Job Details

A Director for Cyber Security position is now available through Adecco Healthcare and Life Science. In this position, you will be responsible for reporting reports to the Chief Information Security Officer (CISO) and oversees cybersecurity operations and strategy. This role ensures the confidentiality, integrity, and availability of information assets, particularly sensitive data (PHI).

Responsibilities include setting vision and direction for cybersecurity services, implementing and maintaining security policies and standards, managing technical implementation projects, and overseeing financial and budgetary responsibilities. The Director manages vendors, external partners, and personnel within cybersecurity, ensuring performance management and career development for an extended team. The role also involves developing strategic cybersecurity roadmaps and collaborating with IT and clinical technology teams to secure sensitive data and maintain HIPAA compliance.

Location: Knoxville, TN

Job duration: Direct-hire

Salary: $160,000-183,000/year

RELOCATION ASSISTANCE WILL BE PROVIDED

Position Accountabilities and Performance Criteria

Leadership and Team Management

1. Provide leadership to cybersecurity staff, including Security Analysts, Incident Responders, and Compliance Specialists.
2. Support and lead efforts to change team culture, dynamics, processes, and technologies to provide modern solutions.
3. Lead cybersecurity team in performance management and career development; delegate responsibilities appropriately.
4. Provide coaching and guidance to achieve departmental development goals.
5. Champion innovative efforts in recruitment, development, and retention of cybersecurity workforce.

Cybersecurity Operations

Oversee day-to-day cybersecurity operations, including monitoring, detection, and incident response.

Lead incident response team in managing and resolving security breaches.

Ensure compliance with HIPAA and other relevant regulations.

Lead technical implementation projects to meet organizational cybersecurity needs.

Stay informed on emerging technologies and industry trends; recommend improvements.

Strategic Planning and Implementation

Develop and maintain strategic cybersecurity roadmaps with tactical action plans.

Conduct proactive resource planning based on anticipated demand.

Establish deliverables and milestones for solution delivery in collaboration with business leaders and executives.

Lead development of cybersecurity strategies and technical roadmap, integrated with IT and organizational strategies.

Vendor and Budget Management

Manage relationships with cybersecurity vendors and ensure performance meets organizational standards.

Develop annual operating and long-term capital budgets for cybersecurity projects.

Operational Efficiency

Monitor network and systems performance; perform capacity planning.

Oversee operational and service management processes to ensure performance of technology subcontractors.

Collaboration and Relationship Building

Collaborate with IT and clinical IT teams to align and integrate cybersecurity services.

Build relationships with key business leaders and maintain credibility with hospital and corporate stakeholders, Legal, HR, and Privacy/Compliance teams.

Security Awareness and Training Programs

Develop and implement security awareness and training programs for employees.

Third-Party Risk Management

Oversee assessment and management of cybersecurity risks associated with third-party vendors, partners, and biomedical devices.

Policy Development and Enforcement

Develop, implement, and enforce cybersecurity policies, standards, and procedures.

Security Architecture and Design

Lead design and implementation of secure network architectures and systems.

Incident Management and Forensics

Oversee incident management and forensic investigations to identify root causes and mitigate risks.

Regulatory Compliance

Ensure compliance with HIPAA, HITECH, and other healthcare-specific cybersecurity requirements.

Business Continuity and Disaster Recovery

Develop and maintain business continuity and disaster recovery plans to ensure rapid recovery from cybersecurity incidents.

Local travel required.

Follow policies, procedures, and safety standards; complete annual education assignments; participate in quality improvement initiatives.

Position Qualifications

• Education: No specific requirement; combination of formal education and/or work experience demonstrating required knowledge, skill, and ability. Preference for Bachelor's in Cybersecurity, IT, or related field.
• Experience: Minimum 10 years in technology/IT leadership, with 7 years leading cybersecurity in an enterprise organization.
• Licensure: Valid Tennessee driver's license and state-mandated insurance; driving record must meet company standards.

Benefit offerings include medical, dental, vision, life insurance, short-term disability, additional voluntary benefits, EAP program, commuter benefits and 401K plan. Our benefit offerings provide employees with the flexibility to choose the type of coverage that meets their individual needs. In addition, our associates may be eligible for paid leave including Paid Sick Leave or other paid leave required by Federal, State, or local law, as well as Holiday pay upon meeting eligibility criteria. IMPORTANT: This job is being recruited for by Adecco's Medical and Science division, not your local Adecco Branch Office.

Equal Opportunity Employer/Veterans/Disabled