalizes CSPM, CWPP, and CIEM capabilities to continuously reduce cloud risk and misconfiguration exposure
Leads network and Zero Trust architecture modernization, including micro segmentation, NAC, next generation firewalls, secure remote access, and policy enforcement; delivers measurable isolation of critical systems and reduction of lateral movement risk
Elevates security operations architecture and detection strategy, shaping SIEM and XDR correlation across endpoint, identity, email, cloud, and network telemetry; optimizes signal to noise, detection fidelity, and mean time to detect and respond (MTTD/MTTR)
Owns incident response architecture and organizational readiness, developing playbooks for containment, eradication, and recovery; ensures forensic readiness; leads post incident executive reviews and drives durable control improvements aligned to root cause analysis
Scales security automation and orchestration through SOAR and API driven integrations, automating high impact detections, incident response workflows, access reviews, and vulnerability and patch pipelines; maintains policy as code and audit ready evidence collection
Hardens enterprise email and social engineering defenses, enforcing DMARC, DKIM, and SPF, advanced BEC protections, and SEG/SASE integrations; analyzing attack trends to inform preventative controls and security awareness initiatives
Owns enterprise vulnerability and patch governance, implementing risk based prioritization, remediation SLAs, executive dashboards, and validation of fixes; partners with Infrastructure and Cloud teams to continuously improve hardening baselines and exposure metrics
Embed governance, risk, and compliance requirements into security architecture, aligning designs to HIPAA, HITECH, HITRUST, NIST CSF and 800 series controls, CIS Controls, and ISO 27001; delivering defensible metrics and board level reporting
Applies healthcare specific security patterns for PHI, EMR/EHR platforms, and connected clinical devices, ensuring secure data flows, strong segmentation, and protection of patient care networks where applicable
Leads security platform and vendor strategy, including evaluation and proof of value, selection, enterprise rollout, and optimization of EDR/XDR, SIEM, IAM/IGA/PAM, and cloud security platforms; demonstrate measurable risk reduction and return on security investment

Qualification

CISSPCloud SecurityIdentity & Access ManagementIncident ResponseHealthcare Information SecurityNetwork SecuritySecurity AutomationCISMCISAMicrosoft CertificationsCisco CertificationsSoft Skills

Required

Five years of experience in Information Technology required (multiple areas preferred)
Demonstrated knowledge of Network Hardware Configuration, Network Protocols, Information Security requirements for healthcare, and policy creation required
Certified Information Systems Security Professional (CISSP) required

Preferred

Three years of experience in healthcare information security preferred
Demonstrated knowledge of EMR products preferred
Other IT Security Certifications Desired: CISM, CISA, Microsoft, Cisco
Bachelor's degree in computer science or information systems preferred

Benefits

Competitive wages
Parental leave (4 weeks paid)
Housing programs
Childcare reimbursement
Medical
Dental
Vision
Tuition Assistance
Existing Student Loan Repayment
Specialty Certification Reimbursement
Annual Supplemental Educational Funds
Up to five weeks in your first year of employment and continues to grow each year.
403(b) Retirement plan with immediate matching
Life insurance
Short and long-term disability
Up to $1,000 annual wellbeing reimbursement
Recreation discounts
Pet insurance

Company

Vail Health

twittertwittertwitter
company-logo
Vail Health is a healthcare system that provides surgery, childbirth, physical therapy, endocrinology, emergency and cancer care services.
dateFounded in 1965
location
Vail, Colorado, USA
people-size1001-5000 employees
web-link
https://www.vailhealth.org

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Will Cook
President, CEO
linkedin

Recent News

Press Telegram
Deportation fears add to mental health problems confronting resort town workers
2025-04-19
PYMNTS.com
US: Vail Health accused of physical therapist monopoly
2024-04-08
Vail Daily
How Vail Health is building for the future of its employees, patients
2024-02-19
Company data provided by crunchbase