Director of IT Security

Reading Health System

(Reading, Pennsylvania)
Full Time
Job Posting Details
About Reading Health System
At Reading Health System, advancing your health and wellness is our mission. When you enter our facilities, you can expect the highest quality healthcare in the region, as well as access to cutting-edge technology and experienced, caring medical professionals.
Reporting to the CIO, the Director IT Security is responsible for Information Technology end-user data security and confidentiality related services within Reading Health System. In this position, you will be vital in strategic and tactical data security planning, business process implementation, technical solutions implementation, user support, policy & procedure development, operations, staff management, and budget planning and tracking.
* Ongoing management of information security and HIPAA security policies, procedures, and technical systems in order to maintain confidentiality, integrity, and availability of all organizational healthcare systems data. * Directing the identification of effective security monitoring and auditing tools to aid in data security process standardization. * Researching and maintaining technical proficiency in security tools, techniques, countermeasures, and basic trends in IT security. * Improving data access security delivery through resource management, security process improvements and reporting enhancements. * Working closely with the team managers to ensure their alignment with Reading Health System’s Security and HIPAA policies and procedures. * Protecting against any conflicts of interest that may arise from performing assigned duties. * Leading an established team as a strategic visionary along with the willingness and ability to be a hands-on team player if necessary.
Ideal Candidate
* Education: Bachelor's degree required in Information Security, Computer Science, Engineering or related field and experience. * Certifications: One or more of the following certifications: CISSP, CISM, CIPP, HCISSP, CRISC, CGEIT, PCIP required. * 10+ years of professional experience in information security with at least 3 of those years in management. Experience in an IT security leadership role in a healthcare environment is strongly preferred. * Working knowledge of regulations including HIPAA/HITECH and PCI. * Demonstrated effectiveness operating in complex organizational environments with integrity. * Demonstrated depth and breadth of knowledge of information data security and privacy laws and issues. Technical knowledge of general security threats and vulnerabilities impacting healthcare organizations strongly preferred. * Ability to evaluate and score the potential impact of network and security vulnerabilities, development of appropriate controls, and management of security systems such as anti-virus, firewalls, patch management platforms, intrusion detection systems and data encryption tools. * Experience with vulnerability scanning, intrusion detection, anomaly detection, and associated technologies. * Strong knowledge of systems and network security, tools, techniques, and standards used to conduct penetration testing of networks and applications. * Proven ability to influence others and lead change in a collegial manner.
Compensation and Working Conditions
Reports to Reporting to the CIO


Answered by on
This question has not been answered
Answered by on

There are no answered questions, sign up or login to ask a question

Want to see jobs that are matched to you?

DreamHire recommends you jobs that fit your
skills, experiences, career goals, and more.