Work Status Details: REGULAR FULL TIME | 80.00 Hours Every Two Weeks
Shift: Days
Pay Rate Type: Annual Salary
Location: Corporate Business Center

Listed is the base hiring salary range offered for this position. Actual salaries may vary depending on factors, including but not limited to skills and experience. The salary range listed is just one component of the total rewards/compensation package offered to candidates.
Min = $132,879.69
Mid = $172,743.60
Max = $212,607.51

Summary:

The Director of Information Security is a leadership position that will manage the day-to-day operations of the Information Security team. As a direct report to the Onvida Chief Information Security Officer (CISO), the position will offer an opportunity to continuously develop and build out the Information Security portfolio. The Director will be responsible for developing and implementing cybersecurity policies and procedures, managing cyber projects and budgets, overseeing and reporting of Security Operations Center (SOC) activity and maintenance, Data Loss Prevention (DLP) processes, as well as supervising cyber staff and resources. The Director also collaborates with other senior leaders within Onvida Health and vendors in support of the Cyber strategy and Onvida's business goals.

Responsibilities:

1. Planning/Vision

Competency: a) Provides vision, forward thinking and strategic planning in a proactive manner while being open-minded and creative in establishing a strategic direction. b) Develops through an integration of ideas of those involved, an organized strategy to achieve both short and long term objectives for the department. Effectively communicates strategy to obtain commitment by the responsible individuals.

Accountability: Develop and implement Cyber policies and procedures that align with the organization's goals and objectives. Ensure the availability, reliability, and performance of the IT infrastructure and systems. Develop and execute IT strategy and roadmap in alignment with business objectives and priorities. Oversee Cyber operations and maintenance, ensuring the availability, performance, and security of IT infrastructure and systems.

Leads the strategic planning process for the respective department. As plans are developed, these plans and objectives are integrated within the plans of the medical center. The incumbent works with others in leadership as well as physicians to identify and evaluate programs and emerging technologies.

2. System Thinking

Accountability: Identify and mitigate the risks and vulnerabilities of the organization's data and systems. Monitor and respond to any incidents or breaches that may compromise the security of the organization. Works collaboratively with a variety of key stakeholders to achieve team, department and YRMC's goals.

3 . Fiscal Management

Competency: a) Demonstrates a personal accountability for financial results through development of an annual budget and operational plan and management of performance based on plan. b) Engages staff in efforts to contain costs and improve the efficiency and cost-effectiveness of services. Understands the basics of health care financial management.

Accountability: Plan and manage the Cyber budget and resources, including hardware, software, network, and cloud services. Lead the Cyber team in providing technical support and training to the staff and stakeholders. Establishes budget targets for department, provides oversight for the process, and holds self and other individuals accountable for compliance with annual budget plan. Identifies program or service growth opportunities and methodologies to enhance revenues. Able to manage to a volume adjusted budget.

4. Customer Service

Competency: a) Exhibits unyielding commitment to providing excellent service to patients, physicians, employees and other customers. b) Demonstrates strong communication skills through effective exchange of information with others, including written and oral communication, active listening, influencing the behavior of others and building personal rapport. c) Communicates with others in an open and friendly manner, while simultaneously building credibility and rapport. d) Exhibits strong interactive skills through a demonstration of respecting others' feelings, ideas and opinions; fosters an open interchange, displays a genuine understanding and acceptance of others. Demonstrates perceptivity regarding others' feelings, ideas and opinions.

Accountability: Supervise Cyber staff and vendors, providing guidance, feedback, and training. Establish and maintain effective relationships with internal and external stakeholders, such as senior management, vendors, customers, and partners. Responsible for assuring a respectful work environment. Promotes Patient & Family Centered Care. Sets the tone in the department by communicating values and attitudes that will significantly shape the culture of the group. Models appropriate behaviors and values; sets expectations for respectful behavior with all employees. Supports collaboration between patients, families, health care practitioners, and health care leaders in policy and program development, implementation, and evaluation; in facility design; professional education, and delivery of care.

5. Operational Management / Quality in Everything We Do

Competency: a) Exhibits a commitment to operational management and completing tasks through personal initiative, persistence. Demonstrates an ability to plan, organize, coordinate, prioritize, balance workload and follow through to achieve institutional and individual goals and objectives. b) Demonstrates use of good judgments and sound decision making (common sense, intuition, data collection, analytical skills, impact evaluation, communications) to systematically address problems, define alternate solutions, negotiate and facilitate implementation of solutions. c) Able to balance need for consensus and involvement with need for decisiveness and action. Provides consistent and open encouragement to trying new and creative approaches, yet willing to make a decision and take a stand.

- Contributes new ideas and new ways of thinking to improve departmental performance and services.

- Identifies need for change and develops/accepts creative approaches and solutions.

- Participates in performance improvement activities, and by challenging processes, eliminates inefficient/ineffective procedures and waste by collaborating with co-workers or across departments to improve processes.

