Peersight
Employers
Jobs
Companies
Top Cities
Log In
Jobs
Product Tester at Home In-Home Usage Tester Product Tester at Home In-Home Usage Tester In-Home Usage Tester Product Tester at Home Product Tester at Home In-Home Usage Tester In-Home Usage Tester In-Home Usage Tester In-Home Usage Tester In-Home Usage Tester Product Tester at Home Product Tester at Home In-Home Usage Tester Product Tester at Home In-Home Usage Tester Product Tester at Home In-Home Usage Tester In-Home Usage Tester In-Home Usage Tester In-Home Usage Tester In-Home Usage Tester In-Home Usage Tester In-Home Usage Tester In-Home Usage Tester In-Home Usage Tester In-Home Usage Tester In-Home Usage Tester In-Home Usage Tester In-Home Usage Tester In-Home Usage Tester In-Home Usage Tester In-Home Usage Tester Product Tester at Home Product Tester at Home In-Home Usage Tester Product Tester at Home Product Tester at Home In-Home Usage Tester In-Home Usage Tester Product Tester at Home Product Tester at Home In-Home Usage Tester Product Tester at Home In-Home Usage Tester In-Home Usage Tester Product Tester at Home In-Home Usage Tester Product Tester at Home Newest Jobs
Companies
Yelp ContactMonkey CareGuide Sterling-Turner Clearbanc Exact Media Aecom Aerotek Two Sigma WeWork Jane Street AsteroidX Insight Global Doordash Akira Shopify First Convenience Bank Borrowell AT&T Square American Income Life Amazon Flex Peel Regional Police Hatchways Walgreens Creative Circle Instacart Recovhub Microsoft Vector Marketing Clickworker Scotiabank LowCostWebDesignFirm.com 51talk UnitedHealth Group TD Bank Top Hat Paylocity Desjardins CI&T Checkout 51 mappedin Mobeewave The Youth Connection Hootsuite GoParkr ScribbleLive SnapTravel Xiaomi autoTRADER.ca All Companies
Top Cities
Chicago, Illinois Sales Jobs Engineering Jobs Marketing Jobs Product Jobs Design Jobs Customer Support Jobs New York, New York Sales Jobs Engineering Jobs Marketing Jobs Product Jobs Design Jobs Customer Support Jobs Toronto, Ontario Sales Jobs Engineering Jobs Marketing Jobs Product Jobs Design Jobs Customer Support Jobs Vancouver, British Columbia Sales Jobs Engineering Jobs Marketing Jobs Product Jobs Design Jobs Customer Support Jobs Calgary, Alberta Sales Jobs Engineering Jobs Marketing Jobs Product Jobs Design Jobs Customer Support Jobs San Francisco, California Sales Jobs Engineering Jobs Marketing Jobs Product Jobs Design Jobs Customer Support Jobs Montréal, Quebec Sales Jobs Engineering Jobs Marketing Jobs Product Jobs Design Jobs Customer Support Jobs Los Angeles, California Sales Jobs Engineering Jobs Marketing Jobs Product Jobs Design Jobs Customer Support Jobs
Navigation
My Profile Log Out

IT Security Governance Dir At Banner Health

Location: Phoenix, Arizona

Job Description

-

Banner Health believes leadership matters, and we look for people who share our vision making health care easier, so life can be better. Our leaders are at the front of the health care transformation, planning the future of Banner Health.

Security Governance is one of six foundational pillars that makes up Banner’s Information Security Department. The Security Governance pillar is directly responsible for providing assurance that information security activities support business objectives, are consistent with regulatory and industry standards and best practices, adhere to enterprise policies and internal controls, and assign responsibility in an effort to manage enterprise risk.

As the IT Security Governance Director, you would provide direct leadership over a 10 person team while conducting project and product risk assessments, implement policies and standards for security across Banner Health, run the EGRC platform, provide audit and assessment support, provide regulatory support for HIPAA and other regulatory activities, manage department metrics, and more. In this role, you would be primarily based at the Banner Corporate Center Phoenix Plaza (off Thomas and Central) with the ability to work remotely one day per week. You'd work a regular schedule of Monday-Friday 8a-5p with required flexibility. As an ideal candidate, you would possess a Bachelors with 10 years of information security experience and 5 years of leadership preferably with a Big 4 Accounting/Consulting firm or in healthcare.

