DrFirst

Returning Candidate?

Chief Information Security Officer

Chief Information Security Officer

Job ID 
2017-1419
# of Openings 
1
Job Locations 
US-MD-Rockville
Posted Date 
9/26/2017
Category 
Executive

More information about this job

Overview

Purpose: 

 

DrFirst services the healthcare industry through its product and consulting service. We are excited to be recruiting for the role of Chief Information Security Officer (CISO). The CISO will be responsible for leading the IT security department, and driving IT security strategy, and implementation forward. This is a C level position and the successful candidate will be responsible for keeping senior leadership well informed of the current state of security, emerging trends, as well as demonstrating continued progress towards stated goals.

 

The successful candidate must have previously held a Director level, or CISO position at an Information Technology organization. Knowledge of IT Security best practices, familiarity with IT policies, standards and procedures as well as an understanding of information systems, web applications and Software as a Service is a must. High level communication skills are essential to successfully translate technology and requirements into business terms.

This role lies within the Information Security function, reporting to the Chief Administration Officer, but is closely aligned with other corporate functions such as Information Technology, Product Management, and Legal, and may involve liaison with third party suppliers and business partners.

Responsibilities

Key Responsibilities

  • C-level position responsible for the enterprise’s security strategy, policy and procedures to safeguard information assets
  • Serve as the Security Owner for DrFirst applications
  • Planning, implementation and periodic review of policies and procedures
  • Establish standards and compliance with regulations
  • Develop, maintain and enhance security posture
  • Recognize and address emergent threat and vulnerabilities
  • Integrate with CIO office to deploy and implement efficient and effective security management and controls
  • Be able to articulate security issues and trends to senior management and advise on ROI on security initiatives
  • Communicate corporate initiatives internally and externally
  • Report to Chief Administrative Officer, and /or President

Qualifications

Education and Skill Set:

  • Master Degree in Computer Science, specialized in network and app security preferred
  • CISA or CISSP
  • Hands on experience with risk assessment and risk mitigation, compliance with regulations on security and privacy
  • Understand the concepts of defense in depth
  • Leadership experience managing a diversified group of staff and contractors
  • Proven innovative approach to implement solutions
  • Experience with crisis management and incident response
  • Understands the complexity of security on SaaS and healthcare industry, IOT and technology trends
  • Experience with NIST, ISO or other frameworks,
  • Experience with Business Continuity Planning and Readiness
  • Understand digital forensics

 

Physical Requirements:

  • 100% Desk/phone work