Director-Information Security & Cyber

Overview:

Experience the advantages of real career change

Join Piedmont to move your career in the right direction. Stay for the diverse teams you’ll love, a shared purpose, and schedule flexibility that frees you to live for what matters both in and outside of work. You’ll feel valued, motivated to be your best, and recognized for your contributions to exceptional patient outcomes. Piedmont leaders are in your corner, invested in your success. Our wellness programs and comprehensive total benefits and rewards meet your needs today and

 

Responsibilities:

JOB PURPOSE:

Responsible for providing leadership and direction for service lines within cyber security at Piedmont Healthcare. This role will help define a comprehensive strategy to build and maintain solutions to quickly identify, detect, and eradicate security threats, while streamlining our response and vulnerability management processes. This individual will also serve as an expert advisor to management, peers, and clinical users. They will manage and coordinate information security staff and activities throughout PHC to protect patient privacy and its information security assets in compliance with established policies, procedures, applicable federal and state laws, accreditation standards and privacy practices.

KEY RESPONSIBILITIES:

1. Oversees the Cyber Security Vulnerability Management, Incident Response, and Core Architecture Security teams. Works closely with Leadership and teams to prioritize work to accomplish goals and maintain operations.

2. Directs and guides subject-matter-expertise and management of multiple technical

disciplines, capabilities, services, technologies, domains or systems.

3. Proactively identifies, implements and directs process improvements and agile solutions within functional area. Directs and monitors risk mitigation and compliance of security measures and policy procedures.

4. Performs investigations as necessary, to ensure compliance with privacy/security policies. Provides oversight of communications and escalations as necessary to lead events identified by the SEIM and other resources.

5. Guides Cybersecurity incidents: Responsible for directing the coordination and operational execution of the plans and procedures related to the Incident Response, Forensics, and Investigation functions to include the Computer Security Incident Response plan for Piedmont Healthcare.

6. Develops quality measures and KPIs to assess the overall success of the team and the information security program.

7. Oversee and guide the implementation of new and existing information security solutions such as the Security Operation Center, IDS/IPS, DLP, MDM, etc.

8. Coordinates with other teams to guide regular network assessments to ensure adherence to policies and procedures and ensure confidentiality, availability and integrity of information systems.

9. Monitors changes in state and federal legislation and accreditation standards that affect information privacy and security.

10. Helps to develops and communicate company-wide security awareness program.

11. Ensures that end-to-end processes are implemented to maintain compliance with Federal and State laws.

12. Consult on projects or project manage security development and implementation.

13. Performs as the subject matter expert and information security advisor to leadership, Information Services (IS) departments, and Piedmont business units on security-related issues and risks and provides support by leading resolution on complex security issues and initiatives.

Qualifications:

MINIMUM EDUCATION REQUIRED:

Bachelor’s degree in business administration, computer technology or science, or a closely related field is required.

MINIMUM EXPERIENCE REQUIRED:

Seven (7) years of progressively responsible professional work experience in information security, including but not limited to: incident response, network security architecture, vulnerability management, and data loss prevention including experience with relevant information security frameworks such as NIST and ISO.

Experience to include three (3) years in a security management or consulting capacity is required.

MINIMUM LICENSURE/CERTIFICATION REQUIRED BY LAW:

None.

ADDITIONAL QUALIFICATIONS:

Must be certified in one or more of the following area(s): GIAC Security Essentials Certified (GSEC), Project Management Professional (PMP), and Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP) or equivalent certification.

Business Unit : Company Name: Piedmont Healthcare Corporate