- Implements an effective and on-going program to monitor, evaluate and improve the quality of services delivered.

Accountability: Establish and maintain a cybersecurity framework that complies with the relevant standards and regulations. With the assistance of direct reports, develops processes and procedures which are effective, efficient and aligned with organizational goals and values. Responsible for coordinating and integrating intra-hospital services. Ensures division has qualified staff and needed resources in order to deliver safe quality care and outcomes. Establishes performance standards with which to measure effectiveness and efficiency of services.

Competency: a) Ability to see how individual actions contribute to the overall good of the institution. Understands and is able to communicate how individual and department goals overlap with YRMC's goals. b) Demonstrates commitment for the good of the organization while maintaining congruence with commitment to the department. c) Able to recognize and use information about organizational climate and key individuals to accomplish legitimate organizational goals. d) Aware of the importance of timing, politics and group processes in managing change. e) Able to balance department needs with the hospital needs. Skillful at reconciling the two without sacrificing the critical needs of either.

6. Human Resources Management

Competency: a) Able to develop others through setting clear expectations, mentoring and coaching, and holding others accountable for results. b) Utilizing work force analysis, identifies required competencies needed for effective management of human resources and is able to identify short and long-term staffing needs, c) Conducts oneself in an honest, credible, trustworthy manner consistent with YRMC's values. Demonstrates an integration of values, beliefs, attitudes and behaviors through an acceptance of responsibility and accountability for individual's own actions.

Accountability: Stay updated on the latest trends and developments in IT and cybersecurity. Manage IT security and risk management. Develop and implement cybersecurity policies and procedures to protect the company's data, systems, and networks from cyber threats and attacks. Ensures that the work force has the necessary skills to accomplish the work required to achieve the objectives of the department. Partners with Human Resources to develop long-term human resource plans, anticipating future needs and developing employees able to meet those challenges. Fosters an open working environment for easy access to express ideas and concerns. Demonstrates and expects open communications. Promotes an environment that is open and collaborative while keeping the team focused on a common goal. Builds rapport, encourages teamwork, creates an environment where employees may feel empowered.

7. Community

Competency: a) Leverage the unique system capabilities (hospital and community providers) to increase value for external and internal customers and eliminate barriers to care. b) Participate in community involvement. c) Champion community involvement in the department and throughout the organization.

Accountability: Promote and encourage community involvement throughout the department. Incorporate community goals in overall departmental goals. Demonstrate involvement in community events and hospital partnerships. Maintains appropriate continued education as it relates to the role.

Credentials:
Essential:
* CERTIFIED INFORMATION SYSTEMS SECURITY PROFESSIONAL (CISSP)

Education:
Essential:
* BACHELOR'S DEGREE

Other information:

Education - Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or related field.
A Master's degree is preferred.
Industry certifications (CISSP, CISM, CISA, HCISPP, etc) is required.
Years of Experience - Minimum of 10 years in information security, with at least 3 years in leadership role.
Healthcare experience is preferred.
Skill - Extensive knowledge of healthcare regulations including but not limited to, HIPAA, HITECH, and ONC regulations and experience in securing healthcare systems.
Strong knowledge of cybersecurity principles, frameworks, and tools, such as NIST, ISO, COBIT, or SANS.
Proven experience managing security technologies, risk assessments, and incident response.
Strong understanding of cybersecurity threats, risks, and best practices, including cloud and on-premises security.
Leadership skills to manage cross-functional teams and communicate effectively with stakeholders at all levels.
Strong communication skills for translating complex technical concepts to non-technical audiences.
Ability - Ability to handle sensitive and confidential information with discretion.
Willingness to stay updated on emerging technologies and security trends.
Availability for on-call incident response as needed.

Why Yuma Regional Medical Center?

Yuma Regional Medical Center (YRMC) is located in Yuma, AZ. Our purpose is building a healthier tomorrow. We strive by putting patients first as they are the center of every decision and action we take. YRMC is rooted in the community by living and breathing the dynamic nature of our region. Being committed to progress by constantly and consistently advancing healthcare, creating meaningful experiences and improving the lives of everyone around us.

Our Values

Bring Kindness | Achieve Together | Aspire For Better | Do The Right Thing | Lead With Optimism |

About Yuma, AZ

Named by the Guinness World Records as the Sunniest City on Earth with winters averaging temperatures of 70 degrees, sunny days and cooler nights.

Yuma, Arizona is a place to explore the great outdoors with hiking, jet skiing, boating and off-roading. Don't forget to soak up the sun at the great Colorado River or one of Yuma's many lakes.

Yuma is centrally located in Southwest Arizona, within a short drive to many popular attractions and destinations.

https://www.visityuma.com/

https://www.yumachamber.org/

Bring your skills to one of the sunniest places on earth - Yuma, AZ!

Physical Requirements and working conditions for this position will be provided to you up on interview.