Director of Information Security (CTEM)

at  Ascension

REQUIREMENTS:

A successful Information Security Director candidate will have the expertise and skills described:

Education, Training and Previous Experience

• Demonstrated experience and success in leadership roles in risk management, information security, and IT or OT security
• Degree in business administration or a technology-related field, or equivalent work- or education-related experience preferred

Technical and Business Experience

• Knowledge and understanding of relevant legal and regulatory requirements, such as:Health Insurance Portability and Accountability Act (HIPAA) and Payment Card Industry/Data Security Standard.
• Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework
• Sound knowledge of business management and a working knowledge of information security risk management and cybersecurity technologies
• Up-to-date knowledge of methodologies and trends in both business and IT

Knowledge and Skills

• Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and nontechnical audiences at various hierarchical levels, ranging from board members to technical specialists
• Strategic leader and builder of both vision and bridges, and able to energize the appropriate teams in the organization
• Ability to lead and motivate the information security team to achieve tactical and strategic goals, even when only “dotted line” reporting lines exist
• Excellent stakeholder management skills
• Excellent analytical skills, the ability to manage multiple projects under strict timelines, as well as the ability to work well in a demanding, dynamic environment and meet overall objectives
• Project management skills: financial/budget management, scheduling and resource management
• A master of influencing entities and decisions in situations where no formal reporting structures exist, but achieving the desirable outcome is vital

REQUIREMENTS

Education:

• High School diploma equivalency with 5 years of applicable cumulative job specific experience required, with 2 of those years being in leadership/management OR Associate’s degree/Bachelor’s degree with 3 years of applicable cumulative job specific experience required, with 2 of those years being in leadership/management.

WHY JOIN OUR TEAM

When you join Ascension, you join a team of over 134,000 individuals across the country committed to a Mission of serving others and providing compassionate, personalized care to all. Our inclusive culture, continuing education programs, career coaches and benefit offerings are just a few of the resources and tools that team members can use to create a rewarding career path. In fact, Ascension spent nearly $46 million in tuition assistance alone to support associate growth and development. If you are looking for a career where you can grow and make a difference in your community, we invite you to join our team today.

In addition to the qualifications above, candidates will…

• Establish and prioritize potential risk mitigation/treatment strategies and continuously refine Ascension’s security posture improvement plan.
• Prioritize potential risk mitigation strategies and continually refine your security posture improvement plan by shifting from point-in-time vulnerability assessments to a repeatable security posture remediation and validation program
• Maintaining a dynamic and current security posture process using leveraged teams
• Integrate continuous threat exposure management (CTEM) with organizational-level
• Establish remediation and incident workflows to ensure that the required cross-team collaboration standard

RESPONSIBILITIES

Ascension is hiring a Director of Information Security (CTEM) working with our Continuous Threat Exposure Management Program.

RESPONSIBILITIES:

This position will focus on cybersecurity to include some or all of the following areas: infrastructure security, cloud computing, identity and access management, log management, endpoint security and/or email security. Candidates must possess a high level of experience in management of complex, interrelated systems, and lead teams with a diverse set of skills to achieve results. This candidate will have demonstrated knowledge in the following areas: All common server and desktop operating systems, all major cloud computing security and management consoles, endpoint management tools, logging and backup strategies, general network and firewall management, SIEM/SOAR integration with on-prem and cloud-based infrastructure, email and cloud-based workspace security, and directory services.

In addition to the qualifications above, candidates will…

• Establish and prioritize potential risk mitigation/treatment strategies and continuously refine Ascension’s security posture improvement plan.
• Prioritize potential risk mitigation strategies and continually refine your security posture improvement plan by shifting from point-in-time vulnerability assessments to a repeatable security posture remediation and validation program
• Maintaining a dynamic and current security posture process using leveraged teams
• Integrate continuous threat exposure management (CTEM) with organizational-level
• Establish remediation and incident workflows to ensure that the required cross-team collaboration standards