Chief Information Security Officer

Chief Information Security Officer

Millennium Physician Group

Full Time (Monday-Friday)

The Vice President of Cyber Security & Privacy / Chief Information Security Officer (CISO) serves as a strategic leader and innovator, responsible for defining, implementing, and overseeing Mosaic Health's Cyber Security strategy and posture. This pivotal role leads a team of cyber security professionals to plan and design security solutions that enable the organization to identify, protect, detect, respond, and recover from cyber threats and vulnerabilities. Develops the organization's strategic vision for cyber security architecture and establishes priorities and strategies consistent with business goals. He/she will ensure the protection of sensitive patient data and compliance with regulatory requirements while maintaining the resilience of Mosaic Health's digital infrastructure against cyber threats. Operating in a dynamic healthcare environment, this role will partner with the executive leaders and stakeholders to encourage the adoption of security-compatible solutions that foster innovation, resilience, and alignment of the cybersecurity strategy and posture across the enterprise for all Mosaic Business Units.

Essential Duties and Responsibilities include the following. Other duties may be assigned.

• Develop and execute a robust cyber security and privacy strategy aligned with Mosaic Health's mission, vision, and strategic goals.
• Work in close partnership with the Executives and senior leadership to ensure cyber security & privacy initiatives are fully integrated into organizational priorities and long-term business strategies.
• Provide executive-level guidance on risk management, data privacy, and security practices to the Mosaic executive team while leading cross-functional efforts to foster a culture of cyber security and privacy awareness across the enterprise.
• Oversee the development, deployment, and management of security technologies, tools, and practices
• Monitor and respond to emerging threats, vulnerabilities, and incidents
• Direct the establishment of security protocols for new technology and digital health solutions
• Manage vendor relationships, ensuring third-party systems meet security standards
• In partnership with the Mosaic IT Leadership Team, help ensure robust disaster recovery and business continuity plans meet cyber security standards and are maintained, tested, and optimized.
• Partner with the leadership to manage budgeting and financial planning for cyber security and privacy across Mosaic Health's business units.
• Jointly negotiate cost-effective vendor contracts and identify opportunities to optimize cyber security and privacy expenditures.
• Lead and mentor a high-performing cyber security and privacy team, fostering a culture of accountability, collaboration, and continuous improvement.
• Collaborate with the leadership to ensure that the cyber security and privacy leadership team is aligned with enterprise objectives and equipped to drive success.
• Develop and implement an enterprise governance framework in partnership with the CIO to align clinical technology initiatives with business needs, priorities, and financial plans.
• Ensure compliance with federal and state healthcare regulations (including, but not limited to: HIPAA, HITECH, HITRUST, Zero Trust frameworks, etc.)
• Conduct regular audits and assessments of security policies, processes, and infrastructure
• Collaborate with legal and compliance teams to mitigate risks related to data breaches and privacy violations
• Lead Mosaic Health's response to cyber security & privacy incidents, including investigations, forensics, and reporting
• Develop and maintain a comprehensive incident response plan and conduct regular simulation exercises (i.e. Penetration Tests, etc.)
• Partner with leadership to uphold best practices in IT governance, risk management, and regulatory compliance (e.g., HITRUST, HIPAA, HITECH, and Zero Trust frameworks).
• Co-lead efforts with the executives and senior leadership to manage cybersecurity risks, incident responses, and crisis management to ensure business continuity.
• Work closely with the leadership to oversee the technology project management office (PMO) and ensure the successful execution of large-scale initiatives.
• Partner with the CIO and IT teams to develop project plans, manage risks, and ensure alignment with strategic objectives on cyber security and privacy.
• Collaborate with the CIO to effectively communicate cyber security and privacy strategies, progress, and outcomes to internal and external stakeholders, including executive leadership, board members, and regulatory bodies.
• Demonstrate excellent guest service to internal team members and patients.
• Perform other related duties as assigned.

Qualifications

• Bachelor's degree in information technology, Computer Science, Healthcare Administration, or related field; Master's degree preferred.
• 10+ years of progressive IT leadership experience,
• 7+ years in a senior executive role within the healthcare sector.
• Certifications: Relevant certifications such as Certified Healthcare CIO (CHCIO) or Certified Information Systems Security Professional (CISSP) are a plus.

Benefits:

• 3 weeks PTO & 7 paid holidays
• Medical, Dental, Vision
• Employer Paid Basic Life & Short Term Disability coverage (goes into effect after 1 year of full-time employment)
• 401(k) with match
• Employee Wellness
• Other Employee Discount programs like Tickets at Work and cell phone discounts
• Other benefits: Dependent Care FSA, Voluntary Life, Long Term Disability, Critical Illness, Pet Insurance, and more

See Full Job Description for more details

Why Millennium?

Millennium Physician Group is one of the largest comprehensive primary care practices with healthcare providers throughout Florida.

At Millennium Physician Group, you will find an organization that focuses on family and building a strong network of people to care for the communities we serve. We are always searching for employees who have a strong customer service attitude, fantastic teamwork skills and a willing smile ready to share.

Our promise is to provide you with the tools to do your job successfully, as well as providing a team atmosphere that empowers you to seek better ways to deliver care to our patients and their families. We also promise to care for you as an individual, and help you grow in your role with Millennium Physician Group.

If you are interested in joining an organization that puts an emphasis on teamwork and family, then Millennium Physician Group is the right choice.