JOB PURPOSE:
Responsible for providing leadership and direction for service lines within cyber security at Piedmont Healthcare. This role will help define a comprehensive strategy to build and maintain solutions to quickly identify, detect, and eradicate security threats, while streamlining our response and vulnerability management processes. This individual will also serve as an expert advisor to management, peers, and clinical users. They will manage and coordinate information security staff and activities throughout PHC to protect patient privacy and its information security assets in compliance with established policies, procedures, applicable federal and state laws, accreditation standards and privacy practices.
KEY RESPONSIBILITIES:
1. Oversees the Cyber Security Vulnerability Management, Incident Response, and Core Architecture Security teams. Works closely with Leadership and teams to prioritize work to accomplish goals and maintain operations.
2. Directs and guides subject-matter-expertise and management of multiple technical
disciplines, capabilities, services, technologies, domains or systems.
3. Proactively identifies, implements and directs process improvements and agile solutions within functional area. Directs and monitors risk mitigation and compliance of security measures and policy procedures.
4. Performs investigations as necessary, to ensure compliance with privacy/security policies. Provides oversight of communications and escalations as necessary to lead events identified by the SEIM and other resources.
5. Guides Cybersecurity incidents: Responsible for directing the coordination and operational execution of the plans and procedures related to the Incident Response, Forensics, and Investigation functions to include the Computer Security Incident Response plan for Piedmont Healthcare.
6. Develops quality measures and KPIs to assess the overall success of the team and the information security program.
7. Oversee and guide the implementation of new and existing information security solutions such as the Security Operation Center, IDS/IPS, DLP, MDM, etc.
8. Coordinates with other teams to guide regular network assessments to ensure adherence to policies and procedures and ensure confidentiality, availability and integrity of information systems.
9. Monitors changes in state and federal legislation and accreditation standards that affect information privacy and security.
10. Helps to develops and communicate company-wide security awareness program.
11. Ensures that end-to-end processes are implemented to maintain compliance with Federal and State laws.
12. Consult on projects or project manage security development and implementation.
13. Performs as the subject matter expert and information security advisor to leadership, Information Services (IS) departments, and Piedmont business units on security-related issues and risks and provides support by leading resolution on complex security issues and initiatives.