Job Details

Position Overview

The Senior Security Architect will lead the design and governance of Operational Technology security within a complex healthcare and hospital environment. This includes medical devices, building management systems, and clinical or industrial control systems. The role partners with clinical engineering, infrastructure, IT, and security operations teams to deliver a secure, resilient OT security architecture that aligns with patient safety and clinical operations requirements.

Responsibilities
• Lead development and design of OT security architecture across hospital environments.
• Define and maintain OT security reference architectures and standards.
• Conduct OT security risk assessments and threat modeling for medical devices and critical hospital systems.
• Develop network segmentation and micro segmentation strategies using technologies such as Cisco Client, TrustSec, SGT, SXP, and ACI.
• Collaborate with multidisciplinary teams to ensure solutions and vendor contracts include appropriate security requirements.
• Oversee secure integration between OT and IT systems with a focus on firewalls, NAC, VPN, and monitoring.
• Partner with SOC and incident response teams to ensure OT visibility, alerting, and response coverage.
• Recommend OT and IoMT security tools including Medigate and Claroty.
• Provide architectural oversight for OT related projects across clinical and facility environments.
• Support vulnerability management efforts for OT and IoMT assets.
• Communicate OT risks and recommendations to leadership in clear business terms.
• Mentor junior engineers and architects.Qualifications

Required Qualifications
• Bachelor's degree in Computer Science, Engineering, Information Security, or related field or equivalent experience.
• Eight or more years of overall information security experience with at least three to five years in security architecture.
• Hands on experience designing or securing OT, ICS, or IoMT environments.
• Strong working knowledge of IEC 62443, NIST 800 82, and general security frameworks.
• Experience with Cisco Client, TrustSec, SGT, SXP, ACI, Claroty, Medigate, Palo Firewalls, NAC, segmentation, IDS or IPS, SIEM and zero trust concepts.
• Strong threat modeling and security design review experience.
• Ability to work across clinical engineering, facilities, IT, and vendor teams.
• Excellent communication and documentation skills.

Preferred Qualifications
• Experience in a clinical or hospital setting.
• Experience with OT and IoMT monitoring or visibility platforms.
• Certifications such as CISSP, CISM, SABSA, TOGAF, GICSP, GRID, or HCISPP.
• Experience integrating secure remote access solutions for clinical systems.
• Experience supporting OT or IoMT incident response.

Tools and Technologies
• Cisco Client
• TrustSec
• Security Group Tags
• SXP
• Network segmentation and micro segmentation
• Claroty
• Medigate
• Palo Firewalls
• ACI
• NAC
• SIEM
• VPN
• OT or IoMT visibility and monitoring platforms