Director, Information Security - Epic

Job Description

Plans, organizes and directs the staff and activities in support of the integrity and security of the Health System’s software applications, systems and documentation. Ensures HIPAA compliance of applicable enterprise and departmental applications.

Job Responsibility

• Leads an Information Security group by communication with and developing staff members, and building consensus for programs and goals that support a business, function or geographic area. Plans, organizes, and directs the staff and activities for applicable information security design inclusion within all new and existing organization computing environments.
• Develops and articulates a short-term strategic vision for areas of responsibility. Leads the Security Team in the composition and documentation of life-cycle maintenance of application and system specific security hardening guidelines.
• Interprets legislation or pending legislation related to the storage, retrieval, and protection of information assets or technology systems, and develops strategies for ensuring organizational compliance regulations.
• Oversees performance of IT risk assessments, reviews security architectures, identifies vulnerabilities, and addresses concerns. Plans, organizes and directs the staff and activities for applicable information security design inclusion within all new and existing health system computing environments.
• Ensures HIPAA compliance of applicable enterprise and departmental applications.
• Develops and oversees the Security Awareness Program. 
• Prepares recommendations for security enhancements and upgrades to IS application portfolio.
• Selects, develops, manages and evaluates direct reports and oversees the development, selection and evaluation of indirect reports. Ensures performance appraisals are completed in a timely fashion
• Develops and enforces security protocols relating to application configuration.
• Maintains standards and provides remediation recommendations.
• Assists company units to determine critical business processes, identifies acceptable recovery time periods and establishes resources required for the successful resumption of business operations in the event of a disaster.
• Plans and coordinates the testing of recovery support and business resumption procedures in different functional areas; ensures that recovery procedures are effective for the restoration of key corporate resources and for the resumption of critical business processes.
• Selects, develops, manages, and evaluates direct reports; oversees the development, selection and evaluation of indirect reports.
• Ensures performance appraisals are completed in a timely fashion.
• Performs related duties as required. All responsibilities noted here are considered essential functions of the job under the Americans with Disabilities Act. Duties not mentioned here, but considered related are not essential functions.

Job Qualification

• Bachelor's Degree required, or equivalent combination of education and related experience.
• 8-12 years of relevant experience and 7+ years of leadership / management experience, required.

*Additional Salary Detail
The salary range and/or hourly rate listed is a good faith determination of potential base compensation that may be offered to a successful applicant for this position at the time of this job advertisement and may be modified in the future.When determining a team member's base salary and/or rate, several factors may be considered as applicable (e.g., location, specialty, service line, years of relevant experience, education, credentials, negotiated contracts, budget and internal equity).