Director, Security Governance

Charlestown, MA • Beth Israel Lahey Health • Full-time • Day
Share job:
Apply now

When you join the growing BILH team, you're not just taking a job, you’re making a difference in people’s lives.

The Director of Security Governance, Risk & Compliance, leads and manages the Governance Risk and Compliance (GRC) function and is responsible for partnering with the It Security Leader in managing an organization-wide, information risk management program, security compliance program and security awareness campaign. The Director partners with administrative, and
executive leadership to establish and manage a shared vision for information security and develop a compliance program to assess cybersecurity and information risks. Responsibilities include strategy, architecture, solutions design, program coordination and execution, awareness, outreach, policy and standard development as well as reporting on information security program effectiveness.

Job Description:

Primary Responsibilities:
Leads IT Security Governance, Risk and Compliance program. (essential)
Collaborates with IT Security Leader on building a culture focused on proactive risk management and security best practices. (essential)
Leads IT Security Steering Committee, infusing information security governance procedures that foster resiliency, raise awareness, govern policy and review security related activities. (essential)
Provides clear risk mitigating directives for projects with IT components. (essential)
Responsible for the development, implementation, and execution of BILH-wide information security training and awareness programs. Provides professional and technical training and direction for internal team members as well as
external staff. (essential)
Facilitates and participates in annual internal/external audits using industry standard security methods to help strengthen internal security controls, procedures and policies. (essential)
Investigates security incidents, develop remediation plans, and work with appropriate stakeholders to implement resolutions. (essential)
Serves as a lead advisor on security matters to ensure appropriate levels of security are integrated in process designs and architecture; demonstrates ability to be a respected information security advisor to senior management, as well as to IT Shared Service team. (essential)
Works with IT Security team in the development and acceptance of IT policies and procedures; ensures program standards follow applicable State and Federal regulatory requirements. (essential)
Stays current with all relevant IT security and compliance issues, technologies, and requirements, as well as with emerging best practices in IT program management, planning and governance; Maintains professional and technical knowledge by attending industry workshops, conferences, and participating in personal and professional networks. (essential)
Has the authority to direct and support employees daily work activities. Has the direct responsibility to undertake the following employment actions: hiring, termination, corrective action and performance reviews.

Direct Reports: 2-3

Indirect Reports: None

Required Qualifications:
Bachelor's degree required. Master's degree in Law degree preferred.
More than 10 years related work experience required and 3-5 years supervisory/management experience required
At least 10 years of varied information technology management experience is required, five years of which must be directly related to IT program management and planning as well as computer, information, and network security
assessment, administration, and management.
Experience in the health care industry is essential along with knowledge about program management, information security technology, medical records, patient privacy and confidentiality.
Other key requirements include project planning and project management experience; Advanced technical computer skills as required for technical support specific to functional area and related systems.

 

 

Pay Range:

$176,800.00 USD – $205,920.00 USD

The pay range listed for this position is the annual base salary range the organization reasonably and in good faith expects to pay for this position at this time. Actual compensation is determined based on several factors, that may include seniority, education, training, relevant experience, relevant certifications, geography of work location, job responsibilities, or other applicable factors permissible by law. 

As a health care organization, we have a responsibility to do everything in our power to care for and protect our patients, our colleagues and our communities. Beth Israel Lahey Health requires that all staff be vaccinated against influenza (flu) as a condition of employment.

More than 35,000 people working together. Nurses, doctors, technicians, therapists, researchers, teachers and more, making a difference in patients' lives. Your skill and compassion can make us even stronger.

Equal Opportunity Employer/Veterans/Disabled

Similar jobs

Go to Top