Chief Security Officer - Health Care

HK TechHealth Care

UT, USFull-TimeExecutive

Salary not disclosed

Apply NowOpens the employer's application page

Job Details

Required Skills: CybersecurityHIPAARisk Management

Requirements

Ability to travel regionally as needed
Bachelor’s degree in information security, health information technology, healthcare administration, computer science, or a related field
Demonstrated experience supporting HIPAA and HITEQ security requirements
Experience conducting or overseeing Security Risk Analyses (SRAs)
Strong working knowledge of healthcare cybersecurity principles, security controls, and risk management practices
Experience developing, maintaining, and enforcing security policies, procedures, and compliance documentation
Ability to work effectively with executive leadership, IT teams, compliance staff, and external partners
Excellent analytical, organizational, problem-solving, and multitasking skills
Strong written and verbal communication skills
High professional standards, strong work ethic
Ability to collaborate with multidisciplinary teams
Professional certifications such as CISSP, CISM, or HCISPP (preferred)
Familiarity with Health Center Program requirements, federally funded healthcare environments, or nonprofit healthcare organizations (preferred)

Responsibilities

Provide centralized leadership and oversight of privacy, security, and cybersecurity programs for (13) participating Health Centers through a shared-services model.
Design, implement, maintain, and periodically update participating Health Centers’ comprehensive administrative, technical, and physical safeguards to support compliance with HIPAA, HITEQ, and applicable Health Center Program Requirements.
Lead and oversee the completion of Security Risk Analyses (SRAs) at each participating Health Center, including risk identification, documentation, prioritization of remediation activities, and ongoing monitoring of corrective actions.
Provide strategic oversight of data governance as it relates to privacy and security, establishing standards and guidance for data access, use, protection, and retention.
Develop, standardize, and maintain security-related policies, procedures, and documentation across participating Health Centers.
Provide strategic leadership and hands-on support for cybersecurity risk management, security controls, incident response planning, and breach preparedness.
Coordinate and support investigation, management, documentation, mitigation, and reporting of security incidents and information breaches.
Regularly brief Health Center executive leadership and governing boards, IT teams, compliance staff, and operational leaders on security posture, strategic initiatives, privacy, and risk-related trends.
Support and promote workforce security awareness and training initiatives.
Mentor and promote local security champions within the participating Health Centers.
Assist Health Centers with third-party and vendor security considerations.
Support audit readiness, assessments, and compliance reporting related to HIPAA, HITEQ, HRSA, and industry frameworks such as NIST CSF, CIS Controls, and HITRUST.
Establish and monitor key performance indicators (KPIs) and key risk indicators (KRIs) to measure program effectiveness.
Monitor regulatory changes, emerging cybersecurity threats, and evolving best practices, and recommend enhancements to security programs and controls.

View Full Description & ApplyYou'll be redirected to the employer's site