Chief Information Security Officer

Overview

Catholic Health is one of Long Island's finest health and human services agencies. Our health system has over 16,000 employees, six acute care hospitals, three nursing homes, a home health service, hospice and a network of physician practices across the island.

At Catholic Health, our primary focus is the way we treat and serve our communities. We work collaboratively to provide compassionate care and utilize evidence based practice to improve outcomes - to every patient, every time.

We are committed to caring for Long Island. Be a part of our team of healthcare heroes and discover why Catholic Health was named Long Island's Top Workplace!

Job Details

The Chief Information Security Officer (CISO) is the guardian of Catholic Health's digital realm. Their job is to ensure that Catholic Health's information and data are secure from cyber threats. The Chief Information Security Officer (CISO) is the defender of digital assets, standing at the forefront of the ongoing battle against cyber threats. They need a keen understanding of technology, a strategic mindset, and excellent communication skills to convey the importance of security to everyone in the organization.

Duties and Responsibilities:

• Strategic Planning: Develop and implement a comprehensive information security strategy aligned with the business goals. This involves understanding Catholic Health's risk tolerance and creating a roadmap to mitigate potential threats.

• Risk Management: Identify, assess, and prioritize potential security risks to Catholic Health. This includes evaluating new technologies, assessing vulnerabilities, and avoiding emerging threats.

• Policy Development: Create and enforce information security policies and procedures to guide Catholic Health. This could cover everything from user access controls to data encryption standards.

• Security Architecture: Design and implement security systems to protect Catholic Heath's computer systems and networks. This includes firewalls, encryption, and other technology-based safeguards.

• Incident Response: In the unfortunate event of a security breach, lead the incident response efforts. This involves investigating the breach, coordinating with law enforcement if necessary, and taking steps to prevent future incidents.

• Compliance: Ensure that Catholic Health complies with relevant laws, regulations, and industry standards related to information security. This might involve regular audits to assess and verify compliance.

• Security Awareness: Educating employees about security best practices is a crucial part of the role. Conduct training sessions and awareness campaigns to reduce the risk of human error.

• Vendor Management: Catholic Health may rely on third-party vendors for various services; ensure that third-party vendors meet the organization's security standards and don't pose a risk.

• Collaboration: Work closely with Catholic Health executives, Digital Technology Solutions teams, and departments to integrate security measures into all aspects of the business. This includes collaborating on technology projects and other initiatives.

Position Requirements and Qualifications

Education:

• A Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field, Master's or Ph D.is a plus

Experience:

• Extensive experience in information security is crucial. Applicant should have a background in roles such as information security analyst, security consultant, or IT manager.
• 10+ years of progressive experience in information security

Certifications:

• Industry-recognized certifications, including Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and Certified Ethical Hacker (CEH).

Leadership and Management Skills:

• Strong leadership and management abilities to oversee a team and implement security strategies across Catholic Health

• Experience in managing security teams and projects is often a requirement.

Risk Management Expertise:

• A deep understanding of risk management principles is essential. Candidate must assess and prioritize risks to develop effective security strategies.

Strategic Thinking:

• Responsible for aligning security measures with overall business goals. The ability to think strategically and develop long-term security plans is crucial.

Communication Skills:

• Effective communication is key. CISO will need to convey complex security concepts to non-technical stakeholders and build a culture of security awareness within Catholic Health

Regulatory Compliance Knowledge:

• Familiarity with relevant laws, regulations, and industry standards related to information security is important. CISO must ensure Catholic Health remains compliant.

Technical Proficiency:

• A solid understanding of cybersecurity technologies and trends is crucial for effective decision-making.

Business Acumen:

• CISO must understand the business context in which they operate. This includes knowledge of the healthcare industry, Catholic Health's goals, and how security measures can support and enhance overall business objectives.

Continuous Learning:

• CISO must stay updated on the latest threats, technologies, and best practices.

Salary Range

USD $300,000.00 - USD $350,000.00 /Yr.

This range serves as a good faith estimate and actual pay will encompass a number of factors, including a candidate's qualifications, skills, competencies and experience. The salary range or rate listed does not include any bonuses/incentive, or other forms of compensation that may be applicable to this job and it does not include the value of benefits.

At Catholic Health, we believe in a people-first approach. In addition to the estimated base pay provided, Catholic Health offers generous benefits packages, generous tuition assistance, a defined benefit pension plan, and a culture that supports professional and educational growth.