Piedmont
Job Title
Director – Information Security & Cyber Overview
Join Piedmont to move your career in the right direction. Experience diverse teams, a shared purpose, schedule flexibility that frees you to live for what matters both in and outside of work, and wellness programs with comprehensive benefit and reward packages that meet your needs today and beyond. Responsibilities
JOB PURPOSE: Responsible for providing leadership and direction for cyber security service lines at Piedmont Healthcare. This role will help define a comprehensive strategy to build and maintain solutions to quickly identify, detect, and eradicate security threats, while streamlining our response and vulnerability management processes. The individual will also serve as an expert advisor to management, peers, and clinical users, managing and coordinating information security staff and activities throughout PHC to protect patient privacy and its information security assets in compliance with established policies, procedures, applicable federal and state laws, accreditation standards, and privacy practices. Oversees the Cyber Security Vulnerability Management, Incident Response, and Core Architecture Security teams and works closely with Leadership to prioritize work that accomplishes goals and maintains operations. Directs and guides subject‑matter expertise and management of multiple technical disciplines, capabilities, services, technologies, domains, or systems. Proactively identifies, implements, and directs process improvements and agile solutions within the functional area; directs and monitors risk mitigation and compliance of security measures and policy procedures. Performs investigations to ensure compliance with privacy/security policies, providing oversight of communications and escalations to lead events identified by the SEIM and other resources. Guides cybersecurity incidents: responsible for coordinating and executing the plans and procedures related to Incident Response, Forensics, and Investigation functions, including the Computer Security Incident Response plan for Piedmont Healthcare. Develops quality measures and KPIs to assess the overall success of the team and the information security program. Oversees and guides the implementation of new and existing security solutions such as the Security Operation Center, IDS/IPS, DLP, MDM, etc. Coordinates with other teams to guide regular network assessments and ensure adherence to policies, procedures, and confidentiality, availability, and integrity of information systems. Monitors changes in state and federal legislation and accreditation standards that affect information privacy and security. Helps develop and communicate a company‑wide security awareness program. Ensures end‑to‑end processes are implemented to maintain compliance with federal and state laws. Consults on projects or project‑manages security development and implementation. Serves as the subject matter expert and information security advisor to leadership, Information Services (IS) departments, and Piedmont business units on security‑related issues and risks, providing support by leading resolution of complex security issues and initiatives. Qualifications
Minimum Education Required:
Bachelor’s degree in business administration, computer technology, or science, or a closely related field is required. Minimum Experience Required:
Seven (7) years of progressively responsible professional work experience in information security, including incident response, network security architecture, vulnerability management, data loss prevention, and relevant frameworks such as NIST and ISO. Includes at least three (3) years in a security management or consulting capacity. Licensure/Certification Required By Law:
None. Additional Qualifications:
Must be certified in one or more of the following areas: GIAC Security Essentials Certified (GSEC), Project Management Professional (PMP), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP) or equivalent. Business Unit:
Piedmont Healthcare
#J-18808-Ljbffr
Director – Information Security & Cyber Overview
Join Piedmont to move your career in the right direction. Experience diverse teams, a shared purpose, schedule flexibility that frees you to live for what matters both in and outside of work, and wellness programs with comprehensive benefit and reward packages that meet your needs today and beyond. Responsibilities
JOB PURPOSE: Responsible for providing leadership and direction for cyber security service lines at Piedmont Healthcare. This role will help define a comprehensive strategy to build and maintain solutions to quickly identify, detect, and eradicate security threats, while streamlining our response and vulnerability management processes. The individual will also serve as an expert advisor to management, peers, and clinical users, managing and coordinating information security staff and activities throughout PHC to protect patient privacy and its information security assets in compliance with established policies, procedures, applicable federal and state laws, accreditation standards, and privacy practices. Oversees the Cyber Security Vulnerability Management, Incident Response, and Core Architecture Security teams and works closely with Leadership to prioritize work that accomplishes goals and maintains operations. Directs and guides subject‑matter expertise and management of multiple technical disciplines, capabilities, services, technologies, domains, or systems. Proactively identifies, implements, and directs process improvements and agile solutions within the functional area; directs and monitors risk mitigation and compliance of security measures and policy procedures. Performs investigations to ensure compliance with privacy/security policies, providing oversight of communications and escalations to lead events identified by the SEIM and other resources. Guides cybersecurity incidents: responsible for coordinating and executing the plans and procedures related to Incident Response, Forensics, and Investigation functions, including the Computer Security Incident Response plan for Piedmont Healthcare. Develops quality measures and KPIs to assess the overall success of the team and the information security program. Oversees and guides the implementation of new and existing security solutions such as the Security Operation Center, IDS/IPS, DLP, MDM, etc. Coordinates with other teams to guide regular network assessments and ensure adherence to policies, procedures, and confidentiality, availability, and integrity of information systems. Monitors changes in state and federal legislation and accreditation standards that affect information privacy and security. Helps develop and communicate a company‑wide security awareness program. Ensures end‑to‑end processes are implemented to maintain compliance with federal and state laws. Consults on projects or project‑manages security development and implementation. Serves as the subject matter expert and information security advisor to leadership, Information Services (IS) departments, and Piedmont business units on security‑related issues and risks, providing support by leading resolution of complex security issues and initiatives. Qualifications
Minimum Education Required:
Bachelor’s degree in business administration, computer technology, or science, or a closely related field is required. Minimum Experience Required:
Seven (7) years of progressively responsible professional work experience in information security, including incident response, network security architecture, vulnerability management, data loss prevention, and relevant frameworks such as NIST and ISO. Includes at least three (3) years in a security management or consulting capacity. Licensure/Certification Required By Law:
None. Additional Qualifications:
Must be certified in one or more of the following areas: GIAC Security Essentials Certified (GSEC), Project Management Professional (PMP), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP) or equivalent. Business Unit:
Piedmont Healthcare
#J-18808-Ljbffr