VP of Information Security
Company: Cancer Treatment Centers of America, Inc.
Location: Boca Raton
Posted on: September 16, 2021
The VP, Information Security serves as Chief Information
Security Officer (CISO) and HIPAA Security Officer. Establishes and
leads an enterprise information security management program to
ensure that information assets are adequately protected.
Identifies, evaluates, and reports on information security risks in
a manner that meets compliance and regulatory requirements, and
aligns with and supports the risk posture of the enterprise. Plays
a key role in responding to potential data breach situations,
including working with legal and compliance in conducting both
privileged and non-privileged reviews of such incidents. Develops
and disseminates knowledge regarding the business environment
(internal and external) and takes action to maintain information
systems in a fully functional, secure mode.
Develop, implement, and monitor a strategic, comprehensive
enterprise information security and IT risk management program to
ensure that the integrity, confidentiality, and availability of
information that is owned, controlled, or processed by the
organization. Ensure that security programs are in compliance with
relevant laws, regulations, and policies to minimize or eliminate
risk and audit findings.
Manage the enterprise's information security organization,
consisting of direct reports, consultants, and indirect reports
(such as individuals in business continuity and IT operations).
This includes hiring, training, staff development, performance
management and annual performance reviews.
Create and manage information security and risk management
awareness training programs for all employees, contractors, and
approved system users. Serve as internal consultant to
organizational leadership regarding cybersecurity awareness and
Proactively work with business units, IT and other functional areas
(including legal and compliance) to develop, maintain, and publish
up-to-date information security policies, standards, and
guidelines. Oversee the approval, training, and dissemination of
security policies and practices.
Create, communicate, and implement a risk-based process for third
party risk management, including the assessment and treatment for
risks that may result from vendors, partners, business associates,
non-employed physicians, consultants, and other service
Provide strategic risk guidance for IT projects, including the
evaluation and recommendation of technical controls.
Monitor the external threat environment for emerging threats, and
advise relevant stakeholders on the appropriate courses of
Define and facilitate the information security risk assessment
process, including the reporting and oversight of treatment efforts
to address negative findings. Work directly with the business units
to facilitate IT risk assessment and risk management processes, and
work with stakeholders throughout the enterprise on identifying
acceptable levels of residual risk.
- CISSP certification
- CISM certification
- CISA certification
- Bachelors Degree within Information Technology
- Minimum of 12 years of Information Security experience
- 5 years in a management (or higher) role
- Strong healthcare specific background
Keywords: Cancer Treatment Centers of America, Inc., Boca Raton , VP of Information Security, Other , Boca Raton, Florida
Didn't find what you're looking for? Search again!