The Chief Information Security Officer (CISO) serves as the senior information security leader and HIPAA Information Security Officer for Seattle Children’s. The position has primary accountability for providing strategic leadership and direction to develop information security practices that minimize risk and create a strong information security posture for Seattle Children’s. The CISO has accountability for driving leadership performance and assuring the Information Security and Governance strategy is consistent with the long-term goals of Seattle Children’s. The CISO will participate in decision making and inform the Seattle Children’s Board of Trustees Audit and Corporate Responsibility Committee (ACRC), executive leadership, medical leadership, and other leaders of the organization of information risks. The CISO will also represent the Information Security program at ACRC meetings and is a key member of various information security work groups. The CISO is directly responsible for managing the information security and privacy incident response process for incidents involving the unauthorized use, access, or disclosure of institutional information. The CISO drives achievement of industry awards and certifications such as ISO 9001 and 27001.
This position will collaborate with General Counsel, Human Resources, Compliance and Privacy to define information security requirements, specify risk mitigation workflows and engage the appropriate stakeholders to maintain the operational and reputational integrity of Seattle Children’s.
-Bachelors Degree in Business, Information Technology, Risk Management, or related field
-At lease ten (10) years of experience in information security and risk management leadership roles in an academic medical center, complex health system or life sciences
-At least five (5) years of experience in information security leadership positions in an academic medical center, complex health system or life sciences
-Masters Degree in Business, Information Technology, Risk Management or related field
- Certified Information Security Manager (CISM) from ISACA; Certified Information Systems Security Professional (CISSP and CISSP-ISSMP) from ISC2