The Director of Infrastructure and Security will provide leadership to their team in supporting the Chief Information Officer (CIO) and Chief Information Security Officer’s (CISO) vision and mission of developing, approving, maintaining, and implementing the Organizational data, network and infrastructure security plan, using NIST 800-53 as guidance for all policies, procedures and activities.
This position will allow the successful candidate to work a schedule which will include both onsite as well as remote work certain days of the week as approved by their supervisor.
Responsibilities & Duties
Plan, oversee, implement Department and Organizational goals for Infrastructure and Security
Support all ongoing activities related to the availability, integrity, and confidentiality of electronic protected health information (ePHI)
Performs information security risk analysis and periodic information system activity reviews for information security processes
Provide support and direction for developing and publishing healthcare information security and data privacy policies, standards in technology to comply with HIPAA Security Rule
Provide Information Security and Risk leadership and guidance to internal staff members, and outside consultants
Supporting data and system security, network and server systems needs and providing input into long-range planning for the enhancement, upgrade or change in information systems
Provide consultation, support and training to employees and providers regarding Alliance’s technology-based systems
Support the planning and implementation for automation in the organization in conjunction with standards established by management, contract requirements, URAC standards and compliance with HIPAA and related security regulations
Provide Budget support and monitoring for IT Infrastructure needs
Provide support and leadership to department staff to meet the department goals and objectives.
Leading change management efforts for organizational and technical initiatives.
Work with Human Resources and subject matter expert to maintain and retain a highly qualified and well-trained workforce
Ensure staff are well trained in and comply with all organization and department policies, procedures, and business processes
Organize workflows and ensure staff understand their roles and responsibilities
Ensure the department has the needed tools and resources to achieve organizational goals and to support employees and ensure compliance with licensure, regulatory, and accreditation requirements
Actively establish and promote a positive, diverse, and inclusive working environment that builds trust
Ensure all staff are treated with respect and dignity
Ensure standards are transparent and applied consistently, impartially, and ethically over time and across all staff members
Work to resolve conflicts and disputes, ensuring that all participants are given a voice
Set goals for performance and deadlines in line with organization goals and vision
Effectively communicate feedback and provide ongoing coaching and mentoring to staff and support a learning environment to advance team skills and professional development
Cultivate and encourage efforts to expand cross-team collaboration and partnership
Minimum Requirements
Education & Experience
Associates degree in Computer Science, Network Security, Business Administration or another related field and seven (7) years of experience with increasing responsibilities for management of IT infrastructure, including direct management of an IT team.
Or
Bachelor’s degree in Computer Science, Network Security, Business Administration or another related field and five (5) years of experience with increasing responsibilities for management of IT infrastructure, including direct management of an IT team.
Significant experience in a health care or medical setting is desirable. Experience should also include exposure to both shared and outsourced solutions, as well as support of in-house information and communication systems in a multi-site client-server environment.
Experience with the following is preferred:
Networking, cloud computing, server management.
Operating systems such as Windows, UNIX, and Linux.
Various office productivity and reporting software programs.
Business processes and their interrelationship gained through five (5) or more years of related experience
Ability to analyze and resolve both logical and interpersonal issues
Knowledge, Skills, & Abilities
Knowledge of business principles and techniques of administration, organization, and management to include an in-depth understanding of the key business issues that exist in the healthcare or governmental industry. These include, but are not limited to, knowledge of strategic and operational planning, personnel administration, federal, state and local laws, and trends in the health care industry. Ability to develop strategy to create and maintain the network and server systems that meet the organization’s business needs
Knowledge and experience in technology and practices related to the availability, integrity and confidentiality of electronic protected health information (ePHI) and personally identifiable information (PII)
Knowledge and experience in information security risk analysis and information system activity reviews for information security processes
Knowledge of HIPAA Security, NIST FIPS and security best practices
Knowledge of service center business model
Knowledge of Network computing needs of mid-sized organizations.
Knowledge of data, system and network security technology and risk management techniques.
Knowledge of healthcare information security, data privacy policies, standards in technology to comply with NIST 800-53 and HIPAA Security Rules, guidelines, requirements and implementation approaches
Knowledge of network computing needs within a Healthcare organization
Knowledge of software licensing strategies
Knowledge of Business process and SOP continuous improvement
Knowledge of desktop technologies and organization wide deployment and maintenance approaches.
Knowledge of data security and encryption technologies pertaining to desktop and mobile devices.
Experience in business process analysis and redesign.
Effective in verbal and written communications skills, presentation skills, all geared toward coordination and education.
Demonstrated Management, mentoring and leadership skills
Ability to negotiate with vendors, contractors, and others
