Director, Security Architecture

at Cardinal Health in Boise, Idaho, United States

What Information Security and Risk contributes to Cardinal Health

Information Technology oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value.

Information Security and Risk develops, implements, and enforces security controls to protect the organizations technology assets from intentional or inadvertent modification, disclosure or destruction. This job family develops system back-up and disaster recovery plans. Information Technology also conducts incident response, threat management, vulnerability scanning, virus management and intrusion detection and completes risk assessments.

Job Summary

The Director, Security Architecture is responsible for establishing, leading, and developing the security architecture strategy, standards, and design practices to enable secure, scalable, and resilient technology solutions across the organization. Reporting to the Vice President, Information Security & Risk, this role serves as a technical leader responsible for aligning security architecture with business priorities, risk management objectives, and enterprise GTBS strategies.

This role leads all aspects of security architecture, including architecture strategy and governance, technical security standards, solution design and advisory, architecture reviews, and tooling optimization. It plays a critical role in embedding security into the development lifecycle, guiding technology investments, and ensuring that security requirements are integrated into enterprise architectures and solutions from inception through deployment.

Responsibilities

Organizational Leadership & Architecture Strategy

+ Develop and lead the enterprise security architecture strategy aligned with cybersecurity, risk management, and business objectives

+ Establish governance frameworks and processes to guide secure design, technology selection, and solution deployment across the organization

+ Collaborate with cybersecurity leadership, enterprise architecture, and technology teams to define target-state architecture and long-term roadmap

+ Serve as an advisor to leadership on security architecture priorities, risks, and investment decisions

Security Architecture Standards & Governance

+ Develop, maintain, and enforce enterprise security architecture standards, including desig