Job Description

Responsible for providing direction and planning to implement and maintain information security controls, coordinate the evaluation, deployment and management of current and future security technologies, and communicating operating effectiveness to leadership.

Essential Functions:

• Develop and maintain assigned information security program that implements processes and controls to protect business interests
• Provide direction and planning to implement and maintain information security controls, coordinate the evaluation, deployment and management of current and future security technologies, communicate operating effectiveness to leadership
• Remain current in federal/state laws and regulations, industry standards and best practices
• Responsible for defining and communicating corporate plans, procedures policies and standards for the organization regarding systems, equipment, software and other technologies
• Ensure security requirements are included in the evaluation, selection, implementation and configuration of information technology (hardware, software, applications)
• Responsible for administering security including software and tools
• Recommend changes or modify solutions as necessary to implement enhancements, resolve issues, or improve operating efficiency/security posture
• Responsible for the security awareness and training program to meet compliance requirements and reduce risk in assigned areas (i.e. Cyber Security, Identity and Access Management, etc)
• Coordinate and manage vendor relationships and accountability on project involvement and deliverables
• Manage IT security threats and vulnerabilities to acceptable risk levels
• Assist in developing remediation plans for newly discovered threats and vulnerabilities
• Manage communication and reporting of new threats and vulnerability and oversee remediation
• Ensure security requirements are included in the evaluation, selection, implementation and configuration of information technology (hardware, software, applications)
• Publish metrics regarding the operating effectiveness of information security controls
• Responsible for leading, developing, coaching direct reports; in collaboration with HR, conduct performance reviews, and disciplinary action
• Hire and train new staff, conduct performance reviews, disciplinary actions, and provide leadership and coaching for direct reports including technical and personal development
• Foster relationship management through communication to key stakeholders
• Maintain positive relationships with internal and external customers
• Perform any other job duties as requested

Education and Experience:

• Bachelor of Science/Arts degree or equivalent work experience is required. Master’s or JD is preferred.
• Ten (10) years of IT related experience preferably in a medium to large technical operating environment, to include five (5) years of experience in assigned specialty (i.e. Cyber Security, Identity and Access Management, etc)
• Five (5) years leadership experience in information security or IT risk management is required

Competencies, Knowledge and Skills:

• Effective oral and written communication skills
• Effective problem solving skills
• Substantial exposure to data processing, hardware platforms, enterprise software applications, and outsourced systems
• Experience with systems design and development from business requirements analysis through to day-to-day management
• Experience in planning, organizing, and developing IT security and facility security system technologies
• Experience in planning and executing security policies and standards development
• Excellent knowledge of technology environments, including information security, building security, and defense solutions
• In-depth knowledge of applicable laws and regulations as they relate to security
• Ability to set and manage priorities judiciously
• Ability to present ideas in business-friendly and user-friendly language
• Exceptionally self-motivated and directed
• Superior analytical, evaluative, and problem-solving abilities
• Exceptional service orientation
• Ability to motivate in a team-oriented, collaborative environment

Licensure and Certification:

• Certifications in Information Security Management, such as CISSP, CRISC, CISA, CISM preferred

Working Conditions:

• General office environment; may be required to sit or stand for extended periods of time

Compensation Range:

$135,600.00 - $237,400.00

CareSource takes into consideration a combination of a candidate’s education, training, and experience as well as the position’s scope and complexity, the discretion and latitude required for the role, and other external and internal data when establishing a salary level. In addition to base compensation, you may qualify for a bonus tied to company and individual performance. We are highly invested in every employee’s total well-being and offer a substantial and comprehensive total rewards package.

Compensation Type (hourly/salary):

Salary

Organization Level Competencies

• Fostering a Collaborative Workplace Culture

• Cultivate Partnerships

• Develop Self and Others

• Drive Execution

• Influence Others

• Pursue Personal Excellence

• Understand the Business

This job description is not all inclusive. CareSource reserves the right to amend this job description at any time. CareSource is an Equal Opportunity Employer. We are dedicated to fostering an environment of belonging that welcomes and supports individuals of all backgrounds.

#LI-RW1