Director, Cybersecurity (Information Technology)
The Director of Cybersecurity supervises and administers all aspects of the CARTI Cybersecurity Program. Serving as the organizations CISO, the Director of Cybersecurity oversees the day-to-day responsibilities as well as the long-term strategy of the CARTI Cybersecurity Program. Being considered the cybersecurity subject matter expert, this position must have knowledge, familiarity, and skill in all cybersecurity areas.
SPECIFIC JOB DUTIES AND RESPONSIBILITIES:
Oversees and administers the CARTI Cybersecurity Program.Organizes and directs the security incident response team (SIRT).Manages cybersecurity resources and relationships with third-party vendors.Manages the development, modification, and operation of cybersecurity procedures, protocols, and best practices.Conducts periodic audits of security protocols while evaluating IT systems for vulnerabilities and security risks.Develops training and guidance for employees on acceptable use, risk management, incident response, and appropriate best practices.Periodically provides cybersecurity program updates to senior leadership and management.Maintains the IT Risk Register to track and remediate cybersecurity risk items.Works closely with department directors to ensure cybersecurity program compliance.Maintains knowledge of IT security standards, emerging security threats, and industry trends to ensure adequate security of the organizations systems and data.Works closely with the Chief Information Officer to refine and publish organizational policies.Administers the organization's Governance, Risk, and Compliance platform.Ensures cybersecurity operations comply with all applicable government regulations and standards.Meets program and professional development goals set by the Chief Information Officer.Performs other related duties as assigned
OTHER JOB REQUIREMENTS: Other duties as assigned.
SUPERVISORY RESPONSIBILITY: No
EDUCATION, CERTIFICATION, LICENSURE, REGISTRATION:
Bachelors degree in Computer Science, Information Management, or equivalent required.Masters degree in Business Administration, Information Technology, or equivalent preferred.Certified Information Systems Security Professional (CISSP) certification or equivalent required.
EXPERIENCE, KNOWLEDGE, SKILLS and ABILITIES:
Seven years of experience in computer systems, with at least five years specializing in cybersecurity.Excellent management and leadership skills.Demonstrated problem-solving and analytical skills.Excellent verbal and written communication skills.Proficient in a broad array of security software applications and tools.Proficient with Microsoft Office or related software needed to maintain reports and records.Organized with attention to detail.
REASONING ABILITY:
Ability to solve practical problems and deal with various concrete variables in situations where only limited standardization exists.Ability to interpret a variety of instructions furnished in written, oral, or scheduled form.Able to read, write, and comprehend instructions at the college level.Ability to work under pressure.Ability to work on multiple projects at the same time.Ability to serve as the primary contact and expert on the application to troubleshoot problems and questions from end-users.Proven abilities in project management and organization.Ability to serve as liaison between application users/stakeholders and Information Technology Department, translating user needs into technical requirements.Able to troubleshoot, evaluate and repair systems and peripherals using audible and visual indications.
INTERPERSONAL SKILLS:
Must interact and communicate both verbally and in written form.Must interact and exchange information regarding patients with physicians and other departmental personnel, and outside agencies frequently while respecting the confidentiality of patient information.Ability to work individually and in a team setting as required.Ability to resolve issues/complaints, maintain confidentiality, and make satisfactory decisions independently.Ability to interact effectively with physicians and other medical personnel
PHYSICAL DEMANDS:
Prolonged periods sitting at a desk and working on a computer.Must be able to lift up to 15 pounds at times.
WORK ENVIRONMENT:
The work environment described is representative of those an employee encounters while performing the essential functions of this job.
This position involves potential exposure to infectious diseases. Team members are offered appropriate vaccinations and safety training.
COMMENTS:
This description is intended to describe the essential job functions, the general supplemental functions and the essential requirements for the performance of the job. It is not an exhaustive list of all duties, responsibilities and requirements of a person so classified. Other functions may be assigned and management retains the right to add or change the duties at any time. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of the job
