Director Cyber Security Architect & Eng: Corporate Information Security

Hoag•Costa Mesa, CA

About The Position

The Director of Cyber Security Architecture & Engineering leads the security, architecture, operations and engineering functions at Hoag. Reporting to the CISO, this role defines and develops, implements the enterprise security tactical plan across network, identity, and infrastructure to reduce risk and prevent breaches. The Director manages a team of engineers and architects, collaborates with IT and business leaders, and ensures that security controls align with business objectives and regulatory requirements. Responsibilities include input into strategic cybersecurity vision, overseeing budget and vendor relations, and developing secure-by-design solutions that support innovation. Responsibilities Strategy, Architecture & Engineering Leadership Define and evolve the enterprise cybersecurity architecture and engineering roadmap aligned with organizational strategy, regulatory requirements, and risk tolerance. Lead the design and implementation of security architectures across cloud, network, identity, endpoint, application, and infrastructure environments. Ensure security is embedded into enterprise architecture standards, technology platforms, and solution designs using secure‑by‑design and Zero Trust principles. Provide architectural oversight and technical direction for major technology initiatives and digital transformation programs. Oversee security operations, encompassing vulnerability management processes as well as the creation and coordination of tabletop exercises to ensure preparedness for incident response. Microsoft & Identity Technologies Maintain up-to-date understanding and architectural supervision of essential technology partners, including but not limited to the Microsoft security and identity suite such as Entra ID (Azure AD), DLP, Conditional Access, MFA, Identity Governance, Defender, Sentinel, and related platforms. Lead the architecture and engineering strategy for Identity & Access Management (IAM), including authentication, authorization, privileged access, identity governance, and lifecycle management. Partner with infrastructure, cloud, and application teams to ensure identity‑centric security controls are consistently implemented. Budget Management & Financial Stewardship Manage the cybersecurity architecture and engineering budget, including annual budget planning, forecasting, and ongoing financial oversight. Develop multi‑year investment plans that align cybersecurity spend with risk reduction, maturity goals, and business priorities. Oversee vendor selection, contract management, and cost optimization for tools and services within scope. People Leadership & Collaboration Lead, mentor, and develop a team of cybersecurity architects and engineers; establish performance goals and foster a culture of accountability and continuous improvement. Collaborate cross‑functionally with IT, Digital, Infrastructure, Cloud, Application, GRC, and Operations teams to drive integrated security outcomes. Serve as a trusted advisor to senior leaders on security architecture, engineering trade-offs, and emerging risks.

Requirements

Bachelor’s degree in Cyber Security, Computer Science, Computer Information Systems, Engineering, Business, or a related technical field is required, Masters preferred; however, equivalent work experience may substitute for this requirement.
Applicants should have at least seven years of experience in cyber security, security architecture, or security engineering, with a strong background in leading teams responsible for designing, deploying, and maintaining security solutions within regulated industries.
Hands-on management experience with frameworks such as PCI, HIPAA, and HITECH, CIS, NIST CSF 2.0 is essential.
The role involves overseeing teams that architect, engineer, and operate IAM, endpoint security, SIEM, cloud, network, data, DevOps, and virtualization solutions.
Key responsibilities include driving strategy, integration, and implementation plans for cybersecurity capabilities across both on-premises and cloud environments, ensuring secure and trusted platforms.
Candidates should be skilled at reviewing and improving standard operating procedures, systems requirements, and documentation.
Candidates must demonstrate deep expertise through leadership and a solid understanding of business processes, cybersecurity strategies, budgeting, and resource management.
Experience managing multiple cloud service providers, such as AWS, Azure, and GCP, is also required.
The ability to anticipate future technological and business developments to proactively plan and implement solutions is important.
Strong oral and written communication skills are expected, along with robust management abilities, effective time management, and prioritization to meet obligations promptly.
Current CA driver’s license required for local travel
One or more of the following certifications is required: GIAC Security Leadership (GSLC) or Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM)

Nice To Haves

Masters preferred
Experience working in hospitals or healthcare organizations of comparable size and complexity is preferred.
Additional duties include analyzing and enhancing existing security programs and providing technical leadership and training to other security professionals.

Responsibilities

Define and evolve the enterprise cybersecurity architecture and engineering roadmap aligned with organizational strategy, regulatory requirements, and risk tolerance.
Lead the design and implementation of security architectures across cloud, network, identity, endpoint, application, and infrastructure environments.
Ensure security is embedded into enterprise architecture standards, technology platforms, and solution designs using secure‑by‑design and Zero Trust principles.
Provide architectural oversight and technical direction for major technology initiatives and digital transformation programs.
Oversee security operations, encompassing vulnerability management processes as well as the creation and coordination of tabletop exercises to ensure preparedness for incident response.
Maintain up-to-date understanding and architectural supervision of essential technology partners, including but not limited to the Microsoft security and identity suite such as Entra ID (Azure AD), DLP, Conditional Access, MFA, Identity Governance, Defender, Sentinel, and related platforms.
Lead the architecture and engineering strategy for Identity & Access Management (IAM), including authentication, authorization, privileged access, identity governance, and lifecycle management.
Partner with infrastructure, cloud, and application teams to ensure identity‑centric security controls are consistently implemented.
Manage the cybersecurity architecture and engineering budget, including annual budget planning, forecasting, and ongoing financial oversight.
Develop multi‑year investment plans that align cybersecurity spend with risk reduction, maturity goals, and business priorities.
Oversee vendor selection, contract management, and cost optimization for tools and services within scope.
Lead, mentor, and develop a team of cybersecurity architects and engineers; establish performance goals and foster a culture of accountability and continuous improvement.
Collaborate cross‑functionally with IT, Digital, Infrastructure, Cloud, Application, GRC, and Operations teams to drive integrated security outcomes.
Serve as a trusted advisor to senior leaders on security architecture, engineering trade-offs, and emerging risks.