Manager IT Security - Information Technology

Mid Michigan Health Midland , MI 48640

Posted 3 months ago

Position Information

FTE: 1.0 Full Time/ 80 hours per pay

Exempt: Not Applicable

Day Shift: Hours per schedule

Weekend & Holiday Rotation: Per schedule

Position Summary

Summary:

The Manager of IT Security is a hands-on technical position that also oversees the operations of a team of staff supporting a risk-based cyber security function. This will include managing and retaining skilled IT security personnel, continuous improvement for strengthening security posture, and contributing toward setting and overseeing security related policies.

This role requires coordination and collaboration across the IT Department, Risk, Facility Security, Biomed, Audit, and Regulatory functions. Contributes to the design and implementation of policies and procedures to ensure that healthcare industry information security standards are met.

Directly manages all activities involving the support of information systems security. Helps facilitate the selection, evaluation, and implementation of information system security infrastructure and assists in strategic and operational planning.

Assists with or directly manages key strategic projects as needed. This position is also a top-level technical resource for the organization's IT security application and technology stack and related services, and is responsible for the enterprise-wide monitoring and management of security system architecture.

Responsibilities include: analyzing and recommending capital and operational budget, long range planning and projects to meet IT security needs, hiring, mentoring and managing team members building and supporting IT security technologies, project management of team's technical tasks, assisting with long and short term strategic and operational planning for security, reviewing staff job performance and assignment of responsibilities, serving as liaison to customers and providing technical problem solving skills. Ensures appropriate resources are utilized in a prioritized and effective manner across project and operational support activities. Promotes teamwork and communication between staff, management, clinicians and stakeholders while maintaining high standards and customer satisfaction.

Work closely with staff, vendors and others to provide system security that meets the needs of the organization; assist in establishing policies, procedures and standards regarding IT security; ensure that critical business functions are protected from disruption due to system failure or unavailability; ensure that enterprise applications have appropriate protections in place; act as a top level technical consultant to others in various areas of expertise.

Responsibilities

ESSENTIAL DUTIES AND RESPONSIBILITIES

(45%)* Manages IT security support staff, including development of short and long term goals. Reviews and updates goals and objectives periodically as needed. Performs all job review functions for direct reports.

(30%)* Works collaboratively with system, network, database administrators and application support personnel to support business applications and strategic security initiatives. Recommends and prepares configurations for additions and modifications to the IT security technology stack to meet the needs of applications and users consistent with established organizational standards and practices. Prepares and reports on IT security metrics and related projects status.

(25%)* Establishes, refines, and implements the standards, policies and procedures for installing, securing, designing, tuning, monitoring, and managing IT security platforms.

OTHER DUTIES AND RESPONSIBILITIES

Lead the development, implementation, communication and compliance monitoring of policies and procedures relating to IT Security in conformance with MidMichigan standards.

Partner with IT Analysts to develop and enforce application accessibility requirements, ensure application vulnerabilities are identified, and data remains secure.

Partner with network team to manage firewalls, network access and ensure a secure environment for network infrastructure.

Collaborate with Server team to ensure that all application delivery mechanisms, active directory, domain controllers, data centers and any hosting environments are secure, and access to systems and appliances is well regulated and consistently managed.

Identify emerging risks involving data access control technologies, information systems security issues, safeguards and techniques.

Perform security reviews and identify security gaps in security architecture. Provide recommendations for inclusion in the risk mitigation strategy.

Leads troubleshooting and problem solving efforts for a broad range of IT technical issues and involving a number of IT related disciplines. Consults with users, IT staff and others on system issues and capabilities and other areas within expertise.

Adheres to Change Management standards.

Participates in call rotation.

Other duties as assigned.

Qualifications

Education:

Essential:

  • Bachelor's degree in Information Technology, Business, Health Care or STEM related field required. Master's degree preferred. A combination of education and experience may be considered.

Other information:

EDUCATION, EXPERIENCE, TRAINING AND SKILLS

A minimum of five (5) years of information security experience.

A minimum of three (3) years experience: managing information security in a regulated field (Healthcare, Energy, Government, etc.), supervising and providing technical guidance and coaching of a team of associates, guiding, mentoring or leading staff, writing and enforcing IT security policies and procedures, security incident management and/or breach mitigation, risk management, disaster recovery or business continuity planning..

Expert level/deep knowledge of and extensive experience with the following are required: information assurance (IA) principles and organizational requirements that are relevant to confidentiality, integrity, availability, authentication, and non-repudiation, IT security principles and methods (e.g. firewalls, Demilitarized Zones, encryption), access control, data loss prevention software.

