Job Description

Job Summary The Director, Information Security establishes and administers the overall strategies and procedures for the information security function. They will also develop and implement information security and governance programs in accordance with organizational information security standards. Evaluates information risk on a regular basis and promotes information security awareness within the organization. Creates functional strategies and specific objectives for the sub-function and develops budgets/policies/procedures to support the functional infrastructure. Deep hands-on knowledge of the security principles and overall security best practices. Essential Functions And Tasks Develop and implement comprehensive security strategies, policies, and procedures aligned with Ventra\'s goals and industry best practices. Proactively identify potential security risks and vulnerabilities and devise effective countermeasures. Manage and lead security team, including hiring, training, and performance evaluations. Review existing security measures and update protocols as needed. Oversee the daily security operations of the company to identify potential security risks and propose enhancements. Conduct security risk assessments, audits, and vulnerability studies to identify vulnerabilities and risks, and develop action plans to mitigate them. Conduct investigations and dispositions of security matters. Analyze security trends and incidents to make informed adjustments to security protocols. Collaborate with IT teams to implement and maintain cybersecurity measures, including data protection and network security. Develop and enforce policies related to data privacy and confidentiality. Administer the governance program as it relates to regulatory compliance such as SSAE16 SOC2. Oversee relationships with security service providers and vendors to ensure the quality and effectiveness of outsourced security services. Develop and implement cohesive policies, procedures, and training programs. Conduct security awareness programs and training for colleagues to promote a culture of security awareness. Provide guidance on how to respond to security incidents and promote a sense of preparedness among employees. Stay current with relevant laws, regulations, and industry standards related to security, and ensure the organization\'s compliance. Proactively identify, mitigate, and track recurring security issues. Develop and oversee a comprehensive security strategy to protect Ventra\'s assets, determine priorities, and allocate resources based on risk, operational needs, and company policies. Support the goals and objectives of the organization to maintain security, safety, and confidentiality. Education And Experience Requirements Bachelor\'s degree in security services, criminal justice, law enforcement or military security management. Ten (10) plus years of proven experience within Information Security. Experience with Revenue Cycle Management, Healthcare and/or Billing systems is preferred. ISO certification is preferred. Knowledge, Skills, And Abilities Experience with security risk assessment processes, procedures, and methodologies. Experience with PHI data management and compliance. Ability to develop and implement security policies and procedures. Hands on knowledge of security equipment and the ability to train others. Excellent knowledge of state and federal information security laws. Proven proficiency in developing physical and digital security protocols and procedures. Solid communication and interpersonal skills. Exceptional managerial skills and the ability to lead a team. Exceptional and proven collaboration successes. Ability to research and stay up to date with security trends, as well as changing government and state laws. Ability to read, understand, and apply state/federal laws, regulations, and policies. Ability to communicate with diverse personalities in a tactful, mature, and professional manner. Ability to remain flexible and work within a collaborative and fast paced environment. Basic use of computer, telephone, internet, copier, fax, and scanner. Basic touch 10 key skills. Basic Math skills. Understand and comply with company policies and procedures. Strong oral, written, and interpersonal communication skills. Strong time management and organizational skills. Strong knowledge of Outlook, Word, Excel (pivot tables), and database software skills.

foundit