Director of IT Security-Glen Allen

The responsibilities of this job include, but are not limited to the following:
Creating security policies, including acceptable use, security rules and responsibilities of IT teams, data classification, and authorized access for all business data;
Presenting security topics to a diverse audience;
Determining and implementing log monitoring, and network and server infrastructure decisions;
Advising on software log development and security concerns;
Designing software, network, and server security architecture;
Defining hardening standards for all systems;
Defining the asset management lifecycle and program for all Patient First software and hardware;
Creating the process for managing system vulnerability and patching programs;
Performing automated, regular scans and remediation efforts; leveraging currently deployed tools;
Creating a risk management approach to security, and integrating business operations into overall security maturity posture;
Communicating effectively with end users, legal entities, outside third parties and anyone with a stake in the success of the security program.

Minimum education and professional requirementsinclude, but are not limited to, the following:
Bachelor’s degree or equivalent work experience;
CISSP/CISM/CISA certification;
CEH/GIAC/OSCP certifications (preferred);
Knowledge of HIPAA and PCI compliance requirements;
Five years or more of experience in securing a mixed Windows and Unix environment (preferred);
Five years or more in security incident handling (preferred);
Experience creating security policies;
Experience selecting and maintaining relationships with third party MSSPs and outside vendors;
Ability to provide hands-on leadership and ability to expand the IT Security team as needed.


Leave a Reply