Talent.com
No longer accepting applications
Director, Cyber and Information Security - Operational Resiliency & Crisis Management (Canton)

Director, Cyber and Information Security - Operational Resiliency & Crisis Management (Canton)

Tufts Health PlanCanton, MA, United States
12 hours ago
Job type
  • Full-time
Job description

Director Cyber & Information Security

The focus area for this Director will be leading the organization's ability to effectively respond to and recover from events that result in interruption of Point32Health's business operations. In this role, the Director Cyber & Information Security will be focused on leading a team responsible for :

Developing and implementing a strategy and practices that will ensure that the organization is prepared for events that may result in extended interruption of technology systems, applications, or business operations.

Setting requirements and providing education to business and technology stakeholders about their roles in supporting the organization's business continuity, disaster recovery, and incident / crisis management disciplines.

Development, maintenance, and adoption of a single incident / crisis management framework across the organization - all hazard / threat types.

Ensuring that the organization's business continuity and disaster recover procedures / playbooks remain up-to-date.

Leading tabletop and simulation exercises to help ensure preparedness and to proactively identify and address opportunities for improvement.

Anticipate the impact of core systems, applications, facilities, and vendor relationships being unavailable and implement plans that will reduce the impact of those events.

The Director, Cyber & Information Security, will report into the Chief Information Security Officer (CISO) for Point32Health. The Director leads Cyber & Information Security managers and / or security leaders to oversee and help to ensure that core programs are effectively implemented. This role is integral in driving the organization's Cyber & Information Security strategy and objectives. The Director, Cyber & Information Security is considered a leader within the IT Department and is expected to work collaboratively to identify, influence, and enhance areas of improvement across the organization.

Responsibilities / Duties what you will be doing :

  • Manage a team of managers / senior leaders responsible for overseeing the core pillars of Cyber & Information Security
  • Develop and implement policies, standards, and guidelines that continuously increase the organization's Cyber & Information Security program maturity
  • Communicate potential security concerns / exposures with recommended improvements
  • Lead communication and collaboration efforts with the business and IT to ensure quality solutions are delivered
  • Evangelize the objective to embed security behaviors and principles into the Point32Health culture through active engagement, education, awareness, and partnership
  • Develop operational excellence in anticipation and response to evolving threats and opportunities to improve cyber and information security
  • Identify business risk and communicate risk to appropriate leadership
  • Collaborate with stakeholders to define and implement technical and non-technical controls designed to cyber risk objectives and legal / regulatory obligations.
  • Maintain the risk repository to continually identity, prioritize, and mitigate cyber and information security related risk issues
  • Participate in various forums and groups across Point32Health to understand the risk environment and to provide recommends that effectively incorporate security objectives while balancing the business impact of recommendations provided
  • Facilitate adoption of leading security practices to remain in compliance with regulations and to support our continuous monitoring and improvement goals
  • Maintain up-to-date knowledge of the cyber and information security industry, including awareness of new or revised security capabilities, improved security processes, threat scenarios, trends, etc.
  • Identify / recommend tools, processes, software, and protocols to advance or replace current security practices, services, or technologies to meet strategic objectives.
  • Other duties and projects as assigned.

Qualifications what you need to perform the job :

Education, Certification and Licensure :

  • Bachelor's degree in Cyber Security, Computer Science, Risk Management, or related field preferred or equivalent experience

    • Experience (minimum years required) :

  • 10+ years combined IT, cyber / information security, risk, audit, compliance, with increasing responsibility
  • 5+ years in cybersecurity or field(s) related to the programs for which the role is responsible for
  • 5+ years in a leadership role, preferably with at least 2 of those years overseeing other managers
  • Experience in leading or sponsoring implementation of technical security solutions within large organizations
  • Experience developing and implementing process-based security controls, processes, and capabilities
  • Experience in engaging with and managing vendors responsible for implementing processes and / or IT solutions
  • Experience creating and maintaining security requirements, guidelines, and procedure documents
  • Extensive knowledge and experience in security and compliance frameworks such as NIST, ISO, etc

    • Skill Requirements :

  • Ability to lead a team, including managers, through mentoring, coaching, and motivating - providing an opportunity to learn and grow at Point32Health
  • Requires the ability to identify risk within complex, interrelated programs; ability to assess dynamic situations objectively; and to make recommendations or decisions that best align with the corporate strategic objectives
  • Ability to communicate effectively across multiple levels of the organization including managing through cross-business area or business unit prioritization discussions
  • Strong relationship building skills; Must be able to work collaboratively and cooperatively as a team member, fostering an atmosphere of trust and respect
  • Ability to influence all levels of staff and senior management in the decision-making process
  • Deep understanding of IT infrastructure, program portfolio management, application design, and secure software development lifecycle (SDLC) methodologies

    • Working Conditions and Additional Requirements (include special requirements, e.g., lifting, travel) :

  • Must be able to work under normal office conditions and work from home as required.
  • Work may require simultaneous use of a telephone / headset and PC / keyboard and sitting for extended durations.
  • May be required to work additional hours beyond standard work schedule.

