Harris Health System
VP Chief Information Security Officer
Harris Health System, Bellaire, Texas, United States, 77401
Harris Health System is the public healthcare safety-net provider established in 1966 to serve the residents of Harris County, Texas. As an essential healthcare system, Harris Health champions better health for the entire community, focusing on low-income uninsured and underinsured patients through acute and primary care, wellness, disease management, and population health services. Ben Taub Hospital (Level 1 Trauma Center) and Lyndon B. Johnson Hospital (Level 3 Trauma Center) anchor Harris Health’s robust network of 39 clinics, health centers, specialty locations, and virtual (telemedicine) technology. Harris Health is among an elite list of health systems in the U.S. achieving Magnet nursing excellence designation for its hospitals, the prestigious National Committee for Quality Assurance designation for its patient-centered clinics and health centers, and its strong partnership with nationally recognized physician faculty, residents, and researchers from Baylor College of Medicine, McGovern Medical School at The University of Texas Health Science Center at Houston (UTHealth), The University of Texas MD Anderson Cancer Center, and the Tilman J. Fertitta Family College of Medicine at the University of Houston.
Skills / Requirements
JOB SUMMARY: This position reports directly to the Chief Information Officer and has a dotted-line reporting relationship to the Executive Vice President, Chief Compliance and Risk Officer (CCRO). This role ensures that conflicts between the interests of the CCISO and CIO are managed appropriately. The CISO reports regularly to Harris Health's Chief Executive Officer and Board of Trustees regarding relevant Information Security matters, including training and breaches. This executive-level position encompasses the development and enforcement of policies and strategies to protect against evolving cyber threats while ensuring compliance with healthcare regulations such as HIPAA/HITECH. The CISO directs the overall planning and execution of enterprise security systems, overseeing security management reports and a team of analysts, engineers, and architects. As a business enabler, the CISO ensures that security does not hinder business decisions but adheres to corporate security policies.
MINIMUM QUALIFICATIONS: Degree:
Bachelor's Degree in Computer Science, Information Security, or related field Master's Degree in Computer Science, Information Security, or related field
License & Certifications: Certified Information Systems Security Professional (CISSP) highly preferred
AND Certified Information Security Manager (CISM) OR Certified Chief Information Security Officer (CCISO)
Work Experience: Fifteen (15) years of professional experience in Cyber/Information Security, designing, and implementing enterprise Cyber/Information Security solutions.
Management Experience: Ten (10) years of progressive management experience in HIPAA Security Regulation and practical experience with Cyber/Information Privacy and Security laws (such as FISMA, PCI-DSS, GLBA, FIPS, NIST-CSF and data breach reporting laws). Healthcare and/or Federal government cybersecurity experience is a plus.
SPECIAL REQUIREMENTS: Communication Skills:
Above Average Verbal (Heavy Public Contact), Writing/Correspondence, Writing/Reports
Knowledge/Skills/Abilities: Executive Presence Disaster Recovery Planning Backup Strategy Understanding Cybersecurity Ownership & Accountability Planning & Organization Critical Thinking
Work Schedule:
Eligible for Telecommute
Other Requirements: Expert technical knowledge of Cyber/Information Security, infrastructure, network, server, workstation, and security-related technologies (both software and hardware). Expert working knowledge of best practice security design associated with the above technology. Strong demonstrated knowledge of technologies including network, server, desktop, storage, medical security, and how Cyber/Information Security relates to the overall business of the organization.
#J-18808-Ljbffr
JOB SUMMARY: This position reports directly to the Chief Information Officer and has a dotted-line reporting relationship to the Executive Vice President, Chief Compliance and Risk Officer (CCRO). This role ensures that conflicts between the interests of the CCISO and CIO are managed appropriately. The CISO reports regularly to Harris Health's Chief Executive Officer and Board of Trustees regarding relevant Information Security matters, including training and breaches. This executive-level position encompasses the development and enforcement of policies and strategies to protect against evolving cyber threats while ensuring compliance with healthcare regulations such as HIPAA/HITECH. The CISO directs the overall planning and execution of enterprise security systems, overseeing security management reports and a team of analysts, engineers, and architects. As a business enabler, the CISO ensures that security does not hinder business decisions but adheres to corporate security policies.
MINIMUM QUALIFICATIONS: Degree:
Bachelor's Degree in Computer Science, Information Security, or related field Master's Degree in Computer Science, Information Security, or related field
License & Certifications: Certified Information Systems Security Professional (CISSP) highly preferred
AND Certified Information Security Manager (CISM) OR Certified Chief Information Security Officer (CCISO)
Work Experience: Fifteen (15) years of professional experience in Cyber/Information Security, designing, and implementing enterprise Cyber/Information Security solutions.
Management Experience: Ten (10) years of progressive management experience in HIPAA Security Regulation and practical experience with Cyber/Information Privacy and Security laws (such as FISMA, PCI-DSS, GLBA, FIPS, NIST-CSF and data breach reporting laws). Healthcare and/or Federal government cybersecurity experience is a plus.
SPECIAL REQUIREMENTS: Communication Skills:
Above Average Verbal (Heavy Public Contact), Writing/Correspondence, Writing/Reports
Knowledge/Skills/Abilities: Executive Presence Disaster Recovery Planning Backup Strategy Understanding Cybersecurity Ownership & Accountability Planning & Organization Critical Thinking
Work Schedule:
Eligible for Telecommute
Other Requirements: Expert technical knowledge of Cyber/Information Security, infrastructure, network, server, workstation, and security-related technologies (both software and hardware). Expert working knowledge of best practice security design associated with the above technology. Strong demonstrated knowledge of technologies including network, server, desktop, storage, medical security, and how Cyber/Information Security relates to the overall business of the organization.
#J-18808-Ljbffr