Security Applications and Architecture Manager

North Carolina, United States
20 Nov 2018
End of advertisement period
20 Jan 2019
Contract Type
Full Time

General Description
The Manager, Security Applications and Architecture, is responsible for managing the day-to-day operations of security software, designing on-premise and cloud security architecture elements to mitigate threats, and developing strategies to enhance network visibility and managing personnel for the Security Applications and Architecture group within the Duke Health Information Security Office (ISO). The position reports to the ISO’s Director of Information Security, performing the following functions:

  • Oversees the projects and processes that are designed to protect the confidentiality, integrity, availability of information assets
  • Acts as a subject matter expert in relevant domains of information security at IT knowledge, and will work in collaboration with IT, clinical, research, and management staff; and,
  • Works with all functional areas within IT to design and support secure technologies that meet the business needs of Duke Health.

This position provides expertise in: defining requirements; developing and designing secure architectures; developing secure processes and standards; and selecting enterprise-wide security products, tools, technologies and services.

Duties and Responsibilities
This position may include the following duties and responsibilities:

  • Managing staff, including hiring, performance management, career and professional development, mentoring, time off, disciplinary actions, recognition, etc.
  • Assigning work to employees and holding employees accountable
  • Ensuring relevant information is disseminated to staff, leadership and customers in a timely fashion.
  • Establishing and overseeing large remediation projects.
  • Aligning objectives for the ISO Security Applications and Architecture function with larger ISO goals and objectives, and getting employee buy-in and commitment to goals. 
  • Developing an understanding of key Duke Health technology and systems and maintain that understanding through continual professional development.
  • Reviewing, and sometime perform security pre-purchase evaluations of vendors or engineering designs in accordance with ISO procedures.
  • Identifying security design gaps in existing and proposed architectures and recommending enhancements.
  • With other parts of the Information Security Office, developing information security policy.
  • Working with customers, Engineering, vendors, Compliance and other Duke Health staff to track and remediate control deficiencies. 
  • Testing application and system security controls and providing development teams or vendors with remediation recommendations.
  • Designing, build and implement enterprise-class security systems for a production environment
  • Identifying and communicate current and emerging security threats
  • Responding to service requests received from end users.
  • Developing and delivering security training and security-related newsletter content for the organization’s staff.

Knowledge, Skills, and Abilities:

  • The Manager, Security Applications and Architecture role requires a multi-faceted information security and IT professional with a variety of knowledge and skills. The successful candidate will possess experience in several of the following areas:  
  • Data Loss Prevention systems
  • Encryption technologies and standards
  • Endpoint security software
  • Automated Build Systems
  • Deploying and managing containers and applications deployed to Amazon EC2 and Azure.
  • Identity and Access Management (IAM) solutions, including industry standards such as OAuth, OpenID, SAML, Shibboleth, etc.
  • Network and/or application vulnerability scanning and penetration testing
  • Network security (e.g. firewalls, IDS/IPS, NAC, VPN, SDN)
  • Virtualization and container technologies (e.g. VMware, Docker)
  • Server operating systems
  • Develops strong working relationships with colleagues and customers
  • Deploying security tools to cloud environments such as AWS and Azure.
  • Independently completes complex tasks and portions of larger projects. Realistically evaluates own progress against expectations/goals and takes necessary actions.
  • The ideal candidate will have demonstrated the following characteristics:
    • A broad understanding of multiple IT disciplines and technologies
    • Strong focus on customer satisfaction
    • Strong written and oral communication skills
    • Able to troubleshoot problems in complex technical environments
    • Able to work independently or as part of a team as necessary
    • Able to effectively prioritize tasks with competing deadlines
    • Self-starter who is able to effectively use professional judgment and work with minimal direction

Requisition Number 401377146
Location Durham
Job Family Level CD
Exempt/Non-Exempt Exempt
Full Time / Part Time FULL TIME
Regular / Temporary Regular
Shift First/Day

Minimum Qualifications

Required Qualifications at this Level

Education:  Bachelor’s degree in a technical field, or four years of equivalent technical experience required.

Experience: Minimum of ten years of general IT and healthcare industry experience is required, of which at least five years should have been in an information security operations, engineering, or related role. Experience working in an Academic Medical Center, “R1” university (per the Carnegie Classification of Institutions of Higher Education), or similar research-intensive environment is strongly preferred. Prior management experience is also preferred.

Degrees, Licensure, and/or Certification: • Certified Information Systems Security Professional (CISSP) is strongly preferred. Candidate must pass the CISSP exam within two years of hire date.

• The ideal candidate will hold additional technical or management certifications (e.g. HCISPP, CISM, CISA, CEH, GIAC, MCSE, CCNP, VMWare Certified Professional, CCIE, or PMP).

Duke University is an Affirmative Action/Equal Opportunity Employer committed to providing employment opportunity without regard to an individual's age, color, disability, gender, gender expression, gender identity, genetic information, national origin, race, religion, sex, sexual orientation, or veteran status.

Duke aspires to create a community built on collaboration, innovation, creativity, and belonging. Our collective success depends on the robust exchange of ideas—an exchange that is best when the rich diversity of our perspectives, backgrounds, and experiences flourishes. To achieve this exchange, it is essential that all members of the community feel secure and welcome, that the contributions of all individuals are respected, and that all voices are heard. All members of our community have a responsibility to uphold these values.

Essential Physical Job Functions: Certain jobs at Duke University and Duke University Health System may include essential job functions that require specific physical and/or mental abilities. Additional information and provision for requests for reasonable accommodation will be provided by each hiring department.


Bachelor's degree in a related field, or four years of equivalent technical experience required. LICENSURE/CERTIFICATION: Credential requirements will vary, depending on work area.


IT MANAGER: Five years of directly related experience is required. SENIOR IT MANAGER: Seven years of directly related experience, including two years in management, is required.