Sr Director Information Security Ops
Philadelphia PA
9/25/2018
Full-Time Regular
Philadelphia, PA
Our client is one of the top 3 Pediatric/Academic Medical Centers in the United States.
They have engaged our firm to identify new leadership for one of their most high profile and dynamic departments.
The Sr Director of Security Operations is the leader of the information security portfolio reporting to the CTSO and is a key member of the senior management team of the Information Services Department (which consists of the senior portfolio leaders and group leaders).
The Sr Director of Security Operations has operational responsibility for designing and implementing security services at our client enterprise which includes standards, compliance, security operations center (on site and vendor), vulnerability management, incident response and security technology oversight.
In conjunction with the CIO and CTSO, the Sr Director of Security Operations acts as a liaison between technology, business and clinical verticals to help achieve alignment of business and clinical strategies and security needs and posture. In this role, the Sr Director ensures that the quality of the service delivered meets the requirements of the clinical and business functions of client and regulations. This position partners with Hospital management to determine acceptable levels of IT risk for the organization.
This position establishes and maintains the Hospital’s Information Security Program and supports the Hospital’s operations, including compliance with all applicable laws, regulations and accreditation standards. This position maintains a model to support the protection of information assets and identifies, evaluates, and reports on IT related risks in a manner that meets compliance and regulatory requirements, and aligns with and supports the IT risk posture of the Hospital. Additionally, this position is required to evaluate the program and operations center regularly and adjust as needed for continuous improvement and security protection.
Required Education and Experience:
Required Education:
- Bachelor’s degree.
Required Experience:
- At least ten (10) years of experience in a combination of Information Security, Risk Management, or Information Technology, or industry focusing on control environment, including at least five (5) years in a leadership role.
- Experience in managing security, operations and technology teams.
Required Certifications:
- One of the following certifications is required: Certified Information Systems Security Professional (CISSP), Certified Information Systems Manager (CISM), Certified in Risk and Information Systems Control (CRISC), Healthcare Information Security and Privacy Practitioner (HCISPP).
Preferred Education, Experience & Cert/Lic:
Preferred Education:
- Master’s degree.
Preferred Experience:
- Security operations center development and management experience.
- Experience in a Healthcare environment, changes and emerging trends in Healthcare industry, and understanding of Healthcare applications, systems and processes a plus.
Additional Technical Requirements:
- Demonstrated security operations, standards, and technology life cycle knowledge and experience.
- Knowledge and high proficiency in relevant legal and regulatory requirements, including but not limited to, Health Insurance Portability and Accountability Act (HIPAA), Health Information Technology for Economic and Clinical Health (HITECH) Act, Payment Card Industry Data Security Standards (PCI DSS), Federal Information Security Management (FISMA).
Our client offers an extremely aggressive compensation package depending on experience, great benefits (including relocation) and one of the most challenging and rewarding environments in to practice your profession!
For prompt and confidential consideration, please apply to the link below!