Experis Manpower Group
Our client is in search of an Information Security Compliance Manager!Demonstrated track record implementing and successfully leading (often through work products) a standards based IS compliance program. Familiarity with aspects of computer, network and information security- including application security, web security, database security, vulnerability assessment, event and incident analysis, and encryption technologies. To be successful, this candidate will focus their team on providing expert assistance in turning the complexities of a security control framework into clearly defined, practical and operational IS best practices. Proven history of facilitating and documenting the closure of audit findings is critical. Should have a demonstrated ability to develop, organize, present and execute compliance strategy. Key responsibilities: Drafts and implements Information Security policy throughout the enterprise.Manages the information security policy framework (Policies, Standards, and Procedures) - gap and capability assessments, policy refresh cycle, approval process, risk-based implementation.Define and manage the information security risk management process- risk identification, assessment, remediation, and reporting.Reports to the Chief Information Security Officer on progress, risks, issues, and escalation.Develops and reports on information security compliance metricsOversee execution of internal IS risk assessments and assist The Office of Audit and Compliance with annual client corporate risk assessment.Manage vendor assessment and risk remediation lifecycle by initiating, facilitating, reporting on and tracking assessments.Contributes to the development of a multi-year roadmap for security, policy, compliance and risk management.Builds and maintains strong relationships with internal stakeholders, customer business contacts, and IS vendorsRaises Information Security awareness across the organization. Manages Security Awareness lifecycle.Represents IS and facilitates all internal and external IS audit engagements in concert with the Office of Audit and ComplianceMinimum Requirements:Experience: 3-5 years of experience in IS audit and compliance, with a strong operational background and proven track record of accomplishments in Information Services within a large, complex, multi-location organization. Health care experience and deep understanding of health care IT operations and challenges. Education, Certifications or Licenses:Bachelor's degree in healthcare, computer technology, information management or related field preferred.Experience with regulatory controls such as HITECH Act and HIPAA LawsCertifications such as: Certified Information System Security Professional (CISSP) Certified Information System Auditor (CISA) Certified in the Governance of Enterprise IT (CGEIT) Certified Information Security Manager (CISM) HealthCare Information Security and Privacy Practitioner (HCISPP)Experis is an Equal Opportunity Employer (EOE/AA)
Experis Manpower Group
Website : http://www.experis.com
Transforming challenges into opportunity. Accelerating careers. Propelling business growth. Few companies can match Experis’ scope, history of success and our reputation as the global leader in professional talent and solutions. We know that peak performance is humanly possible. We help our clients and our talent to achieve it through our deep industry knowledge and an unmatched understanding of human potential. Experis accelerates business growth and careers by intensely attracting, assessing and placing specialized expertise in IT, Finance & Accounting, Engineering and other industries. We precisely deliver in-demand talent for mission-critical positions, enhancing the competitiveness of the organizations and people we serve. We also apply our expertise to provide a suite of proven workforce solutions that improve our clients' productivity, efficiency and cost containment.