Director, Chief Information Security Officer (CISO) jobs in United States
cer-icon
Apply on Employer Site
company-logo

The Staff Pad · 2 months ago

Director, Chief Information Security Officer (CISO)

positionUnited States
timeFull-time
remoteRemote
seniorityDirector/Executive
date7+ years exp

The Staff Pad is seeking a Chief Information Security Officer (CISO) on behalf of a leading healthcare organization in Helena, Montana. This executive leader will establish and maintain the enterprise security vision, strategy, and program to safeguard all information assets, overseeing risk management, regulatory compliance, security operations, and incident response.

Staffing & Recruiting

Responsibilities

Develop and execute a long-term information security strategy aligned with organizational goals
Build and maintain an enterprise security framework (NIST CSF, 405D, ISO 27001, HITRUST, etc.)
Advise executive leadership and the Board on security posture, threats, and mitigation plans
Manage the information security budget and security technology investments
Lead enterprise risk assessments and prioritize mitigation initiatives
Ensure compliance with HIPAA/HITECH, GDPR, and other relevant data privacy regulations
Oversee creation and enforcement of security policies, procedures, and standards
Direct internal and external audit readiness and remediation (HITRUST, SOC 2, etc.)
Manage a robust vendor and third-party risk management program
Lead security operations, including threat/vulnerability management, IAM, SIEM, and endpoint protection
Oversee development and testing of Incident Response, Disaster Recovery, and Business Continuity plans
Serve as executive incident manager during security events, breaches, and investigations
Ensure security of EHR systems, medical devices, and clinical technologies
Build and lead a strong GRC and SecOps team
Drive organization-wide security awareness and training initiatives
Partner with IT, Clinical Operations, Legal, HR, and other departments to embed security into systems and workflows

Qualification

Information Security StrategyRisk ManagementHealthcare Industry KnowledgeCybersecurity ArchitectureIncident ResponseCompliance KnowledgeVendor Risk ManagementSecurity Awareness TrainingTeam LeadershipCollaboration Skills

Required

Minimum 7 years of progressive experience in Information Security; senior leadership or CISO-level experience preferred
Strong healthcare industry background, including understanding of EHR systems and PHI protection
Proven expertise in enterprise cybersecurity architecture, IAM, cloud security, and threat detection tools
Demonstrated experience conducting and managing enterprise risk assessments

Company

The Staff Pad

twitter
company-logo
The Staff Pad is a subscription-based, full service recruitment agency, supplying quality candidates into businesses across the United States at up to 68% less cost than traditional agencies.
dateFounded in 2020
location
Dallas, TX, US
people-size11-50 employees
web-link
http://www.thestaffpad.com

Funding

Current Stage
Early Stage

Leadership Team

leader-logo
Jessica Titko
Chief Operating Officer
linkedin
Company data provided by crunchbase