Cyber Security Architect
Community Health Choice, Inc. (Community) is a non-profit managed care organization (MCO), licensed by the Texas Department of Insurance. Through its network of more than 10,000 providers and 94 hospitals, Community serves over 400,000 Members with the following programs:
• Medicaid State of Texas Access Reform (STAR) program for low-income children and pregnant women
• Children’s Health Insurance Program (CHIP) for the children of low-income parents, which includes CHIP Perinatal benefits for unborn children of pregnant women who do not qualify for Medicaid STAR
• Health Insurance Marketplace Plans that offer individual health coverage that includes preventive care, emergency services, prescription drugs, and hospitalization available to all, regardless of pre-existing conditions.
• Community Health Choice (HMO D-SNP), a Medicare Advantage Dual Special Needs plan for people with both Medicare and Medicaid that combines Medicare Part A and Part B benefits, Medicare Part D prescription drug coverage, and Medicaid benefits with additional health benefits like dental, vision, transportation, and more.
Improving Members' experiences is at the heart of every Community position. We strive every day to make sure that our Members have access to the high-quality health care they need and deserve.
Community is accredited by URAC for its health plan operations. We offer care management programs for asthma, diabetes, and high-risk pregnancy. An affiliate of the Harris Health System (Harris Health), Community is financially self-sufficient and receives no financial support from Harris Health or from Harris County taxpayers.
JOB SUMMARY
The Cyber Security Architect is a senior-level role responsible for designing and implementing secure technology architectures that protect sensitive healthcare data, including Protected Health Information (PHI) and Electronic Health Records (CLINICAL SYSTEM). This position ensures compliance with healthcare regulations and industry standards while supporting the organization's strategic initiatives for digital transformation and Members care.
JOB SPECIFICATIONS AND CORE COMPETENCIES
Security Architecture & Design:
Develop and maintain enterprise security architecture aligned with organizational goals and regulatory requirements.
Design secure network, application, and cloud architectures for healthcare systems, including CLINICAL SYSTEM platforms and telehealth solutions.
Risk Management & Compliance:
Perform risk assessments, threat modeling, and vulnerability analysis for new and existing systems.
Ensure adherence to HIPAA, HITECH, NIST CSF, and other applicable security frameworks.
Technology Evaluation & Integration:
Research emerging security technologies and recommend solutions to enhance security posture.
Integrate security controls into medical devices, clinical applications, and infrastructure projects.
Incident Response & Resilience:
Collaborate with SOC and IT teams to develop incident response strategies and playbooks.
Support disaster recovery and business continuity planning with a security focus.
Collaboration & Advisory: 10
Partner with IT, compliance, and clinical operations teams to embed security into workflows.
Provide security guidance during application development and infrastructure modernization projects.
Other duties assigned.
QUALIFICATIONS:
Education/Specialized Training/Licensure: Bachelor's degree in computer science, Information Security, or related field required.
Master's preferred
Work Experience (Years and Area):
Minimum 7 years in cybersecurity, with at least 3 years in an architect-level role required.
Experience in healthcare IT environments and CLINICAL SYSTEM systems required.
Management Experience (Years and Area): N/A
Software Proficiencies: Expertise in network security, cloud security (AWS/Azure), identity and access management, and encryption technologies required.
Preferred:
CISSP (Certified Information Systems Security Professional)
CCSP (Certified Cloud Security Professional)
HCISPP (Healthcare Information Security and Privacy Practitioner)
TOGAF or SABSA (Architecture Frameworks)
Other: Strong understanding of healthcare regulations (HIPAA, HITECH) and security frameworks (NIST CSF, ISO 27001)
Familiarity with medical security considerations.