Assistant Director Information Security

About Texas Children's Hospital

Summary:

We’re hunting for an Assistant Director of Information Security, someone who’s ready to be part of the best ranked children’s hospital in Texas, and among the best in the nation. In this position, you will manage teams in varied disciplines including technical leadership for planning and implementing in all areas related to information resources cybersecurity. Provides enterprise-wide leadership to establish and maintain a comprehensive cybersecurity roadmap and strategy in concert with the data privacy program ensuring local, state, federal and contractual compliance and managing organizational risks. This includes policy creation, education, training, security incident response, risk assessment, contracts review, business continuity (high availability), IS disaster recovery, incident prevention, detection, and forensics as well as security metrics and reporting. Provides strategic as well as pragmatic thought leadership at the management level regarding security, technology and products while creating strong partnerships across business units and functional groups to deliver competitive advantage and provide focus for IS security and related organizational initiatives. As the key Asst. Director leading security planning, implementation and overall operations, this role is critical to delivering its strategy all the while protecting the security and integrity of patient data and overall brand in the marketplace. Partners very closely with the senior leadership of the organization and business units including IS planning, budgeting, infrastructure development, enterprise architecture, cloud security, technical operations, project/program management, and business applications management. Works collaboratively with the Director to set organizational priorities and develop practical technological solutions and services based on business needs.

Think you’ve got what it takes?

Job Duties & Responsibilities

Establishes and implements short- and long-range goals, objectives, policies, and operating procedures for cybersecurity. Establishes and monitors vendor accountabilities and associated service level agreements and regulatory requirements.

Leads service delivery of cybersecurity throughout the service lifecycle, including creation and deployment of new services, enhancements, and retirement of existing services throughout the hospital. Coordinate and manages services across functional areas by collaborating with all service owners in support of daily Information Services operations.  

Provides strategy and planning for current information security supplies and products and anticipates future needs; leads staff in the research and development of new technologies.

Develops strategic plan and budgets for departmental structure and staffing to support strategic goals.

Oversees incident investigation and resolution in accordance with Security Incident Response protocol.

Skills & Requirements

Being fully vaccinated against COVID-19, including any booster dose(s) of the COVID-19 vaccine recommended by the Centers for Disease Control when eligible, is required for all employees unless approved for a medical or religious exemption.

Required bachelor's degree in business, information technology, computer information systems, systems engineering, or related technical fields

Preferred certifications in project or program management and cybersecurity leadership, including but not limited to CISM, CRISC, PMP, CISSP, CCSFP, CCISO

Required 7 years information systems selection, implementation, or support experience, including at least three (3) years of direct supervisory experience with preferred previous experience in public health, healthcare, HMO or MCO organizations