    • Disclaimer : The above statements are intended to describe the general nature and level of work being performed by employees assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of employees assigned to this position. Management retains the discretion to add to or change the duties of the position at any time.

    Compensation & Total Rewards Overview :

    As part of our comprehensive total rewards program, colleagues are also eligible for variable pay. Eligibility for any bonus, commission, benefits, or any other form of compensation and benefits remains in the Company's sole discretion and may be modified at the Company's sole discretion, consistent with the law. Point32Health offers their Colleagues a competitive and comprehensive total rewards package which currently includes :

  • Medical, dental and vision coverage
  • Retirement plans
  • Paid time off
  • Employer-paid life and disability insurance with additional buy-up coverage options
  • Tuition program
  • Well-being benefits
  • Full suite of benefits to support career development, individual & family health, and financial health

    • Commitment to Diversity, Equity, Inclusion, Accessibility (DEIA) and Health Equity :

    Point32Health is committed to making diversity, equity, inclusion, accessibility and health equity part of everything we do from product design to the workforce driving that innovation. Our Diversity, Equity, Inclusion, Accessibility (DEIA) and Health Equity team's strategy is deeply connected to our core values and will evolve as the changing nature of work shifts. Programming, events, and an inclusion infrastructure play a role in how we spread cultural awareness, train people leaders on engaging with their teams and provide parameters on how to recruit and retain talented and dynamic talent. We welcome all applicants and qualified individuals, who will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.

    Scam Alert : Point32Health has recently become aware of job posting scams where unauthorized individuals posing as Point32Health recruiters have placed job advertisements and reached out to potential candidates. These advertisements or individuals may ask the applicant to make a payment. Point32Health would never ask an applicant to make a payment related to a job application or job offer, or to pay for workplace equipment. If you have any concerns about the legitimacy of a job posting or recruiting contact, you may contact TA_operations@point32health.org

    Create a job alert for this search

    Director Information Security • Canton, MA, United States

    Related jobs
    • Promoted
    Director, Revenue Acceleration - Next Generation Security

    Director, Revenue Acceleration - Next Generation Security

    Palo Alto NetworksBoston, MA, US
    Full-time
    Director, Revenue Acceleration - Next Generation Security.At Palo Alto Networks everything starts and ends with our mission : Being the cybersecurity partner of choice, protecting our digital way of...Show moreLast updated: 10 days ago
    • Promoted
    Director, Compliance

    Director, Compliance

    Soteria Reinsurance Ltd.Boston, MA, United States
    Full-time
    Job Description : ## • •The Role • •As a Director within the Fidelity Enterprise Services Compliance team, you will serve as a trusted business partner promoting a culture of commitment to compliance, r...Show moreLast updated: 6 days ago
    • Promoted
    Technology and Cybersecurity Risk Governance, Managing Director

    Technology and Cybersecurity Risk Governance, Managing Director

    State StreetQuincy, MA, US
    Full-time
    Technology and Cyber Risk Governance Leader.It is an exciting time to join State Street Corporation (SSC) in the Enterprise Technology Risk Management (ETRM) organization.ETRM is responsible for th...Show moreLast updated: 12 days ago
    • Promoted
    • New!
    Technology Risk Remediation Governance Manager, Vice President

    Technology Risk Remediation Governance Manager, Vice President

    State StreetQuincy, MA, US
    Full-time
    Technology Risk Remediation Governance Manager, Vice President.State Street Global Technology Services (GTS) is seeking a skilled and proven Technology Risk Remediation Governance Manager, Vice Pre...Show moreLast updated: 3 hours ago
    • Promoted
    Director, Threat Management

    Director, Threat Management

    ModernaCambridge, MA, US
    Permanent
    Insider Risk And Threat Management Director.This role leads Moderna's Insider Risk and Threat Management program, with responsibility for designing, implementing, and sustaining strategies that pre...Show moreLast updated: 27 days ago
    • Promoted
    Information System Security Manager II

    Information System Security Manager II

    Global Resource Solutions, Inc.North Lexington, MA, US
    Full-time
    Global Resource Solutions, Inc.GRS) is seeking an enthusiastic, motivated, detail orientated, and talented individual for the position of Information System Security Manager II.The ISSM II’s ...Show moreLast updated: 12 days ago
    • Promoted
    VP, Enterprise Risk Management

    VP, Enterprise Risk Management

    ISACABrookline, MA, United States
    Full-time
    Reporting to the SVP, Chief Compliance Officer, the VP of Enterprise Risk Management (ERM) will serve as the key leader responsible for providing oversight, innovation, and strategic direction to d...Show moreLast updated: 30+ days ago
    • Promoted
    Global Head Communication Surveillance, Vice President, Hybrid

    Global Head Communication Surveillance, Vice President, Hybrid

    State StreetBoston, MA, United States
    Full-time
    The Vice President, Communication Surveillance Compliance is a leadership role responsible for the strategic direction, execution, and oversight of State Street’s global communication surveillance ...Show moreLast updated: 2 days ago
    • Promoted
    Director, Asset Management Risk Operations