Knowledge of: how data flows across the network (TCP/IP, OSI, etc.), secure configuration management techniques, HIPAA/HITECH, Payment Card Industry (PCI) data security standard, IT supply chain and third-party vendor security/risk management policies, requirements and procedures, operating systems such as Microsoft Windows, Linux, UNIX, MacOS X.

Must possess a high degree of initiative, mature judgement, and discretion.

Experience with Penetration testing preferred.

Prior audit experience preferred.

CCNA or Net+ certification preferred.

Physical/Mental Requirements and Working Conditions

PHYSICAL/MENTAL REQUIREMENTS AND TYPICAL WORKING CONDITIONS:

Exposure to stressful situations, including those involving public contact, as well as, trauma, grief and death.

Able to wear personal protective equipment that includes latex materials or appropriate substitute if required for your position.

Is able to move freely about facility with or without an assisted device and must be able to perform the functions of the job as outlined in the job description.

Overall vision and hearing is necessary with or without assisted device(s).

Frequently required to sit/stand/walk for long periods of time. May require frequent postural changes such as stooping, kneeling or crouching.

Some exposure to blood borne pathogens and other potentially infectious material. Must follow MidMichigan Health bloodborne pathogen and TB testing as required.

Ability to handle multiple tasks, get along with others, work independently, regular and predictable attendance and ability to stay awake.

Overall dexterity is required including handling, reaching, grasping, fingering and feeling. May require repetition of these movements on a regular to frequent basis.

Physical Demand Level: Light. Must be able to occasionally (0-33% of the workday) lift or carry 11-20 lbs., frequently (34-66% of the workday) 10 lbs. and or Walk/Stand/Push/Pull of Arm/Leg controls.

Leadership, project management, use of methodology, time management and organizational skills.

Demonstrated ability to work effectively and carefully under pressure, to meet project deadlines, to learn independently, to communicate effectively with a variety of people and to write well is required. Excellent troubleshooting and problem solving skills are required.

Interpersonal and presentation skills needed to communicate successfully both orally and in writing with individuals / groups and interact with people at all levels to communicate ideas and concepts in a clear and understandable manner.



icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Desktop Support Manager Information Technology IT

