Information Security Architect

Detailed Overview

Supporting the Vision, Values, Purpose and Commitments of Fraser Health including service delivery that is centered around patients/clients/residents and families:
Collaborates with internal and external stakeholders on key information security technologies at Fraser Health (FH); acts as a key resource and subject matter expert on information security policies, practices and standards; develops, implements, evaluates and manages internal and corporate information security policies, procedures and processes; undertakes a lead role in the delivery and development of information security and risk-related audits;

monitors information security tracking systems, network and access controls and compliance systems throughout FH; assists management and staff to ensure information security is considered in the design and/or redesign of programs, services, projects and initiatives within FH; investigates information security incidents and provides information security training, education and awareness to staff and other internal and external stakeholders. Responsibilities Develops, assesses, implements, manages and provides recommendations on information security policies, procedures and processes;

prepares reports, papers, updates and information security briefings for presentations to internal and external stakeholders; reviews, evaluates and provides recommendations on related information security policies and processes consistent with established FH policies. Designs, implements and maintains enterprise security solutions and access controls to ensure compliance with security procedures, policies, professional standards and related legislation; provides monitoring, auditing and investigation expertise into security, policy and appropriate use violations.

Collaborates with teams within the IM/IT in leading the security vision and implementing strategy on security architectures of applications, programs and innovative initiatives. Develops specifications for information security systems to operate on a local and wide area network system by gathering information from stakeholders and support vendors, develops and documents systems and procedures and prepares implementation plans. Investigates and reviews information security incidents and/or violations of a sensitive nature that have varied implications including the potential for recommending disciplinary action or penalties for staff and third party vendors in breach of corporate policies and procedures.

Provides expert technical advice and consultation to internal and external stakeholders by performing analysis, providing recommendations for proposed information security technology changes and providing input into systems development for new technology, technology solutions and technology alternatives. Collaborates with the Information Privacy department and other key stakeholders in promoting information security best practices by developing and assisting in the delivery of FH-wide security education and training materials to staff, internal and external stakeholders.

Participates in information security, vulnerability and risk assessments related to the security features of the information systems, networks and relayed administrative activities; recommends mitigation strategies, where applicable. Analyzes complex information through acute problem solving in order to manage and investigate security incidents; develops reports, action plans and response communication on mitigation strategies; assists and supports the provincial e-Health programs and initiatives in security and privacy compliance.

Participates in the development of information security technology solutions to align with industry and FH information security standards; evaluates and recommends third party solutions, where applicable. Acts as project leader on assigned security-related projects by developing project plans and charters, identifying major project milestones, associated tasks and timelines, managing deliverables and evaluating project outcomes. Develops annual goals and objectives for the area of responsiblity, in collaboration with the Director,…