Address
Form of workJob Description:
Baptist Health is looking for a Deputy Chief Information Security Office to join the organization in Louisville, KY.
The Deputy Chief Information Security Officer is responsible for the enterprise-wide Information Security architecture and Information Security operations across the enterprise. He/she also assists the CISO oversee and coordinate various Information Security risk management and risk assurance activities, Information Security policy, Information Security strategy, as well as various security initiatives.
Principal Duties and Responsibilities:
Qualifications:
If you would like to be part of a growing family focused on supporting clinical excellence, teamwork and innovation, we urge you to apply now!
Baptist Health is an Equal Employment Opportunity employer.
Baptist Health is looking for a Deputy Chief Information Security Office to join the organization in Louisville, KY.
The Deputy Chief Information Security Officer is responsible for the enterprise-wide Information Security architecture and Information Security operations across the enterprise. He/she also assists the CISO oversee and coordinate various Information Security risk management and risk assurance activities, Information Security policy, Information Security strategy, as well as various security initiatives.
Principal Duties and Responsibilities:
- Responsible for cyber security architecture, engineering, and operations roadmap components. Ensures these areas meet the maturity objectives of the overall program, the strategic objectives of the organization, and are responsive to the evolving risks faced by the business.
- Ensure cyber emergency response plans and incident response plans are developed and lead efforts to routinely review and test.
- Manage budgets for the Security functions including reporting and forecasting.
- Provide leadership to develop and execute on an enterprise Information Security strategy and roadmap. Develop and maintain practical and actionable Information Security policy and standards.
- Responsible for facilitating bidirectional information sharing and fostering collaboration between various IT Security working groups, IT leadership and program governance.
- Develop and maintain key program metrics to measure the effectiveness of the security program.
- Create and maintain security architecture for the enterprise and participate in the solution selection and process development.
- Develop security requirements for information technology infrastructure initiatives, selected enterprise applications and, as appropriate, review and approve security design of initiatives.
- Develop and maintain a responsive and effective Information Security threat detection, response, and management capability that will identify, contain and resolve Information Security incidents, meet compliance and reporting obligations, and uphold chain of custody and rules of civil procedure requirements.
- Identify reasonably foreseeable internal and external risks to the security, confidentiality, and integrity of electronic patient information; evaluate the effectiveness of the current safeguards; design, implement, and monitor safeguard programs and solutions.
Qualifications:
- Minimum of a Bachelor's degree. Masters degree or MBA preferred.
- 5+ years of progressively responsible and directly related work experience in Information Security management, planning and policy development in a diverse information systems environment.
- 5+ years management experience in an Information Security leadership position, such as Manager or Director of IT Security, ideally in a large and complex health system or senior Information Security executives with equivalent experience in other industries including the financial and banking sectors.
- CISA, CISM, CRISC, OR CISSP or other industry accepted certification (minimum of one) is preferred.
If you would like to be part of a growing family focused on supporting clinical excellence, teamwork and innovation, we urge you to apply now!
Baptist Health is an Equal Employment Opportunity employer.
