Disaster Recovery Lead

About The Position

Requirements

• Bachelor’s degree in a related field
• 5-7 years of related work experience.
• 5-7 years of experience in information security, with a focus on security analysis or similar roles, including at least 2-3 years in a leadership or supervisory position.
• Broad knowledge of commonly used information security concepts, best practices, and standards
• Demonstrated expertise is at least two leading security areas, e.g., privileged access management, enterprise identity & access management, cloud architecture, data loss prevention, security information & event manager, incident management, third-party vendor risk assessment, API security, network security, malware prevention, database masking, secure development, application security testing, multi-factor authentication schemes
• Self-directed; expected to identify and lead efforts to correct security controls and/or process improvements
• Strong collaboration, facilitation, and negotiation skills.
• Strong communication skills, both written and verbal.
• Ability to explain complex technical issues to non-technical colleagues and business executives
• Ability to troubleshoot and independently solve problems as they arise
• Familiarity with HIPAA Security Rule and other regulatory requirements
• Proven analytical and problem-solving abilities
• Project and program management planning and organizational skills
• Customer service focused
• Time management and prioritization

Nice To Haves

• Master’s degree

Responsibilities

• Evolves and maintains the DR framework, plans, and standards
• Ensures alignment with Business Continuity (BC) and Incident/Crisis Management
• Coordinates DR testing, exercises, and continuous improvement
• Tracks remediation of DR gaps and test findings
• Reports DR readiness and maturity to leadership
• Coordinates recovery and incident response activities
• Provides leadership in planning, designing, assessing, and/or implementing strategic security program improvements
• Provides advanced information security consultation for all aspects of information security, compliance, policy, risk management, and remediation
• Identifying process improvements and developing plans to meet or exceed security best practices
• Ensure the confidentiality, integrity, and availability of the information residing on or transmitted to/from/through the enterprise’s devices, servers, and other systems and data repositories.
• Providing technical expertise and administration of security solutions, where applicable
• Participate in the design, implementation, and administration of security tools to reduce risk
• Identifying technology trends and evolving social behavior to support the success of the business
• Oversee and maintain system consistency through regular audits
• Provide leadership and education colleagues; participate as an active member of the IT and security community at Point32Health to promote information sharing, respectful challenge, efficiency, control effectiveness, and program quality through continuous improvement
• Create meaningful and detailed metrics based on security needs
• Other duties and projects as assigned.

Benefits

• Medical, dental and vision coverage
• Retirement plans
• Paid time off
• Employer-paid life and disability insurance with additional buy-up coverage options
• Tuition program
• Well-being benefits
• Full suite of benefits to support career development, individual & family health, and financial health