Assistant Director of Information Security

Category : Information Technology
Location/City : TX - Houston
Id : 35564


We are searching for an Assistant Director of Information Security – someone who works well in a fast-paced setting. In this position, you'll manage teams in varied disciplines, including technical leadership for planning and implementing in all areas related to information resources cybersecurity. This role provides enterprise-wide leadership to establish and maintain a comprehensive Cybersecurity roadmap and strategy in concert with the data privacy program, ensuring local, state, federal and contractual compliance and managing organizational risks. Tasks include policy creation, education, training, security incident response, risk assessment, contracts review, business continuity (high-availability), IS Disaster Recovery, incident prevention, detection and forensics, as well as security metrics and reporting. As the key Assistant Director leading security planning, implementation and overall operations, this role is critical to delivering strategy all the while protecting the security and integrity of patient data and the overall brand in the marketplace.
Think you've got what it takes?
Job Duties & Responsibilities
  • Provides strategic as well as pragmatic thought leadership at the management level regarding security, technology and products
  • Creates strong partnerships across business units and functional groups to deliver competitive advantage and provide focus for IS security and related organizational initiatives
  • Partners very closely with the senior leadership of the organization and business units including IS planning budgeting, infrastructure development, enterprise architecture, cloud security, technical operations, project/program management, and business applications management
  • Works collaboratively with the Director to set organizational priorities and develop practical technological solutions and services based on business needs
  • Establishes and implements short- and long-range goals, objectives, policies and operating procedures for cybersecurity
  • Establishes and monitors vendor accountabilities and associated service level agreements and regulatory requirements
  • Leads service delivery of cybersecurity throughout the service lifecycle, including creation and deployment of new services, enhancements and retirement of existing services
  • Coordinates and manages services across functional areas by collaborating with all service owners in support of daily Information Services operations
  • Provides strategy and planning for current information security supplies and products as well as anticipating future needs
  • Leads staff in the research and development of new technologies
  • Develops strategic plan and budgets for departmental structure and staffing to support strategic goals
  • Oversees incident investigation and resolution in accordance with Security Incident Response protocol
  • Assists in the implementation of standards that guide the design of technology solutions, including integration of multiple platforms, networks, operating systems and applications across the health system
  • Mentors staff and affects change

Skills & Requirements
  • A Bachelor's Degree in business, information technology, computer information systems, systems engineering, or related technical fields
  • Seven (7) years of information systems selection, implementation or support experience, including at least three (3) years of direct supervisory experience
  • A working knowledge of Information Technology Infrastructure Library
  • Knowledge of server and PC operating systems and applications
  • Expert working knowledge of supporting standards, architecture and business continuity plan, voice network infrastructure, server systems, storage infrastructure, VDI and VAD
  • Expert knowledge of maintaining, analyzing, monitoring, evaluating, implementing, or installing LAN or WAN network systems
  • Practical experience performing specific (Service Owner or Process Owner) role strongly preferred
  • Ability to stay current on industry trends and maintain knowledge of new technologies, managing the support of new cybersecurity technologies, related system performance and reliability
  • Ability to translate user concerns and needs to actionable tasks and ultimate solutions
  • Demonstrate capability to manage large, multi-phase/multi-year projects or programs, leading these projects to successful implementation and life cycle
  • Demonstrate attention to detail when performing work and conscientious about attending to detail
  • Able to work with internal and external clients and customers to assess their needs, provide information or assistance, resolve problems, or satisfy expectations
  • Knows about available products and services; is committed to providing quality products and services
  • Able to express information (for example, ideas or facts) orally to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial)
  • Able to make clear and convincing presentations, listen to others, attend to nonverbal cues, and respond appropriately
  • Possess ability to identify problems; determine accuracy and relevance of information; use sound judgment to generate and evaluate alternatives, and to make recommendations
  • Development experience including relational database (SQL) and interface design (HTML, .NET, JavaScript, etc.)
  • Certifications in project or program management and cybersecurity leadership, including but not limited to CISM, CRISC, PMP, CISSP, CCSFP, CCISO is preferred
  • Previous experience in public health, healthcare, HMO or MCO organizations is preferred

EOE-M/F/V/D


Lets Go!';