UW Medicine's IT Services department is looking for an outstanding Director for our Information Security Program! What are we looking for?Patients Are First focusCustomer service mindsetInterpersonal skills and teamworkResults-oriented attitudeCommitmentAdaptability and flexibilityWhat are the perks?Medical insurance at reasonable rates with TEN plans to choose from!Dental Insurance at no cost to you OR your dependents...AND we have three plans for you to choose from!10 paid holidays annually!1 personal holiday every year!Generous amounts of vacation and sick leave that you can feel good about taking (almost 8 work weeks in your first year)!TWO Retirement plans to choose from - one even matches 100% of your contributions with immediate vesting!Voluntary Investment program to save more towards your retirement!Deferred Compensation program to save even MORE towards your retirement!Flexible Spending Account...Tax Exempt!Dependent Care Assistance program!On-site Childcare Centers!Long Term Disability insurance!Life and Accidental Death and Dismemberment insurance!U-PASS transportation program and discounted parking...PRE-TAX!Tuition Exemption program - at the UW (and other colleges around the state)!Housing resources and home buying options!Auto, home, renter, and boat group insurance!Valuable membership and merchandise discounts!Federal student loan forgiveness under the Public Service Loan Forgiveness (PSLF) program!For all of the specific details on these benefits and more, please click here.UW Medicine's Information Technology Services (ITS) department is a shared services organization that supports all of UW Medicine. UW Medicine is comprised of Harborview Medical Center (HMC), Northwest Hospital & Medical Center (NWH), Valley Medical Center (VMC), UW Medical Center (UWMC), UW Neighborhood Clinics (UWNC), UW Physicians (UWP), UW School of Medicine (SOM) and Airlift Northwest (ALNW). In addition, UW Medicine shares in the ownership and governance of Children's University Medical Group and Seattle Cancer Care Alliance (a partnership between UW Medicine, Fred Hutchinson Cancer Research and Seattle Children's). ITS is responsible for the ongoing support and maintenance of the infrastructure and applications which support all of these institutions, along with the implementation of new services and applications that are used to support and further the UW Medicine mission.Under the direction of the UW Medicine Chief Information Security Officer, the Director, Information Security Program ('Director') will oversee Information Security and Identity and Access Management (IAM) programs and proactively plan and collaborate with other technology and business leaders to ensure that Information Security and IAM program strategies are in line with UW Medicine strategy and business needs. The successful execution of this position's duties is significant for the overall protection of UW Medicine's reputational, operational, financial, and strategic interests. The Information Security program must also be compliant with UW's and UW Medicine's policy, applicable laws, and regulations.The position also collaborates with key stakeholders across the UW and UW Medicine campuses, such as ITS, UW Office of the CISO, and other business units or departments, to ensure effective and timely communication regarding information security incidents and emerging cyberthreats to UW Medicine.In overseeing the information security and IAM programs, the Director will ensure acceptable quality and responsive services through management and delivery of risk, vulnerability, and threat assessments, incident response, proactive monitoring, and account lifecycle processes. The position will ensure adherence to best practices and proven methodologies to promote mature information security and IAM operations. The successful candidate will provide leadership for the Information Security and IAM teams.The Director is a mature, experienced leader with excellent interpersonal skills, is a good listener and possesses excellent written and oral communication skills. The incumbent must be technically conversant, yet able to translate technology concepts for people with non-technical expertise. The person in this position must be trustworthy, discrete, have high standards, and be very self-motivated. Flexibility, ingenuity, dedication, enthusiasm, and energy are key attributes. The Director must have strong technical knowledge and skills to work collaboratively in a dynamic, demanding, and multifaceted environment. The Director must be a team player for whom the ownership of ideas is less important than the result of the collaborative effort.The incumbent must be experienced with, and sensitive to, the information security needs of healthcare, research, and education. The Director must possess a keen intellect and have a fundamental affinity for dealing with complex issues, where many criteria matter to varying degrees to individual constituencies.Detailed and up-to-date knowledge of information security and IAM compliance requirements and legal developments pertaining to information security standards and best practices are critical for the success of this position.The individual is expected to demonstrate extensive and comprehensive knowledge and experience with: Risk management, threat and vulnerability assessment methodologies, and related software tools.Digital forensic investigations using industry standard software tools.Incident Management of large-scale information security breaches.Identity, authentication, and access management methodologies and operations.ITS is a growing shared services department that implements, deploys and manages highly complex system applications and applications to meet and exceed key IT initiatives that support UW Medicine entities. The need to provide and deploy security engineering services is to ensure that appropriate and effective