Director of Security Services – REMOTE

Key Responsibilities

• Knows, understands, incorporates and demonstrates the Trinity Health Mission, Vision and Values in behaviors, practices and decisions. Creates and implements annual objectives and tactical plans focused on implementation of the approved information security plan for Trinity Health.
• Provides input into the annual Information Security budget process. Responsible for the prioritization of infrastructure investments and maintenance involving IT security.
• Responsible for building and maintaining a Shared Services organization to support reduction of cost in execution of standardized business processes executed by RISOs in support of RHMs and the System Office.
• Collaborates with the Office of the CIO (OCIO) to plan the implementation of information security projects across System Office and RHMs, including detailed definition of scope, prioritization, and operationalization of capabilities.
• Responsible for development and delivery of centralized reporting of Enterprise Information Security activities in support of Board, Audit Committee, and Trinity Health leadership requirements.
• Represents the CISO on Information Security matters as needed in support information security strategy, status and reporting to Trinity Health leadership.
• Provides management and oversight to a team of security specialist focused on implementation of Trinity Health’s Information Security strategy.
• Advises TIS and RHM leadership on system security strategy, security architecture, and security design work; works with business stakeholders to define Information Security processes. Works collaboratively with other TIS directors to standardize information security industry best practices.
• Responsible for the oversight of security staff, which includes hiring, evaluation, training and assignment of work. Manages budget associated with implementation of approved projects in support of the information security roadmap.
• Responds to audit points and tracks to resolution. Maintains a working knowledge of applicable Federal, State and local laws and regulations, Trinity Health Integrity and Compliance Program, Code of Conduct, as well as other policies and procedures in order to ensure adherence in a manner that reflects honest, ethical and professional behavior.
• Other duties as assigned.

Qualification & Requirements

• Bachelor’s degree or an equivalent combination of education and experience. A Master’s Degree is preferred.
• Minimum of ten (10) years of progressive experience in information services including seven (7) years in information security, including experience in compliance with federal and state security regulations.
• Certified Information Systems Security Professional (CISSP), International Social Security Association (ISSA) or Certified Information Systems Auditor (CISA), preferred. May substitute an equivalent combination of education and experience.
• Must possess a good understanding of System security best practices relating to implementing and managing System security solutions.
• Strong knowledge of HIPAA, PCI, ISO 27001/2, FISMA, FIPS, and NIST security.
• Ability to apply advanced technical knowledge and analytical skills within information security using diverse technologies in a complex security environment.
• Demonstrated ability to provide strong leadership and interact effectively with all levels of the organization.
• Must be team oriented, supportive, and committed to excellence and possess high level of initiative and self-motivation with demonstrated work ethic.
• Must be committed to continual personal and professional growth, possess a pro-active approach with a willingness to “go the extra mile” every time for the customer.
• Ability to work independently, manage multiple priorities and to effectively adapt to rapidly changing technology and business needs with demonstrated ability to prioritize projects and work load.
• A personal presence which is characterized by a sense of honesty, integrity and caring with the ability to inspire and motivate others to promote the philosophy, mission, vision, goals and values of Trinity Health.

PHYSICAL AND MENTAL REQUIREMENTS AND WORKING CONDITIONS

Must be able to adapt to frequently changing work priorities, and be able to prioritize and balance the requirements of working with multiple members of the Enterprise Information Security team.

Must be able to communicate frequently, in person and over the phone, with people in a number of different locations on technical issues. Manual dexterity is needed in order to operate a keyboard. Hearing is needed for extensive telephone and in person communication.

Must be able to travel to the various Trinity Health sites (25%).

Benefits