CareFirst
Cyber Security Strategy Director (Remote)
CareFirst, Owings Mills, Maryland, United States, 21117
CareFirst Cyber Security Strategy Director (Remote) Owings Mills, Maryland
The Director, Cybersecurity Strategy is responsible for partnering with the Chief Information Security Officer (CISO) in maintaining a corporate-wide cybersecurity program and organization. Reporting directly to the CISO, the Director, Cybersecurity Strategy will work with all areas of CareFirst's business to mature and communicate a shared vision for a "best in class" cybersecurity program. This will be done by establishing and executing a robust cybersecurity strategy to support continuous business enablement, while ensuring the confidentiality, integrity, and availability of the company's information, information assets, and related technology from cyber threats. A fundamental component to success is proactive risk management where the roadmap reflects the balance between risks and controls, with transparency, to support informed, risk-based decisions, in alignment with CareFirst's risk appetite and tolerance as defined by the company's Enterprise Risk Management function. Responsibilities include, but are not limited to: Cybersecurity strategy, program coordination and execution. Awareness and outreach. Internal and external relationship management. Reporting on information security program effectiveness. This position requires an experienced leader with strong business insight and a working knowledge of information security technologies, policies, practices, and their application to the advancement of CareFirst's mission and vision in support of our business. The Director, Cybersecurity Strategy is comfortable interacting with the most senior levels of the organization and as a peer-advisor to CareFirst's business leaders while collaborating with key stakeholders in Legal, Risk, Privacy, and Compliance. ESSENTIAL FUNCTIONS: Support the refinement, delivery, and overall operating model against the security roadmap and three-year risk-based cybersecurity strategy. Proactively communicate with internal and external stakeholders on the importance of cybersecurity, their role in securing the company, and relevant risks. Oversee the strategic and day-to-day activities of the Department, including directing, coaching, and guiding employees to implement departmental, divisional, and organizational mission/goals. Recruit, retain, and develop a high performing team. Develop annual goals and prepare, monitor, and analyze variances of departmental budgets. SUPERVISORY RESPONSIBILITY: This position manages people. QUALIFICATIONS: Education Level:
BS/MS in Computer Science, Information Technology, Risk Management, or related fields and/or relevant experience OR in lieu of a Bachelor's degree, an additional 4 years of relevant work experience is required. Experience:
8 years related professional experience, including 3 years of management experience. Preferred Qualifications: 10+ years of experience in risk management, information security, and IT delivery, with at least 6 years of leadership. Professional security management certification is desirable, such as CISSP, CISM, CISA, or similar credentials. Knowledge, Skills and Abilities (KSAs): Excellent written and verbal communication skills. Strategic leader and builder of both vision and bridges. Critical thinker with strong problem-solving skills. Up-to-date knowledge of business and technical trends. Understanding of cybersecurity's impact across all levels of the business. Salary Range:
$161,280 - $299,376 Department:
Cybersecurity Strategy CareFirst BlueCross BlueShield is an Equal Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information. Where To Apply:
Please visit our website to apply: www.carefirst.com/careers Sponsorship in US:
Must be eligible to work in the U.S. without Sponsorship.
#J-18808-Ljbffr
The Director, Cybersecurity Strategy is responsible for partnering with the Chief Information Security Officer (CISO) in maintaining a corporate-wide cybersecurity program and organization. Reporting directly to the CISO, the Director, Cybersecurity Strategy will work with all areas of CareFirst's business to mature and communicate a shared vision for a "best in class" cybersecurity program. This will be done by establishing and executing a robust cybersecurity strategy to support continuous business enablement, while ensuring the confidentiality, integrity, and availability of the company's information, information assets, and related technology from cyber threats. A fundamental component to success is proactive risk management where the roadmap reflects the balance between risks and controls, with transparency, to support informed, risk-based decisions, in alignment with CareFirst's risk appetite and tolerance as defined by the company's Enterprise Risk Management function. Responsibilities include, but are not limited to: Cybersecurity strategy, program coordination and execution. Awareness and outreach. Internal and external relationship management. Reporting on information security program effectiveness. This position requires an experienced leader with strong business insight and a working knowledge of information security technologies, policies, practices, and their application to the advancement of CareFirst's mission and vision in support of our business. The Director, Cybersecurity Strategy is comfortable interacting with the most senior levels of the organization and as a peer-advisor to CareFirst's business leaders while collaborating with key stakeholders in Legal, Risk, Privacy, and Compliance. ESSENTIAL FUNCTIONS: Support the refinement, delivery, and overall operating model against the security roadmap and three-year risk-based cybersecurity strategy. Proactively communicate with internal and external stakeholders on the importance of cybersecurity, their role in securing the company, and relevant risks. Oversee the strategic and day-to-day activities of the Department, including directing, coaching, and guiding employees to implement departmental, divisional, and organizational mission/goals. Recruit, retain, and develop a high performing team. Develop annual goals and prepare, monitor, and analyze variances of departmental budgets. SUPERVISORY RESPONSIBILITY: This position manages people. QUALIFICATIONS: Education Level:
BS/MS in Computer Science, Information Technology, Risk Management, or related fields and/or relevant experience OR in lieu of a Bachelor's degree, an additional 4 years of relevant work experience is required. Experience:
8 years related professional experience, including 3 years of management experience. Preferred Qualifications: 10+ years of experience in risk management, information security, and IT delivery, with at least 6 years of leadership. Professional security management certification is desirable, such as CISSP, CISM, CISA, or similar credentials. Knowledge, Skills and Abilities (KSAs): Excellent written and verbal communication skills. Strategic leader and builder of both vision and bridges. Critical thinker with strong problem-solving skills. Up-to-date knowledge of business and technical trends. Understanding of cybersecurity's impact across all levels of the business. Salary Range:
$161,280 - $299,376 Department:
Cybersecurity Strategy CareFirst BlueCross BlueShield is an Equal Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information. Where To Apply:
Please visit our website to apply: www.carefirst.com/careers Sponsorship in US:
Must be eligible to work in the U.S. without Sponsorship.
#J-18808-Ljbffr