Director, Information Security

Extensive knowledge of HIPAA and HITECH.

Knowledge of and experience with Information Security frameworks such as HiTRUST, NIST, or ISO 27001.

Bachelor’s degree in information security, information assurance, information technology, computer science, or a related discipline.

Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or related certification.

Five (5) years in an information security operations or management role.

Passion for the mission of Health Leads and strong commitment to Health Leads’ core values: belief in collective strength and the power of shared work, constant and courageous learning, celebrating our victories and each other, and stepping up leaders in a common vision.

Experience with information security for cloud environments and/or software-as-a-service (SaaS) platforms.

Knowledge of security-related technologies and processes, including but not limited to: data loss prevention (DLP), identity and access management (IAM), endpoint security, vulnerability and configuration management, security information and event management (SIEM), incident response and digital forensics, disaster recovery/business continuity planning, network security (LAN/WAN).

Ability to communicate complex ideas and information both verbally and writing, in a clear, concise, and effective manner to technical and non-technical audiences including customers and colleagues.

Superior capabilities for partnering; ability to be effective as both a team member and as a leader of teams in defining objectives, staying on task and reaching consensus; soliciting participation, challenging ideas and summarizing accomplishments and planned actions.

Show integrity and ethical behavior; respect confidentiality, business ethics and organizational standards.

Ability to formulate the cost benefit of security initiatives in the context of overall business risk mitigation and the organization’s operational objectives. Ability to compare, contrast and prioritize among alternative approaches to meet those objectives.