Manager, Information Security

BHS

1d•Remote

About The Position

Baptist Health is looking for a Manager, Information Security to join our team! This is a remote work position that requires residency in KY or IN The Information Security Manager is responsible for activities and programs related to Information Security including to any of the following, but not limited to Information Security operations, engineering and architecture, governance, auditing, risk management, compliance and enterprise security. This role performs two core functions for the enterprise. The first is overseeing the operations of the enterprise’s security solutions through management of the organization’s Information Security workforce. The second is establishing an enterprise security stance through policy, architecture, risk management, compliance and training processes. Secondary tasks will include the selection of appropriate security solutions, and oversight of any vulnerability audits and assessments. The Information Security Manager is expected to interface with peers in IT departments as well as with the leaders of the business units to both share the information security vision with those individuals and to solicit their involvement in achieving higher levels of enterprise security through information sharing and cooperation. The Information Security Manager assigns personnel to various security projects and directs their activities; reviews and evaluates their work and prepares performance evaluations. They also confer with and advise staff on administrative policies and procedures, technical problems, priorities, and methods. Incumbent is responsible for all aspects of personnel management including interviewing, assigning work, directing employee’s daily activities, review and evaluates their work, prepares and presents performance evaluation to employees. They also make decisions on personnel actions (hiring, terminations, promotions, etc.), prepare annual operating and capital budgets and manage expenditures/variances according to budget plan and are responsible for meeting budget goals and objectives assigned to the department.

Requirements

Bachelor’s degree OR 5 years of full-time experience in information security management role in lieu of degree.
Firewall management, IT, IoT, IoMT vulnerability and asset management preferred.
Enterprise server, endpoint, identity management, mail or other system administration experience preferred.

Nice To Haves

Experiencing managing deployments and/or teams using security tools such as CrowdStrike Falcon, Splunk, Nexpose, CyberArk, Ordr, Fidelis, Cisco Umbrella, Duo, and Cloudflare preferred.
Security certifications preferred but not required such as: CISSP, CISM, CRISC, CISA, GIAC certifications.

Responsibilities

Overseeing the operations of the enterprise’s security solutions through management of the organization’s Information Security workforce.
Establishing an enterprise security stance through policy, architecture, risk management, compliance and training processes.
Selection of appropriate security solutions
Oversight of any vulnerability audits and assessments.
Assigns personnel to various security projects and directs their activities
Reviews and evaluates their work and prepares performance evaluations.
Confers with and advise staff on administrative policies and procedures, technical problems, priorities, and methods.
Personnel management including interviewing, assigning work, directing employee’s daily activities, review and evaluates their work, prepares and presents performance evaluation to employees.
Make decisions on personnel actions (hiring, terminations, promotions, etc.)
Prepare annual operating and capital budgets and manage expenditures/variances according to budget plan
Responsible for meeting budget goals and objectives assigned to the department.