Mid Michigan Health

Posted 2 months ago

VIEW JOBS 6/26/2019 12:00:00 AM 2019-09-24T00:00 Position Information FTE 1.0 Full Time/ 80 hours per pay Exempt: Yes Day Shift: Hours per schedule Weekend & Holiday Rotation: Per schedule NOTE: This is a health system wide position and will support MidMIchigan Health and all of it's subsidiaries. Position Summary Summary: Reporting to the Director of Infrastructure and End User Devices, the Desktop Support Manager is a technical hands-on leader, delivering services by driving operational excellence. This position is responsible for delivering end user computing services by managing, evaluating, and developing support staff. This position interfaces with managers throughout the health system, working to understand needs that can be addressed through process and technology solutions, and participates in resolving escalations and coordinating the communication of service status related to areas of responsibility. Required to identify, rectify and communicate effectively any issues the customer may have regardless of technical nature as it relates to customer satisfaction. This manager establishes policies, processes and procedures for providing end user device consulting support during all phases of the acquisition and maintenance of information systems hardware and software. This position is responsible for process improvement both internally in the IT department and for external departments. i.e. Human Resource onboarding, termination, etc. Maintains an in depth knowledge and understanding of all services provided by the team, provides project guidance and direction and regularly coordinates team activities with department directors and executive management. Confers with and advises staff on administrative policies and procedures, technical problems, priorities and project management processes. Promotes teamwork and communication between staff, management, clinicians, and stakeholders while maintaining high standards and customer satisfaction. Functions with minimal supervision, utilizes independent and collaborative judgment in decision making, and demonstrates leadership and problem solving skills. Accountability will be monitored through direct observations, achievement of department goals, meeting of customer satisfaction goals as well as quality and financial outcomes. Responsibilities ESSENTIAL: Responsibilities: (10%)* Process / Best practices / Continuous Improvement - Provides focus and direction to process improvements to improve user experience with technology. Provide direction that best practices and processes are followed (e.g., testing, change control, and implementation planning.) Leads the establishment of procedures within areas of responsibility. (40%)* Content Knowledge & Leadership – Responsible for overall end user device implementation and integration working closely with infrastructure, integration leadership, IT management, vendors, and stakeholders. Stays current on advances with technology that can be leveraged to meet business needs. Serve as subject matter expert across solutions and provide troubleshooting and process expertise leveraging and developing team expertise. Ensure technical decisions include considerations across solutions and fall within scope. (15%)* Collaboration with departments, practices and IT partners – Builds partnerships with cross discipline teams (clinical departments, practices, business departments, call center, education, ancillary, and technology teams to coordinate IT responses to user requests, problem solving, and collaborating solutions. Coordinates resources and prioritizes with clinical, business and IT support personnel. (15%)* Projects / Request Management - Develops and leverages staff for creation of project work plans and tasks for IT requests, Manage the IT requests through monitoring resource assignment, prioritizing requests with stakeholders, to optimize resource allocation and execution of project, IT request, and support tasks. (20%)* People Management / Development – Mentors and manages team members designing and building technical solutions. Assess skills of MidMichigan Health desktop team, provide input into the professional development plans to help them acquire the skills needed to support the system effectively and coach them through the learning process. Ensure self and team maintains professional development and growth to keep abreast of changes in technology and healthcare in general. OTHER DUTIES AND RESPONSIBILITIES Facilitates a uniform demonstration of IT services throughout MidMichigan Health by developing system-wide procedures. Assists the affiliates with IT capital and operating issues as requested. Serves as liaison and coordinates final problem resolution in regards to interaction between customers and IT throughout MidMichigan Health. Promotes the development, analysis, and implementation of the performance improvement process. Participates on System/project/hospital/department teams and/or committees as needed. Supervises and directs technical aspects in areas with regard to services, programs and the evaluation of each. Qualifications Education: Essential: * Bachelor's Degree from an accredited university or college in Computer/Information Science/Business, required. * Master's Degree, preferred. Other information: EDUCATION, EXPERIENCE, TRAINING AND SKILLS A minimum of five (5) years technical experience in the field. A minimum of three (3) years management experience, including experience in Desktop Services management required. Previous success in professional IT leadership roles, such as project management, supervisory or managerial positions. One or more of the following certifications are required: A+ Certification, Network +, Original Equipment Manufacturers (OEM) Certifications, Information Technology Infrastructure Library (ITIL) Experience managing various types of system images to fit the needs of the organization. Comfortable working in a matrix organization. Good interpersonal, management, and customer service skills. Knowledge of ITIL concepts including Service Management and Service Delivery and experience working within the ITIL framework for Incident, Problem, Change, or Service Management; ITIL Foundation Certificate. Working knowledge of the following: Extensive knowledge of enterprise desktop software such as Windows 7/10, Mac OS X, antivirus, remote management and troubleshooting, asset management and inventory and printing. Experience with Windows active directory, LDAP, and group policies. Experience with enterprise deployment systems and enterprise monitoring and reporting systems. Knowledge of TCP/IP protocol, routing concepts, and troubleshootingexperience. Experience with iOS, Android and mobile device management solutions. Ability to read, analyze and interpret technical journals. Written and interpersonal skills needed to communicate successfully with individuals and groups and interact with people at all levels to communicate ideas and concepts in a clear and understandable manner. Excellent organizational and time management skills. Ability to support demand load to Service Level Agreements (SLA). Good listening skills. Ability to work and function effectively either individually or in a team oriented environment. Ability to assist in planning and coordinate efforts. Ability to work independently with customers. Ability to manage multiple projects simultaneously. Experience developing employees in a variety of backgrounds and disciplines. Physical/Mental Requirements and Working Conditions PHYSICAL/MENTAL REQUIREMENTS AND TYPICAL WORKING CONDITIONS: Exposure to stressful situations, including those involving public contact, as well as, trauma, grief and death. Able to wear personal protective equipment that includes latex materials or appropriate substitute if required for your position. Is able to move freely about facility with or without an assisted device and must be able to perform the functions of the job as outlined in the job description. Overall vision and hearing is necessary with or without assisted device(s). Frequently required to sit/stand/walk for long periods of time. May require frequent postural changes such as stooping, kneeling or crouching. Some exposure to blood borne pathogens and other potentially infectious material. Must follow MidMichigan Health bloodborne pathogen and TB testing as required. Ability to handle multiple tasks, get along with others, work independently, regular and predictable attendance and ability to stay awake. Overall dexterity is required including handling, reaching, grasping, fingering and feeling. May require repetition of these movements on a regular to frequent basis. Physical Demand Level: Sedentary. Must be able to occasionally (0-33% of the workday) lift or carry 0-10 lbs. Mid Michigan Health Midland MI

Manager IT Security - Information Technology

Mid Michigan Health