---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Manager, Information Security
Location: Boston, Massachusetts, United States
Type: Permanent F/T
Closing Date: 2007-05-10
The Information Security Manager reports to the Chief Information Security
Officer. This position supports IT Operations by leading and managing the
Information Security Group, by developing information security strategy, and by
implementing policies, procedures, and products to meet the group’s goals
of protecting confidential data on the hospital network and its various
heterogeneous systems.
The Information Security Manager supervises a staff of 3 security analysts.
Primary responsibilities are as follows:
1. Establish and foster a culture that considers information security in
day to day hospital operations.
2. Lead the development, enforcement, and maintenance of policies,
procedures, measures, and mechanisms to protect the confidentiality, integrity
and availability of information and to prevent, detect, contain, and correct
information security breaches.
3. Align information security standards with statutory and regulatory
requirements.
4. Evaluate, select and oversee the implementation of security products
and technologies.
5. Determine the acceptable level of information security risk in
conjunction with CHB senior management. Advise senior management on information
security risks and appropriate course of action.
6. Oversee on-going information security monitoring of systems, networks,
applications, the workforce, and training programs.
7. Monitor security threats (ie. Viruses) and coordinate activities to
ensure preparedness
8. Manage the investigation of security breaches or potential breaches and
assist with disciplinary and legal matters associated with such breaches.
9. Provide consultation and security requirements to other IT groups for
new projects
10. Serve as a resource regarding information security and the
organization’s information security program.
JOB REQUIREMENTS
---------------------------------------------------
The ideal candidate should have solid management and leadership experience as
well as strong technical and analytical skills. The qualified individual will
remain knowledgeable about security issues, vulnerabilities, regulatory and
legal changes, and security standards that may impact information security as
well as serve as the main contact for business units on all issues related to
security technology. Practical, hands-on experience with a majority of the
following security components from an engineering and design perspective is
required: auditing, risk analysis, Wintel and/or Unix server security, network
security, application/database security, intrusion detection systems,
firewalls, desktop security and security penetration testing; as well as
contract and vendor negotiation experience. Must have excellent interpersonal
verbal and written communication skills and be able to build relationships with
other groups in the IT department as well as departments throughout
the hospital. Security certifications are a plus.
CONTACT
---------------------------------------------------
Please email resumes to paul.scheib@childrens.harvard.edu.
Children's Hospital Boston
Michael Ford
Information Security Manager
michael.ford@childrens.harvard.edu
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
