IT Security Officer
Columbia, MD 
Share
Posted 11 days ago
Email Job 
Email Job
Job Description

General Summary of Position
Interfaces with various MedStar business units and compliance partners which include; Office of Corporate Business Integrity, Legal, Program Management Office, IS Customer Services, Information Security, and Management Audit. Manages improvements in MedStar Health's information security operations and compliance program and develops new security processes and standards as needed. Responsible for the maintenance of a control framework, reporting on the current state of compliance, and building a corporate culture of information security through the planning and delivery of the necessary policies, standards, and processes to incorporate information security into business practices.


Primary Duties and Responsibilities

  • Assists with design, configuration, and implementation of the MedStar Health security architecture. Defines security requirements as the security liaison for technical and application systems implementations.
  • Assists with the development, implementation, and administration of enterprise information security policies and procedures. Assists in the review and update of corporate security policies and procedures.
  • Builds business relationships and acts as an essential interface between IT and the business on IT compliance matters.
  • Consults with business and technical stakeholders to research, assess, evaluate, and support the implementations of security-related projects/programs including the determination of required resources (ie. Capital costs, headcounts, contractors, etc.).
  • Contributes to the design, maintenance, and execution of the Incident Response Plan.
  • Maintains operational security metrics to measure the effectiveness of security controls and identify opportunities for improvement.
  • Monitors compliance with MedStar Health information security policies and procedures, addressing problems to the appropriate department manager or data owner. Keeps an accurate and timely log of all compliance gaps. Publishes periodic compliance reports.
  • Participates in the organization's annual risk assessment process and audit (Internal and External) response processes.
  • Performs security risk assessments, manages risk, and provides advice for the implementation of compensating security controls.
  • Proactively researches security/compliance changes in governmental/industry regulations or best practices that may affect security policies.
  • Promotes security awareness programs.
  • Provides high-quality, service-oriented information processing for the MedStar Health System. Strives for service excellence by seeking continuous improvement, and consistent accuracy, completeness, and followthrough of work.
  • Provides operational IT security support, as necessary.
  • Provides senior-level management consulting in areas such as best practices in business operations, regulatory requirements, and security control implementation.


    • Minimum Qualifications
    Education

    • Bachelor's degree in Information Systems, or a combination of equivalent technical experience and education required

    Experience

    • 5-7 years Experience in information security operations or network security/administration in a lan/wan/mainframe environment required and
    • Direct experience implementing information security best practices in a healthcare environment. Demonstrated knowledge of HIPAA. experience working with vendors and vendor contracts to confirm and incorporate security controls required

    Licenses and Certifications

    • CISSP, SANS/GIAC or vendor certification (i.e. Novell, Microsoft, Sun, Checkpoint, Symantec) preferred

    Knowledge, Skills, and Abilities

    • Strong analytic, communication, project management, and writing skills.
    • Strong organizational skills.
    • Demonstrated hands-on experience with information security tools, i.e. Firewall, IDP, SIEM, etc.


    Why MedStar Health?
    At MedStar Health, we understand that our ability to treat others well begins with how we treat each other. We work hard to foster an inclusive and positive environment where our associates feel valued, connected, and empowered. We live up to this promise through:

    • Strong emphasis on teamwork - our associates feel connected to each other and our mission as an organization. In return, our effective team environment generates positive patient outcomes and high associate satisfaction ratings that exceed the national benchmark.
    • Strategic focus on equity, inclusion, & diversity - we are committed to equity for all people and communities. We continue to build a diverse and inclusive workplace where people feel a sense of belonging and the ability to contribute to equitable care delivery and improved community health outcomes at all levels of the organization.
    • Comprehensive total rewards package - including competitive pay, generous paid time off, great health and wellness benefits, retirement savings, education assistance, and so much more.
    • More career opportunities closer to home - as the largest healthcare provider in the Baltimore-Washington, D.C. region, there are countless opportunities to grow your career and fulfill your aspirations.

    About MedStar Health
    MedStar Health is dedicated to providing the highest quality care for people in Maryland and the Washington, D.C., region, while advancing the practice of medicine through education, innovation, and research. Our team of 32,000 includes physicians, nurses, residents, fellows, and many other clinical and non-clinical associates working in a variety of settings across our health system, including 10 hospitals and more than 300 community-based locations, the largest home health provider in the region, and highly respected institutes dedicated to research and innovation. As the medical education and clinical partner of Georgetown University for more than 20 years, MedStar Health is dedicated not only to teaching the next generation of doctors, but also to the continuing education, professional development, and personal fulfillment of our whole team. Together, we use the best of our minds and the best of our hearts to serve our patients, those who care for them, and our communities. It's how we treat people.

    MedStar Health is an Equal Opportunity (EO) Employer and assures equal opportunity for all applicants and employees. We hire people to work in different locations, and we comply with the federal, state and local laws governing each of those locations. MedStar Health makes all decisions regarding employment, including for example, hiring, transfer, promotion, compensation, benefit eligibility, discipline, and discharge without regard to any protected status, including race, color, creed, religion, national origin, citizenship status, sex, age, disability, veteran status, marital status, sexual orientation, gender identity or expression, political affiliations, or any other characteristic protected by federal, state or local EO laws. If you receive an offer of employment, it is MedStar Health's policy to hire its employees on an at-will basis, which means you or MedStar Health may terminate this relationship at any time, for any reason.

     

    Read More
    Job Summary
    Company
    MedStar Health
    Start Date
    As soon as possible
    Employment Term and Type
    Regular, Full Time
    Required Education
    Bachelor's Degree
    Required Experience
    5 to 7 years
    Email this Job to Yourself or a Friend
    Indicates required fields