security controls, techniques and solutions are identified and implemented ensuring confidentiality, integrity and availability of sensitive data. Additional applications and systems are supported through UW Medicine research affiliations such as the Fred Hutchinson's Cancer Research Center, NIH and other grants, contracts, clinical affiliations and other School of Medicine activities; as well as medical training programs with other institutions such as the Veterans Administration and Madigan Army Medical Center. This position is needed in order to meet federal regulatory requirements under HIPAA, ISO, PCI and other security standards, as well as to ensure the security of systems. Failure to meet regulatory requirements may result in fines, sanctions, loss of public credibility, and other business risks.Responsibilities include:Program Management and Operations (60%)Provide guidelines and direction to managers and technical staff engaged in Information Security and IAM operations, in support of UW Medicine-wide systems, ITS, and operational programs. Direct the efforts of the information security and IAM teams and manages two direct report FTEs and a team of 20+ professional and contract classified staff.Provide ongoing review of risks, threats, and vulnerabilities in order to align mitigation efforts with budget planning. Heads the incident management team in collaboration with the Information Security Manager in the event of an information security breach. Directs other team members and resources necessary for the response effort.Collaborate with key stakeholders across the UW Medicine to ensure effective and timely communication regarding information security incidents and emerging cyberthreats to UW Medicine. Collaborate with external stakeholders to facilitate access to relevant and timely cyberthreat information. Monitor advancements and experiences in the field related to information security technologies and practices.Represent the CISO on UW Medicine governance groups and committees as required. Spearhead community outreach efforts and maintain collaborative relationships with both UW internal and external information security groups.Provide support for projects directly related to the UW Medicine CISO. Create and carry out project plans (including documentation audits), accumulate and enter data, identify key trends and/or potential outcomes, and prepare related summary materials for executive presentations. Manage other projects from planning through execution, including analyzing, interpreting and compiling information for special reports.Information Security and IAM Strategy (40%)Develop strategies for the operation of the UW Medicine Information Security and IAM ProgramsDevelop, implement, and manage a risk management, threat, and vulnerability assessment program, tailored to the specific needs and requirements of UW Medicine.Lead and champion process and operation improvements of the Information Security and IAM programs.Evaluate new tools and external services, recommend purchases and subscriptions, stay current on latest technologies, and collaborate with external subject matter experts on information security best practices.Create standardized and comprehensive processes to communicate risks, threats, and vulnerabilities as well as dashboards that represent the maturity of the information security and IAM programs.Develop reporting standards for portfolio project timelines, budget data, forecasting and actuals.Develop new service offerings based on customer demand and changing risk picture.This position serves as the Director for the Information Security and IAM teams comprised of two direct report managers and a team of 28 professional staff and contract classified staff FTE technology professionals. The incumbent is expected to provide strong leadership of a team of technical experts in order to provide information security and IAM solutions for UW Medicine. This includes managing the day-to-day work of the team and ensuring that benchmarks are reached on schedule and work product is properly defined and consistently delivered. This position also has project leadership responsibilities for major information security projects and initiatives, as well as strategic information security projects with large infrastructure dependencies.What you'll bring to the table: (minimum requirements) Bachelor's degree in Computer Science, Business Administration, or related field or equivalent combination of education/experience.10+ years of progressive technology, security, and professional services experience.CISM, CISSP, or GSEC certification.Healthcare or corporate/industry information security experience.Demonstrated experience leading, coaching, mentoring, and managing a high performing team of information security professionals with a proven ability to influence in a matrixed environment.Ability to facilitate problem solving among groups with varying needs and priorities and to communicate well with users, technical staff and management.Demonstrated experience with various types of forecasting and managing information security budgets.Proven ability to make administrative/procedural decisions and provide guidance and leadership to professional personnel.Ability to work with a range of technical staff to develop joint solutions.Knowledge and understanding security-related technology systems and tools. Knowledge with current technology-related risk management practices and tools.Knowledge with federal and State compliance regulations related to information security and privacy.Familiarity with budget planning, management, and procurement.The successful candidate will also possess:Ability to work independently and take accountability when necessary for unplanned events and circumstances.Ability to work and effectively prioritize in a highly dynamic decentralized work environment.Ability to think quickly in