VP, IT Security

• Lead Jackson Healthcare’s internal security strategy
• Manage and prioritize security and compliance initiatives
• Select security products and solutions
• Partner with key internal companies to help them achieve their cybersecurity goals
• Maintain policies, processes, and procedures to protect the confidentiality, integrity, and availability of our data and services
• Define our overall information security risk exposure and its components. Build and manage systems and programs to continually discover, reassess, and mitigate risks as the business, product, and landscape change
• Grow a culture of information security risk awareness and accountability, meeting internal demand for education, training, and mentorship. Grow a team around you and serve as a technical mentor for new-hires
• Partner with the compliance, legal, finance, and other control functions to ensure adherence to applicable regulations, industry standards, and business partner contractual commitments
• Refine and extend vulnerability management programs, penetration testing initiatives, and key security indicator (KSI) dashboards for reporting on posture and readiness to executive stakeholders
• Collaborate with in-house compliance and legal experts to maintain an enterprise risk management program and ensure appropriate disaster recovery and business continuity plans are in place and are regularly tested
• Provide leadership across the company in incident response scenarios as well as technically thorough root cause analysis for internal and external stakeholders

QUALIFICATIONS – EDUCATION, WORK EXPERIENCE, CERTIFICATIONS:

Preferred Experience

• Experience managing information security control standards, including SOC2, PCI-DSS, NIST CSF, ISO 27000, or COBIT
• Has configured SaaS applications to use SAML authentication with identity providers such as Okta and Azure AD
• Experience with DLP tools and methodology
• Experience with Vulnerability Management
• Experience with some of the following IT Security tools
• Rapid7
• Sentinel One
• Centrify
• Apptega
• Varonis
• Mimecast
• Veracode

KNOWLEDGE, SKILLS, AND ABILITIES:

• 10 years of relevant Information Technology experience in security solutions within a highly matrixed organization
• Bachelor’s degree; relevant certifications (CISSP, CISM, CISA, CCSP), advanced degree, or equivalent experience preferred
• Change management and business process experience is ideal together with a proven track record of driving large-scale change programs. Flexible and adaptable – capable of changing direction where required and showing agility in order to meet new and evolving demands.
• Enterprise Security Program Management
• Experience managing security operations teams that develop alerting capabilities, respond to escalations, and triage incidents
• Exceptional written and verbal communication skills
• Maintain a current understanding of the IT threat landscape for the industry
• Responsibility for overseeing the management of the IT security department, giving leadership to the team and developing staff
EEO Statement: Jackson Healthcare and its family of companies are an EEO/AA Employer. All qualified applicants will receive consideration for employment without regard to race,color,religion,sexual orientation,gender,gender identity and expression,national origin,age,disability or protected veteran status. We celebrate diversity and are committed to creating an inclusive environment for all of our associates.