Apply on Employer Site

UnityPoint Health · 1 day ago

Regional Information Security Officer

Des Moines, IA

Full-time

Hybrid

Senior Level

5+ years exp

UnityPoint Health is looking for a Regional Information Security Officer (RISO) to oversee the information security program in collaboration with the Chief Information Security Officer (CISO). The RISO will promote enterprise security initiatives, assess and manage risks, and serve as the escalation point for security issues within the region or affiliate.

Health CareHospitalMedical

H1B Sponsor Likely

Responsibilities

Support projects to create, implement, manage, and enforce information security directives as mandated by federal, state, and local agencies and to appropriately mitigate information risks

Support the development and ongoing management of the information security program for UPH including policies, procedures, guidelines, awareness and training plan, overall security infrastructure, and monitoring

Ensure the ongoing integration of information security with business strategies and requirements within the region, affiliate, or service line

Ensure access control, disaster recovery, business continuity, incident response, risk management, and other information security best practices, are properly addressed in the region, affiliate or service line

Support information security awareness and training initiatives to educate workforce about information risks and how to mitigate them

Participate in on-going information risk assessments and audits to ensure that information systems are adequately protected and meet all regulations

Work with vendors, outside consultants, and other third parties to improve information security within the organization

Monitor the effectiveness of the information security program throughout region, affiliate, or service line and provide regular reports to the local Compliance Committee and the CISO

Work closely with the Regional Privacy Officers for ongoing application of technology functionality to protect PHI

Stay up-to-date with current and emerging information security threats, reported incidents and new and updated data protection laws and regulations

Fulfills the ISO role for the assigned region, affiliate, or service line

Advises, communicates, and responds to individuals regarding information security questions and/or concerns

Supports the UPH strategic direction and balances it with the specific business and information systems needs of the customers

Performs daily monitoring, investigation, and mitigation of security violations

Understands system security requirements by business function

Communicates with all levels of management and end users concerning the policies, procedures, standards, and guidelines related to information security

Ensures that the communication occurs and is appropriate at each level

Oversees risk assessment and risk management processes for their assigned region, affiliate, or service line

Assists in the investigation, planning, documentation, implementation, maintenance, and testing of incident response, business continuity, emergency operations, and disaster recovery plans and audit controls

Assists in the development of an education program that promotes security planning, awareness and training throughout the organization

Provides expertise to projects to ensure compliance with UPH policy, security and privacy standards, and state and federal laws and regulations

Reports non-adherence and non-conformity to standards and policies to local governing bodies and the CISO

Qualification

Information SecurityHIPAA ComplianceRisk ManagementDisaster RecoveryHealthcare RegulationsPlanning SkillsCommunication SkillsOrganizational Skills

Required

Bachelor's degree is required. Equivalent education and work experience will be accepted only if previous experience applies to specific work in the information protection field

At least five (5) years of experience in information security or healthcare regulations

Broad understanding of HIPAA compliance regulations, information protection and technology controls, auditing processes, and disaster recovery/contingency planning

Excellent communication, planning, and organizational skills

Understands computer system functionality, limitations, and architecture of supported applications and platforms

Benefits

Paid time off

Parental leave

401K matching

Employee recognition program

Dental and health insurance

Paid holidays

Short and long-term disability

Pet insurance

Early access to earned wages with Daily Pay

Tuition reimbursement

Adoption assistance

Company

UnityPoint Health

Glassdoor3.7

UnityPoint Health is an integrated health system that provide a full range of coordinated care to patients and families.

Founded in 1995

West Des Moines, Iowa, USA

10001+ employees

http://www.unitypoint.org/

H1B Sponsorship

UnityPoint Health has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (1)

2024 (1)

2023 (2)

2022 (1)

2021 (1)

2020 (1)

Funding

Current Stage

Late Stage

Total Funding

$0.19M

Key Investors

Baldrick's Foundation

2025-11-20Grant

2014-02-12Grant· $0.19M

Leadership Team

MarCia Ekworomadu

Vice President, Operations- Oncology Service Line

Carmen Kleinsmith

Chief Nursing Officer

Recent News

Corridor Business Journal

UnityPoint Health names chief medical officer for cardiovascular services

2025-12-18

GlobeNewswire

UnityPoint Health Announces Chief Medical Officer and Vice President for Cardiovascular Services

2025-12-17

UnityPoint Health

UnityPoint Health Announces Chief Medical Officer and Vice President for Oncology

2025-12-02

Company data provided by crunchbase