Employment Type: Full time
Shift:Description: Recruiting nationally for candidates, encourage all to apply. 100% remote availability within the United States. POSITION PURPOSE Provides advanced knowledge, concepts, and analytical skills in the area of Information Security to direct and support the management and administration of information security services in one or more specific information security domains, which includes:
- Security Controls/Monitoring and Metrics
- User Access/ Identity Reviews
- Security Reporting Tracking & Tools
- Communications and Awareness
Assists and supports the Enterprise Information Security (EIS) Directors and Regional Health Ministry (RHM) Information Security Managers in ensuring all projects and services meet Trinity Health Information Security and regulatory standards while delivering business requirements. Establishes and operates information security reporting procedures to validate that security controls remain in place. Acts as an advocate and resource on information security for various Regional Health Ministry (RHM) areas and/or system-wide initiatives. Assists the business owners of various information resources in addressing security issues. Plans and implements security initiatives, resolves complex security issues, and mitigates threats and vulnerabilities across an Information Security service. Establishes and operates information security reporting procedures to validate that security controls remain in place. Acts as an advocate and resource on information security for various Regional Health Ministry (RHMs) areas and/or system-wide initiatives. Assists the business owners of various Information Resources in addressing security issues.
ESSENTIAL FUNCTIONS - Knows, understands, incorporates and demonstrates the Trinity Health Mission, Vision and Values in behaviors, practices and decisions.
- Develops designs and operates one or more information security domains. Provides technical consultation and assistance in identifying, evaluating and documenting use of systems and other related services to ensure compliance with EIS policies.
- Specifies the prerequisites for effective technical solutions and tools essential for executing an Information Security Metrics program.
- Develops and maintains robust set of information security metrics, dashboards, and scorecards.
- Analyzes and presents information security metrics to provide visibility into existing control health and gaps
- Provides guidance and direction on enterprise security procedures, security technology, and security design work; works with business stakeholders to define Information Security processes. Works collaboratively with other security professionals and Security Managers to standardize information security industry best practices.
- Contributes to the creation of department procedures, standards and documentation for all information security services. Utilizes excellent verbal and written communication skills.
- Participates in the creation of annual objectives and tactical plans. Responsible for the prioritization of Infrastructure investments and maintenance involving IT security.
- Represents the EIS Director, when applicable, on EIS matters as well as serve as EIS liaison with RHM Security and Privacy Officials.
- Participates in the development and promotion of Information Security information for general awareness.
- Participates in site-specific meetings. Participates in the creation of the development and implementation of annual objectives and tactical plans to achieve strategic planning initiatives. Monitors or enforces security policies, procedures and standards to ensure conformance with TIS objectives.
- Ensures all projects and services meet Trinity Health Information security and regulatory standards, policies and procedures while delivering business requirements.
- Maintains a working knowledge of applicable Federal, State and local laws/regulations; the Trinity Health Integrity and Compliance Program and Code of Conduct; as well as other policies and procedures in order to ensure adherence in a manner that reflects honest, ethical and professional behavior.
MINIMUM QUALIFICATIONS - Bachelor's degree or an equivalent combination of education and experience.
- Minimum of five (5) years of progressive experience in information services including three (3) years in information security, including experience in compliance with federal and state security regulations.
- Must possess a good understanding of enterprise security best practices relating to implementing and managing enterprise security solutions.
- Working knowledge of HIPAA, ISO 27001/2, FISMA, FIPS, and NIST security.
- Experience with administrative and technical assessments as well as enforcing organizational compliance.
- Must be team oriented, supportive, and committed to excellence and possess high level of initiative and self-motivation with demonstrated work ethic.
- Must be committed to continual personal and professional growth, possess a pro-active approach with a willingness to go the extra mile every time for the customer.
- Ability to work under general direction, manage multiple priorities and to effectively adapt to rapidly changing technology and business needs with demonstrated ability to prioritize projects and work load.
- A personal presence which is characterized by a sense of honesty, integrity and caring with the ability to inspire and motivate others to promote the philosophy, mission, vision, goals and values of Trinity Health.
- pay grade 15 range 96,319.82-144,479.7275
PHYSICAL AND MENTAL REQUIREMENTS AND WORKING CONDITIONS - Must be able to adapt to frequently changing work priorities, and be able to prioritize and balance the requirements of working with multiple members of the Enterprise Information Security team.
- Must be able to communicate frequently, in person and over the phone, with people in a number of different locations on technical issues.
- Manual dexterity is needed in order to operate a keyboard. Hearing is needed for extensive telephone and in person communication.
- Must be able to travel to the various Trinity Health sites (25%). (may or may not be applicable)
The above statements are intended to describe the general nature and level of work being performed by persons assigned to this classification. They are not to be construed as an exhaustive list of duties so assigned.
Our Commitment to Diversity and Inclusion Trinity Health is one of the largest not-for-profit, Catholic healthcare systems in the nation. Built on the foundation of our Mission and Core Values, we integrate diversity, equity, and inclusion in all that we do. Our colleagues have different lived experiences, customs, abilities, and talents. Together, we become our best selves. A diverse and inclusive workforce provides the most accessible and equitable care for those we serve. Trinity Health is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other status protected by law.