System Director Information Security, UofL Health

About The Position

Requirements

• Bachelor's degree in an Information Technology-related field or equivalent relevant experience (required)
• 15 years of professional experience in technical environments (required)
• Strong working knowledge of theory and practice within a specialized IT/IS field
• Exemplifies service excellence – responsive, informs constituents of process, pleasant to work with, educates and provides timely, accurate information
• Displays strong organizational skills – manages time effectively, keeps tasks appropriately prioritized and delegates appropriately; works proactively- anticipates and plans for problems before they arise; is able to perform work in a neat, efficient, well-coordinated, well communicated manner with a high degree of accuracy and professionalism
• Role models strong work ethic – motivated, diligent, industrious and persistent in the workplace, stays on tasks to completion, works at a fast pace to ensure optimal efficiency; remains flexible – ability to change directions, as needed, to ensure optimal outcomes
• Displays strong interpersonal skills– can build effective, strong working relationships with employees, colleagues, management and vendors through trust, communication, and credibility; displays self-awareness and emotional intelligence, exercises sound judgement
• Displays strong leadership skills – ability to work collaboratively with others, serve others, help others, lead others, mentor others, and take directions from others in the interest of moving process and programs forward to the desired outcome
• Must be able to communicate effectively in both verbal and written formats
• Ability to break down problems or tasks; scanning one’s own knowledge and experience to identify causes and consequences of events
• Proficient in Microsoft Office Suite (Word, Excel, Outlook)

Nice To Haves

• Master’s Degree in an Information Technology-related field (preferred)
• Certified Information Systems Security Professional (CISPP) certifications or other industry-related certification (preferred)

Responsibilities

• Manages the daily operation and implementation of the IT security strategy including governance, business continuity and disaster recovery, vulnerability and incident management, cybersecurity risk management, security operations, identity and access management, physical security and security compliance
• Conducts continuous assessment of IT security practices and systems to identify areas for risk, noncompliance, and improvement
• Communicates digital programs and strategies to stakeholders; reviews, analyzes, and delivers data information to stakeholders
• Oversees security assessments and risk analyses, delivers new security technology approaches and next generation solutions and develops strategies and solutions to minimize the risk of cyberattacks
• Ensures compliance and governance of programs
• Manages the IT security budget; communicate to staff and appropriate parties
• Communicate cybersecurity risk to the organization’s leadership
• Maintains compliance with all company policies, procedures and standards of conduct
• Complies with HIPAA privacy and security requirements to maintain confidentiality at all times
• Performs other duties as assigned
• Demonstrates a commitment to service, organization values and professionalism through appropriate conduct and demeanor at all times
• Maintains confidentiality and protects sensitive data at all times
• Adheres to organizational and department specific safety standards and guidelines
• Works collaboratively and supports efforts of team members
• Demonstrates exceptional customer service and interacts effectively with physicians, patients, residents, visitors, staff and the broader health care community