Sr. Business SME - Agency Information Security Officer

Job Title: Sr. Business SME - Agency Information Security Officer
Location: Augusta, ME
Employment Type: Full-Time

About Us:
DMV IT Service LLC is a trusted IT consulting firm, established in 2020. We specialize in optimizing IT infrastructure, providing expert guidance, and supporting workforce needs with top-tier staffing services. Our expertise spans system administration, cybersecurity, networking, and IT operations. We empower our clients to achieve their technology goals with a client-focused approach that includes online training and job placements, fostering long-term IT success.

Job Overview:
We are seeking an experienced Sr. Business SME - Agency Information Security Officer to join our team. This vital role involves managing operational technical deployments, overseeing Request for Proposal (RFP) processes, and ensuring the successful implementation of healthcare technology systems. The ideal candidate will have a deep experience in managing IT endpoint systems, compliance standards (e.g., HIPAA, HITECH, FDA), and a proven track record of leading projects in regulated healthcare environments.

Requirements

• Collaborate with agencies and MaineIT to enhance the state's security posture through continuous assessment, proactive security measures, and aligning security initiatives with business goals.
• Exercise independent judgment on critical security matters, including risk assessments, resource allocation, and policy implementation.
• Implement and support the Information Security Program Plan, fostering collaboration across functional areas to address emerging threats.
• Engage with stakeholders to integrate security strategies into business objectives, ensuring operations and initiatives support the agency’s missions and regulatory compliance.
• Serve as the primary contact for cybersecurity issues, ensuring timely and coordinated resolution to maintain business continuity.
• Develop, review, and enforce security policies and standards to maintain compliance with state and federal regulations.
• Conduct risk assessments, recommend remediation strategies, and support security incident investigations.
• Evaluate third-party security practices and support internal and external security audits.
• Stay updated on cybersecurity threats and technologies, advising on enhancements to agency defenses.
• Assist in developing and testing business continuity and disaster recovery plans.

Qualifications:

• 5-7 years of experience in a leadership role within information security, preferably in a healthcare or government setting.
• Bachelor’s degree in Information Technology, or a related field, or equivalent experience in information security consultancy.
• Expertise in Security and Privacy Controls for Information Systems as established by NIST.
• Proficiency in technical project management, IT endpoint systems management, and compliance with healthcare-related regulatory standards.
• Excellent communication skills, problem-solving abilities, and a collaborative approach to security program management.

Preferred Qualifications:

• Experience with healthcare IT systems and compliance with HIPAA, HITECH, FDA regulations.
• Familiarity with state government IT operations and challenges.