Your pay and benefits are important components of your Journey at Banner Health. This opportunity is also eligible for our Management Incentive Program, as part of your Total Rewards package. Banner Health offers a variety of benefit plans to help you and your family. We provide health and financial security options so you can focus on being the best at what you do and enjoying your life.

-

About Banner Health Corporate
Within Banner Health Corporate, you will have the opportunity to apply your unique experience and expertise in support of a nationally-recognized healthcare leader. We offer stimulating and rewarding careers in a wide array of disciplines. Whether your background is in Human Resources, Finance, Information Technology, Legal, Managed Care Programs or Public Relations, you'll find many options for contributing to our award-winning patient care.







About Banner Health
Banner Health is one of the largest, nonprofit health care systems in the country and the leading nonprofit provider of hospital services in all the communities we serve. Throughout our network of hospitals, primary care health centers, research centers, labs, physician practices and more, our skilled and compassionate professionals use the latest technology to make health care easier, so life can be better. The many locations, career opportunities, and benefits offered at Banner Health help to make the Banner Journey unique and fulfilling for every employee.

-

    Job Summary

    This position is responsible for establishing information security policies and standards and supporting enterprise compliance actions and initiatives. This position also manages third party communications programs, promotes information security awareness across the enterprise, and performs enterprise data governance activities.

    Essential Functions
  • Works with oversight committees and privacy, legal and compliance stakeholders to develop enterprise information security policies that address purpose, scope, and policy directives.

  • Periodically reviews and updates information security, IT security policies, standards and procedures, taking into account the outputs of risk assessments, violations, and exceptions.

  • Reviews legal, regulatory and contractual information security compliance requirements, develop strategy for addressing requirements, and provides periodic statement on information security compliance status. Analyzes and tracks outstanding information and IT Security audit non-conformities.

  • Identifies, monitors, and resolves and/or escalates information security compliance issues.

  • Oversees third party information security assessments and conducts ongoing third party assurance, including auditing of outsourced information security activities. Provides support for Joint Ventures and Mergers & Acquisitions.

  • Defines information security training and awareness strategy, develops and refine materials and content, and manages delivery. Incorporates security training and awareness into standard corporate communications with ongoing metrics to drive behavioral improvement.

  • Regularly communicates metrics reports to the CISO and executive management team. Maintain budgetary oversight for governance and compliance functions.

  • Develops and oversees the department budget in conjunction with corporate goals and objectives. This position is accountable for meeting annual budgetary goals. Identifies and prioritizes security program expenditures in coordination with I/T, Audit, Compliance, and Legal.

  • Minimum Qualifications

    Bachelors Degree in Computer Science, Information Systems, Engineering, Business Administration or a related field.

    Requires proficiency level typically attained with 10 or more years experience in information security experience in positions of increasing responsibility including 7 or more years of security governance and 5 years of leadership experience. Strong understanding of governance and control disciplines within the healthcare industry.Strong understanding of cyber risk management and ability to effectively communicate cyber risk functions to executives.Strong understanding of cyber risk frameworks and ability to lead and oversee the execution and implementation of the frameworks.Extensive experience in risk evaluation and mitigation strategies.Strong understanding of metrics development and executive reporting.Demonstrated experience with implementing and managing GRC technologies.Extensive experience with authoring, implementing and maintaining information security policies and guidelines in alignment with the risk tolerance of the organization.Demonstrated experience in raising awareness of information and technology risk throughout an organization.Experience strategizing with cross-functional business partners on information security solutions.Strong understanding of risk-based decision-making (i.e. risk analysis, mitigation, resolution, acceptance, etc.).Demonstrated organizational and leadership skills with the ability to lead, build, and develop a team of senior IT professionals through formal and informal reporting relationships.Demonstrated communication skills with the ability to build relationship and influence others to get results.Extensive knowledge in governance frameworks including: ISO 27001, NIST, COBIT, ITIL.Extensive knowledge in regulations and/or contractual obligations including: HIPAA, PCI, Sarbanes Oxley, GLBA, SOC /SSAE16.

    Preferred Qualifications

    Advanced Degree in Computer Science, Information Systems, Engineering, Business Administration, or a related field.Industry certifications: CISSP, CISA, CISM, CRISC, EAP, etc.

    Additional related education and/or experience preferred.