Manager IT Security Operations

General Summary

Responsible for developing implementing and maintaining security protocols and procedures to safeguard the medical systems digital assets and infrastructure while overseeing all aspects of information security within the organization. Coordinate tasks and risks to remediate with other departments and stay abreast of emerging threats and technologies to ensure the organizations security posture remains robust. Work is performed under limited supervision. Direct report to the Director Information Security.

Principal Responsibilities and Tasks

The following statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all job duties performed by personnel so classified.

• Oversee the Security Operations Center and manage a team of Security Analysts responsible for reviewing assessing and triaging security events.
• Lead security incident response procedures and escalate incidents to appropriate stakeholders.
• Partner and share data with Risk Management and Engineering teams to improve UMMS Cybersecurity posture.
• Assure completion of remediation tasks associated with Threat Intelligence Vulnerability Management and Incident Response alerts.
• Coordinate team initiatives and projects and ensure completion of tasks.
• Review and update the Incident Response Plan and Standard Operation Procedure (SOP) on a continuing basis while seeking opportunities to create new SOPs.
• Develop and implement process for tracking key operational metrics.
• Establish comprehensive metrics and reporting to evaluate team performance to ensure goals and objectives are being met.
• Identify and resolve operational and performance gaps and obstacles; recommend/implement changes and improvements.
• Provide forward thinking technical expertise in current and emerging technologies trends and best practices.
• Mentor team members in the areas of Incident Response Vulnerability Management Threat Intel Threat Hunting and Forensics.
• Foster a culture of collaboration problem solving innovation continuous learning and a one team mindset.
• Mentor staff in both technical and soft skills to craft a team of highly competent consistent thoughtful and customercentric information security experts.
• Evaluate personnel effectiveness and develop/implement training programs to improve performance.
• Perform managerial functions including hiring discipline training and development and prepare performance reviews in accordance with UMMS policies and procedures.
• Perform other duties as assigned.

Qualifications :

Education and Experience

• Bachelors degree in Computer Science Information Technology Information Security or related field or the equivalent combination of education training and experience. Masters degree preferred.
• Minimum 3 years progressively responsible experience managing a Security Operations team.
• Minimum 5 years experience working with a MSSP.
• Five 5 years experience in managing enterprise projects and multidisciplinary resources required.
• Experience with common information security management frameworks and best practices.
• Experience working in a healthcare environment preferred.
• Cybersecurity certifications such as CISSP CISA CISM CEH OSCP or CHFI preferred.

Knowledge Skills and Abilities

• Advanced knowledge of networks operating systems cryptography preventive detective and offensive security solutions.
• Advanced knowledge and understanding of information security concepts principles protocols tools industry best practices and strategies.
• Demonstrated ability to successfully motivate and inspire team members to high performance levels.
• Proven ability to lead teams effectively prioritizing requests workload and establishing a goaloriented work environment with clear and concise work procedures and productivity metrics.
• Effective skill presenting findings conclusions alternatives and information clearly and concisely at all levels within the organization.
• Advanced analytical conceptual thinking planning organizational and problemsolving skills.
• Effective skill developing and maintaining collaborative working relationships with all levels of leadership staff and vendors.
• Keen sense of personal responsibility and accountability for delivering high quality work.
• Proven ability to respond to alerts and incidents after hours.
• Demonstrated ability to maintain professional growth and business affiliations to keep abreast of technical advances vulnerabilities and threats.
• Flexible enthusiastic approach to work including a fervent desire to learn with the ability to adapt quickly to new systems and learning understanding and applying new technologies.
• Advanced verbal written and interpersonal communication skills.

Additional Information :

All your information will be kept confidential according to EEO guidelines.

Remote Work :

Yes

Employment Type :

Fulltime