31 applicants

Company

Imagine Pediatrics · 10 hours ago

VP, Information Security

United States

Full-time

Remote

Director/Executive

10+ years exp

Maximize your interview chances

Child CareHospital

H1B Sponsor Likely

Insider Connection @Imagine Pediatrics

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Develop, implement, and maintain a security strategy and long-term vision that supports a scaling company in multiple states.

Ensure company policies and practices align with industry standards and HITRUST compliance requirements.

Regularly perform continuous needs assessment on security technology architecture to include the evaluation of the current enterprise product suite effectiveness and cost, while evaluating the changing requirements of the business against industry trends in cyber threat protection.

Define and implement new and existing playbooks/runbooks and work with multi-functional team members to maintain high-quality work standards.

Support third-party security assessments and contract negotiations for future and existing business partners in addition to addressing security posture mandates (e.g. HITRUST, SOC2).

Define and implement risk assessment processes for new technology platforms.

Collaborate with internal teams and external vendors to implement new software, policy configurations & settings to mitigate vulnerabilities.

Manage external security partnerships to ensure cohesive delivery of services that meet contractual requirements.

Work closely with the executive team to continually communicate on priority industry trends in threat protection and cyber security.

Regularly present to the executive team on current state security posture, priority risk and vulnerabilities, tactical approaches for mitigation, resolution / completion timelines, and dependencies.

Provide leadership and guidance to IT Infrastructure, Engineering, Data, Risk Management, Business Development and other critical business function services areas on security implementations, purpose, and priority.

Liaise with Business and IT Groups in the security analysis, design and planning phases of IT and business-related projects.

Work closely with the Chief of Compliance to develop information security policies, procedures, and controls to manage platforms containing PII and PHI.

Establish the corporate risk registry and process used to identify and prioritize corporate risks. Work closely with business owners to develop necessary corrective plans that outline the actions required to remediate, mitigate, transfer, or accept the identified risk based on corporate guidelines and policies.

Define and implement risk mitigation strategies for threat vectors related to all areas of the business.

Participate in security incident response processes on a per-occurrence basis.

Serve as the principal representative and accountable leader for all corporate information security-related matters.

Develop, mentor, and lead the information security team members to continually improve and expand the information security programs, manage cybersecurity threats, and assess and manage vulnerabilities.

Develop and manage the security operations annual budget ensuring Imagine Pediatrics maintains the appropriate level of protection and staffing while managing cost efficiency.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Information Security StrategyHITRUST ComplianceCyber Threat ProtectionRisk AssessmentIncident ResponseScienceGIAC CertificationCISSP CertificationCISA CertificationCISM CertificationCRISC CertificationGCIH CertificationSecurity+ CertificationCySA+ CertificationCEH CertificationSSCP CertificationITIL CertificationHealthcare Security ExperienceInformation Security Trends

Required

Bachelor of Science degree in Computer Science, Information Security, Business, Management, or related field is required.

10+ years of information security experience in a senior leadership role preferably in a high-growth healthcare environment, leading the overall corporate security strategy.

10+ years’ experience in a senior leadership role defining the security operations service delivery portfolio, roles, responsibilities, accountabilities, and performance SLAs of the security operations team.

Brings an advanced knowledge, experience, and expertise of U.S. Federal regulations such as the HITECH Act, HIPAA, and HITRUST.

Exceptional leadership skills and ability to lead and inspire the organization through complex and sometimes challenging and disruptive security initiatives.

Expertise in current Information Security industry trends, strategies, vulnerabilities and threats.

Preferred

Relevant license or certification(s): GIAC, CISSP, CISA, CISM, CRISC, GCIH, Security+, CySA+, CEH, SSCP, ITIL preferred.

CCISO, CISSP, CISM, and/or CISA certifications desired, but not required.

Company

Imagine Pediatrics

Imagine Pediatrics is a virtual healthcare service for children with complex medical conditions.

51-200 employees

https://www.imaginepediatrics.org

H1B Sponsorship

Imagine Pediatrics has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2023 (1)