    Director, Asset Management Risk Operations

    Fidelity Investments Inc.Boston, MA, United States
    Full-time
    This role will be part of a team accountable for assisting management with developing and implementing controls related to new products, operational processes, and regulatory requirements.The team ...Show moreLast updated: 30+ days ago
    • Promoted
    Vice President, Identity and Access Management (IAM) Program Oversight

    Vice President, Identity and Access Management (IAM) Program Oversight

    State StreetQuincy, MA, US
    Full-time
    Vice President Of Identity And Access Management (Iam) Program Oversight.We are seeking a seasoned and strategic professional to serve as Vice President of Identity and Access Management (IAM) Prog...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Manager, Technology and Cybersecurity Audit & Advisory Services

    Senior Manager, Technology and Cybersecurity Audit & Advisory Services

    ManulifeBoston, MA, United States
    Full-time
    The Technology Audit Team assess technology as part of initiatives, processing, and operations to ensure that delivery meets business, cybersecurity, performance, and regulatory expectations.In thi...Show moreLast updated: 2 days ago
    • Promoted
    Senior Director, Cyber Security (Hybrid - San Diego, CA or Acton, MA)

    Senior Director, Cyber Security (Hybrid - San Diego, CA or Acton, MA)

    Insulet Corporation, MA, United States
    Full-time
    Senior Director, Cyber Security (Hybrid - San Diego, CA or Acton, MA) page is loaded## Senior Director, Cyber Security (Hybrid - San Diego, CA or Acton, MA)locations : San Diego, California : Act...Show moreLast updated: 13 days ago
    • Promoted
    Director, Compliance Technology & Operations

    Director, Compliance Technology & Operations

    Manulife Insurance MalaysiaBoston, MA, United States
    Full-time
    Nous utilisons des • •pour fournir des statistiques qui nous aident à vous offrir la meilleure expérience sur note site.Vous y trouverez des renseignements sur les témoins, ou vous pouvez les désac...Show moreLast updated: 5 days ago
    • Promoted
    Director, Compliance Governance and Oversight - Fidelity Digital Assets

    Director, Compliance Governance and Oversight - Fidelity Digital Assets

    Fidelity Investments Inc.Boston, MA, United States
    Full-time
    As a member of the Fidelity Digital Assets, LLC ("FDA") Compliance team, this role will serve as an informed and trusted business partner, who promotes an environment of ethical conduct and dedicat...Show moreLast updated: 28 days ago
    Information Systems Security Manager (ISSM) I

    Information Systems Security Manager (ISSM) I

    gTANGIBLE CorporationBedford, MA, USA
    Full-time
    Quick Apply
    TANGIBLE Corporation (gTC), , is a S corporation and a registered Government contractor that provides services and solutions in : . Professional, Administrative, and Management Support.Mission and War...Show moreLast updated: 30+ days ago
    • Promoted
    VP, Head of Information Security & Infrastructure

    VP, Head of Information Security & Infrastructure

    Berkshire Residential InvestmentsBoston, MA, United States
    Full-time
    Berkshire Residential Investments is a people-first real estate investment company who values not only the impact we make as a company, but the time we spend together in our high-performing teams.W...Show moreLast updated: 30+ days ago
    ISSM II (TS / SCI)

    ISSM II (TS / SCI)

    Latitude IncHanscom AFB, Massachusetts, United States, 01731
    Full-time
    We are seeking a highly skilled.Information Systems Security Manager (ISSM) II.The ISSM II is responsible for ensuring systems maintain security authorizations, meet applicable DoD, NIST, and RMF r...Show moreLast updated: 6 days ago
    • Promoted
    Executive Director, Operations Cyber, Communications and Network Programs

    Executive Director, Operations Cyber, Communications and Network Programs

    Odyssey SystemsHanscom Afb, MA, US
    Full-time
    Executive Director, Operation for Cyber, Communications and Network (CCN) Programs.Odyssey Systems is looking for an Executive Director, Operation for Cyber, Communications and Network (CCN) Progra...Show moreLast updated: 30+ days ago
    • Promoted
    Lead, Sanctions Risk & Strategic Program Management & Implementation, Vice President, Hybrid

    Lead, Sanctions Risk & Strategic Program Management & Implementation, Vice President, Hybrid

    State StreetBoston, MA, US
    Full-time
    Lead, Sanctions Risk & Strategic Program Management & Implementation, Vice President.This role, reporting to the Global Head of Sanctions Compliance, is a leadership position with the global Sancti...Show moreLast updated: 19 days ago
    Director of Risk

    Director of Risk

    Rockland Federal Credit UnionCanton, MA, USA
    Full-time
    Quick Apply
    Reporting to the SVP of Administration / Risk, this role is responsible for identifying, assessing, measuring, monitoring, and mitigating risks. In collaboration with management and the board of direc...Show moreLast updated: 30+ days ago