The Manager, Cybersecurity is primarily responsible for ensuring confidentiality, integrity, and availability of information in the North East Texas region. The incumbent will accomplish this objective, working with System-level Security Associates, by developing technical and physical security policies, measuring and reporting compliance of security policies, design and oversight of technical and physical security controls, vulnerability management, providing security reviews of new technologies, security risk assessments, proactive security incident prevention, security incident response and reviews, administration of key security tools and platforms, and managing the problem and availability service management processes.
Security Ownership -- Primarily responsible for ensuring confidentiality, integrity, and availability of information in the North East Texas region. The incumbent will accomplish this objective, working with System-level Security Associates, by developing technical and physical security policies, measuring and reporting compliance of security policies, design and oversight of technical and physical security controls, vulnerability management, providing security reviews of new technologies, security risk assessments, proactive security incident prevention, security incident response and reviews, administration of key security tools and platforms, and managing the problem and availability service management processes..
Architecture and Engineering -- Coordinate with the central security team to implement architecture standards, guidelines, and design for said areas of responsibility.
Security Event Management-- Direct the planning, design, implementation, integration and of overall Security Event Information Management systems for NETX
Monitoring and Reporting-- Establish a monitoring and reporting process to measure the performance and effectiveness of the information security group in NETX. Prepares risk information for the CISO.
Service Continuity-- Participate in architecture and operational process design to ensure Business Continuity Strategy is achieved.
Planning & Directing -- Assist in the planning, prioritization, management and scheduling of all IT projects in NETX as related to Security and Availability.
Budget & Financial Administration-- Assist in developing systems operating expenses and capital budgets for the region.
Staff Management - Recruit, train, motivate, evaluate, and retain a staff of highly skilled information security professionals. Terminate staff as required. Provide ongoing leadership and motivation to ensure that the staff is focused committed and capable of producing expected results.
Communications-- Develop effective written and oral mechanisms to document and report on information systems strategies, plans, priorities, budgets, schedules, and the current status of major projects and assignments.
Contract Negotiations -- Assist the CISO with approving contracts for the acquisition of information systems, including software, hardware and support services, following established processes. Manage and maintain contract relationships with third-party resources and providers
Teamwork -- Create and maintain a teamwork environment conducive to productive output, successful staff advancement and a rewarding work experience. Establish and enforce department policies, procedures and standards.
Customer Service-- Develop and administer effective Customer Service Plans which includes provisions to accept, record, prioritize, assign, track, resolve and report on customer service problems and issues related to cybersecurity in NETX. Assist with establishing departmental programs, which promote and emphasize the commitment to exceptional customer service standards.
Other -- Perform other duties and special projects as assigned.
Bachelor degree in Computer Science or related field required
Master's degree not required but preferred
Healthcare experience not required but preferred
Three (3) years of experience managing teams
Ten years (10) or equivalent of working knowledge of Information Security principles and practices
Seasoned and demonstrable working knowledge of Information Security principles and disciplines.
Strong working knowledge of networking technologies with an emphasis on firewalls, intrusion detection systems, host-based security principles and security tools such as network scanners.
Demonstrated experience in security network management and cryptography.
Strong working knowledge and practice in auditing and risk management.
Three years or more of managing assigned vendor and partner relationships
Ability to work closely with the business leadership teams to influence technical and architectural aspects of enterprise-wide business decisions.
Providing a technical leadership role in the IT organization, participating in and driving the security aspects of strategic and tactical decisions regarding IT technology in the region
Licenses, Registrations, or Certifications
Security Certification required (CISM -- Certified Information Security Manager, preferred)
CHRISTUS HEALTH is an international Catholic, faith-based, not-for-profit health system comprised of almost more than 600 services and facilities, including more than 60 hospitals and long-term care facilities, 350 clinics and outpatient centers, and dozens of other health ministries and ventures. CHRISTUS operates in 6 U.S. states, Colombia, Chile and 6 states in Mexico. To support our health care ministry, CHRISTUS Health employs approximately 45,000 Associates and has more than 15,000 physicians on medical staffs who provide care and support for patients. CHRISTUS Health is listed among the top ten largest Catholic health systems in the United States.