high-pressure environments and take risks commensurate with responsibility.Values consistent with those of UW Medicine's mission to improve the health of the public by advancing medical knowledge, providing outstanding primary and specialty care to the people of the region, and preparing tomorrow's physicians, scientists, and other health professionals.Excellent written and oral communication abilities to articulate the vision and translate complex issues into comprehensible ideas and concepts with the ability to engage in active listening.Strong interpersonal skills to lead and motivate the organization with the ability to work effectively with a diversity of personalities.Demonstrated executive presence to support partnerships throughout UW Medicine.Strong analytical and collaboration skills.Team building skills that provide leadership and structure to a group of high-performing IT and Project Management professionals.Excellent negotiation and vendor management skills.Internal motivation to be action oriented and results driven.Ideally, you'll also have: (desired skills and experience)Experience as a Chief Information Security Officer or equivalent.What are some of the other tidbits that you might want to know?Information Security deadline-driven environment.Must work within the constraints of multiple technical environments.The Information Security team services all UW Medicine organizations - Harborview Medical Center, Northwest Hospital & Medical Center, Valley Medical Center, UW Medical Center, UW Neighborhood Clinics, UW Physicians, UW School of Medicine and Airlift Northwest as well as cooperates and interacts with the UW Office of the CISO. Must learn many organizational structures and cultures and foster collaboration. The individual in this position is expected to work normal daytime hours. However, significant off-hours and weekends may be needed to resolve problems and during implementation and maintenance activities. This individual is also expected to be available for call on a 24x7 basis as needed.Because of the physically separated sites for UW Medicine, this position requires the ability to travel frequently between sites. Travel to/from includes, but is not limited to, UW Medical Center, Harborview Medical Center, downtown Seattle, and other facilities which are affiliated with UW Medicine.Ability to communicate clearly in English, both verbally and in writing.This advertised job posting may not include the complete official job description for the role.Appointment of the successful candidate to this position will be made contingent upon a satisfactory outcome of criminal background checks.The application process for UW Medicine positions may include completion of a variety of online assessments to obtain additional information that will be used in the evaluation process (i.e. Work Authorization, Criminal Conviction History, Cover Letter and/or others). Any assessments that you need to complete will appear on your screen as soon as you select "Apply to this position". Once you begin applying for a position, all assessments must be completed at that time. Please note that your application shows up in our system as ready to review regardless of whether or not all assessments have been completed. If the assigned Recruiter happens to review applications prior to all of your assessments being completed, there is a chance you could be 'Not Selected' due to an incomplete application. For this reason, we strongly encourage all applicants to ensure there is plenty of time to complete all of the assessments prior to clicking on "Apply to this position".Who are we and what do we do? UW Medicine's mission is to improve the health of the public by advancing medical knowledge, to provide outstanding primary and specialty care to the people of the region, and to prepare tomorrow's physicians, scientists and other health professionals. Our staff not only enjoys outstanding benefits and professional growth opportunities, but also an environment noted for diversity, community involvement, intellectual excitement, artistic pursuits, and natural beauty.Committed to attracting and retaining a diverse staff, your experiences, perspectives and unique identities will be honored at the University of Washington. Together, our community strives to create and maintain working and learning environments that are inclusive, equitable, and welcoming.The University of Washington is an affirmative action and equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, gender expression, national origin, age, protected veteran or disabled status, or genetic information. To request disability accommodation in the application process, contact the Disability Services Office at 206-543-6450 / 206-543-6452 (tty) or click here to send an email.The University of Washington is a leader in environmental stewardship and sustainability, and committed to becoming climate neutral.#monster
Founded in 1861, the University of Washington is one of the oldest public institutions in the west coast and one of the preeminent research universities in the world. The University of Washington is a multi-campus university comprised of three different campuses: Seattle, Tacoma, and Bothell. The Seattle campus is made up of sixteen schools and colleges that serve students ranging from an undergraduate level to a doctoral level. The university is home to world-class libraries, arts, music, drama, and sports, as well as the highest quality medical care in Washington State and a world-class academic medical center. The teaching and research of the University’s many professional schools provide undergraduate and graduate students the education necessary toward achieving an excellence that will serve the state, the region, and the nation. As part of a large and diverse community, the University of Washington serves more students than any other institution in the Northwest.