Manager, Information Security (SecOps) (5101)

A Brief Overview
Responsible for execution of day-to-day information security and access management functions. Additionally, this resource will assist in ensuring secure and reliable communication for all departments. Coordinates, plans, and supervises information Security activities to ensure efficient operations, quality results and professional customer service to hospital personnel, medical staff and appropriate sources.

What you will do

• Manages Incident Response program including incident response plans and processes. Ensures effective security monitoring is in place for company assets.
• Manages and develops vulnerability management processes and reporting. Maintains information security metrics and reporting.
• Manages and develops the organization’s threat management program and client information security assessments.
• Collaborates with internal business units on information security to inform, educate and develop effective solutions to protect the organization’s assets.
• Serves as subject matter expert and stays informed of threats to the organization environment through company security solutions, public forums, etc.
• Coordinates and oversees third-party assessments and penetration testing exercises.
• Performs periodic reviews of key company assets (e.g., firewalls, M365, applications, cloud environment) to ensure appropriate security controls are in place.
• Develops security program efforts to continue commitment to security and privacy of staff. Drives and improves existing culture of security awareness.
• Provides strategic direction relative to the implementation/use of IAM technologies and solutions, as well as integration of IAM tools across the IT landscape.
• Identifies administrative, technical, and physical security opportunities and challenges; researches and develops solutions to rectify outcomes.
• Manages role-based access initiatives and help define role-based access models for use in organization and access review processes.
• Sets physical and technological security requirements for office and remote environments.
• Performs review of Information Security deliverables to ensure accuracy, consistency, and completeness, whether in contract, RFP, or questionnaires.
• Manages, and mentors, the technical teams responsible for Information Security and Identity and Access Management; oversees the development, implementation and support of Regional One Health’s enterprise tools and processes globally.
• Develops and executes applicable Cybersecurity & IAM security standards, policies and processes.
• Identifies and leverages integration opportunities of IAM technology into enterprise systems/applications.
• Perform other duties as assigned or requested.

Qualifications

• Bachelor's Degree In Computer Science, Technology, Cybersecurity, or a related field Required and
• Relevant experience may be considered in lieu of education requirement. Required and
• Master's Degree In Computer Science, Management Information Systems, Healthcare or related field Preferred
• ISC2 Upon Hire Preferred and
• GIAC/SANS Upon Hire Preferred and
• Microsoft Security Upon Hire Preferred and
• Cisco Security Upon Hire Preferred and
• ISACA Security Upon Hire Preferred
• Minimum 6 years experience Of formal Information Technology experience Required and
• Minimum 3 years experience Of Information Security experience. Required and
• Leadership experience Preferred and
• At least 4 years experience Of Information Security related experience considered a vaild substiture. Required

Physical Demands

• Standing - Occasionally
• Walking - Occasionally
• Sitting - Constantly
• Lifting - Rarely
• Carrying - Rarely
• Pushing - Rarely
• Pulling - Rarely
• Climbing - Rarely
• Balancing - Rarely
• Stooping - Rarely
• Kneeling - Rarely
• Crouching - Rarely
• Crawling - Rarely
• Reaching - Rarely
• Handling - Occasionally
• Grasping - Occasionally
• Feeling - Rarely
• Talking - Constantly
• Hearing - Constantly
• Repetitive Motions - Frequently
• Eye/Hand/Foot Coordination - Frequently