Chief information security officer || (Orlando ,FL) remote

Title :Chief information security officer Exp: 20+ Rate : $ 100/Hr on C2C Location : Orlando ,FL / remote

Description

The Chief Information Security Officer (CISO) is a senior executive responsible for overseeing the information security and cybersecurity strategy of an organization. The CISO plays a critical role in safeguarding the organization's information assets, managing risks, and ensuring compliance with relevant regulations. The CISO is a position supporting all entities of the Health System, and is responsible for the effective execution of IT Security functions across the entire Health System.

Organizational Partnerships:

• A CISO, or chief information security officer, is a senior-level executive who oversees an organization's information, cyber, and technology security.
• The CISO's experience include developing, implementing, and enforcing security policies to protect critical data
• A minimum of 15 years of experience in the Cybersecurity domain with expertise in Zero Trust Architecture implementation.
• Provide subject matter expertise to the CISO, Cybersecurity Program Manager, and Cybersecurity Engineer on the most effective strategies for implementing and sustaining a zero-trust architecture.
• Serves as a key member of the Health IT executive team.
• Builds collaborative relationships with operational and Health IT Leaders across the Health System.
• Develops well-designed operational and capital budgets in support of appropriate domain areas and aligned with customer expectations. Manages budget in an accountable and transparent manner. Creates long range financial plans that align with the system's mission and strategic plan.
• Actively participates in policy and procedure development for the role's domain areas.
• Actively cultivates and manages partnerships with key vendors.
• Invests in team members by cultivating a positive team culture that promotes exceptional employee engagement.
• Ensures that team members focus on the proper priorities in accordance with organizational, division, and team goals.
• Domain Areas:
• Information Security Strategy
• Risk Management
• Policy and Compliance
• Security Awareness:
• Incident Response and Management
• Security Architecture
• Vendor and Third-Party Security
• Security Governance
• Security Technologies
• Security Audits and Assessments

Advanced / Emerging Technologies:

• Stays current with emerging trends in domain areas; such as new monitoring and auditing tools, policy and risk management, software and hardware to protect data assets.
  Identifies and brings forward potential initiatives and solutions enabled by advanced and emerging technologies.
• Brings on board, in a staff or consulting role, experienced staff and leaders capable of designing and implementing advanced and emerging technologies.

Leadership and Administration:

• Has responsibility for hiring, training, motivating, and retaining top talent resulting in the development and maintenance of a high-performance team.
• Promotes a team concept reflecting the mission, vision and values of UVA Health.
• Drives rigor and operational maturity to create a high performing team.
• Models and encourages staff in professional development activities to keep abreast of industry changes while building, recruiting and retaining talent.
• Ensures ongoing staff training and competency to maintain a skilled workforce.
• Manages budget for department/projects associated with this domain, including forecasting needs, tracking costs, investigating variances, making corrections, etc.
• Directs and monitors work efforts on a regular basis supporting staff leadership and input into decision making, identifying resource needs, performing quality review; and escalating functional, quality, timeline issues appropriately.
• Manages, champions, and sustains a diverse work environment and culture in alignment with the mission of the organization.
• Creates and promotes an environment of leadership and direction, providing subject matter expertise in all areas related to information technology service delivery.

MINIMUM REQUIREMENTS

• Education: Bachelor's degree required; Master Degree in Healthcare or Information Technology is preferred.
• Experience: 10+ years of progressively responsible technology leadership roles with a minimum of 5 years in a leadership capacity.
• Licensure: One or more of the following professional certifications required:
• Certified Information System Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Global Information Assurance Certification (SANS/GIAC)
• Systems Security Certified Practitioner (SSCP)
• Certified Information Systems Auditor (CISA)