Job Specifications
Job Description:
The Intermountain Cybersecurity Program is broken into four distinct functions: Governance Risk and Compliance, Cyber Solutions, Cyber Advisory and the Cyber Fusion Center. Cyber Caregivers within Intermountain will specialize in their specific area and function.
This Senior Director of Cybersecurity is responsible to assist and advise the CISO in the creation and maintenance of Company-wide information security strategies and ensuring operational delivery of Governance Risk and Compliance (GRC) programs within Cybersecurity. The Sr. Director will lead a team of Cybersecurity leaders, inclusive of the Director and Manager level.
The Sr. Director will report to the VP and Chief Information Security Officer. The Sr. Director will be responsible for leading the evaluating, planning, implementing, and executing on the GRC Cybersecurity function, which includes strategic planning, decision-making and the adoption of best practice standards that are in line with the global cybersecurity and business strategies. In addition, the Sr. Director will work with all other cybersecurity leaders to establish and maintain the overarching Cybersecurity strategy. The Sr. Director should be well practiced in risk management techniques and be capable of guiding the organization with risk-based recommendations. The Sr. Director is a visionary leader with a sound knowledge of Healthcare, business management and a strong knowledge of cybersecurity practices and technologies. The Sr. Director must be highly knowledgeable about the business environment and ensure that information systems are maintained in a fully functional, secure mode. The Sr. Director will assist the CISO in all duties assigned by the CISO, CDIO or CCO.
The role is hybrid and will require travel to areas where Intermountain conducts business. Candidates who live in, or are willing to relocate to, Utah, Idaho, Nevada, Colorado, Wyoming, or Montana and are within a reasonable commuting distance to an Intermountain Health care site are preferred. Currently, we are not hiring remote workers in the following states: CA, CT, HI, IL, NY, RI, VT, and WA.
Essential Functions
Leads the development and implementation of strategic plans for the Cybersecurity functions and activities in their area of responsibility and executes that plan. Ensures that the plan is in line with global cybersecurity and Intermountain strategies.
Mentor and coach Directors, managers, supervisors and other team members and ensures that there is an adequate management succession plan in place. Builds a winning culture with a repeatable, process-based approach that recognizes the interdependence of all key stakeholders in the solutions delivery process.
Provides strategic budget oversight for a department/function they are responsible for and holds management team accountable for operating within the set operating and capital budget.
Develops and recommends for approval Cybersecurity specific policies and procedures.
Anticipates business needs and plays a collaborative role in proposing information security capabilities in support of business strategic roadmaps and creating a supporting information security strategy
Leads the development, implementation, and quality of cybersecurity services across the organization and ensures the services are consistently applied across all regions, markets, and functions of the organization
Leads, collaborates, facilitates and evangelizes the cybersecurity program to the whole organization, across all regions, markets, and functions.
Accountable to deliver results for area of responsibility. Regularly communicates with staff and manages projects and daily operations to ensure timely delivery within budget and according to requirements. This includes goal setting and implementation and problem/issue resolution.
Oversees the definition of cybersecurity standards and best practices (processes, tools, monitoring, etc.). Ensures that Directors, Managers and Supervisors ensure their teams are compliant with these standards and that the processes are repeatable.
Defines and measures quality and productivity associated with the services provided within the cybersecurity function.
Oversees the management of scope, risk, issues and budgets; resolves issues escalated from managers/supervisors and staff at any level. Also escalates issues when necessary.
Attracts, develops and maintains top talent to continually raise the bar on the capabilities and deliverables of the organization.
Coordinates project initiation, prioritization, and information technology resource allocation for staff within this function.
Develops and enhances an information security management framework based on industry accepted practices (e.g., ISO 27001, NIST, COBIT)
Understands and interacts with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems and services, including privacy, risk manag
About the Company
Headquartered in Utah with locations in six primary states and additional operations across the western U.S., Intermountain Health is a nonprofit system of 34 hospitals, 400+ clinics, a medical group of more than 4,800 employed physicians and advanced care providers, a health plan division called Select Health with more than one million members, and other health services. With more than 68,000 caregivers on a mission to help people live the healthiest lives possible, Intermountain is committed to improving community health,...
Know more