Director, Chief Information Security Officer

Company Description:

Clarity Performance Solutions solves the most challenging problems for payers and TPAs. With the right mix of human touch and hi-tech, Clarity meets healthcare ops head-on with claims adjudication services; robotic processing automation; auditing and analytics; contact center management, staffing, omnichannel engagement; and strategic consulting services.

About The Role:

Title:                          Director, Chief Information Security Officer

Reports to:                President

Location:                   Remote – (Preference MO/KS area. May have to work in the office as needed.)

Status:                       Exempt, Full Time

Compensation:         Annual salary based on experience with incentive compensation and competitive benefits.

Responsibilities:

The Chief Information Security Officer is a key member of the Clarity leadership team and is responsible for the development, implementation, and maintenance of Clarity’s information security program, facilitating information security compliance, and establishing and implementing appropriate policies to manage information security risk.

Supervisory Responsibilities:

Individual Contributor.

Accountabilities:

• Provides regular reporting on the current status of the information security program to enterprise risk teams, senior leaders as part of a strategic enterprise risk management program, thus supporting business outcomes for all executive departments.
• Develops, socializes, and coordinates approval and implementation of security policies.
• Works with the Finance Department involving all technology projects, systems and services, including privacy, risk management, compliance and business continuity management.
• Provides clear risk mitigating directives for projects with components in IT, including the mandatory application of controls.
• Leads the information security function across Cobalt Med Plans to ensure consistent and high-quality information security management in support of the business goals.
• Determines the information security approach and operating model in consultation with stakeholders and aligned with the risk management approach and compliance monitoring of non-digital risk areas.
• Manages the budget for the information security function, monitoring and reporting discrepancies.
• Manages the cost-efficient information security organization, consisting of direct reports. This includes hiring, training, staff development, performance management and quarterly performance reviews.
• Develops, implements and monitors a strategic, comprehensive information security program to ensure appropriate levels of confidentiality, integrity, availability, safety, privacy and recovery of information assets owned, controlled or/and processed by the organization.
• Works effectively with executive departments to facilitate information security risk assessment and risk management processes.
• Facilitates a metrics and reporting framework to measure the efficiency and effectiveness of the program, facilitates appropriate resource allocation, and increases the maturity of the information security, and reviews it with stakeholders at the executive and board levels.
• Builds and nurtures external networks consisting of industry peers, ecosystem partners, vendors and other relevant parties to address common trends, findings, incidents and cybersecurity risks
• Liaises with external agencies, such as law enforcement and other advisory bodies, as necessary, to ensure that the organization maintains a strong security posture and is kept well-abreast of the relevant threats identified by these agencies.
• Ensures that security is embedded in the project delivery process by providing the appropriate information security policies, practices and guidelines.
• Monitors the external threat environment for emerging threats, and advises relevant stakeholders on the appropriate courses of action.
• Coordinates the development of implementation of incident response plans and procedures to ensure that business-critical services are recovered in the event of a security event; provides direction, support, and in-house consulting in these areas.

Education & Work Experience:

·        Bachelor’s degree with at least 5 years’ experience in an IT leadership role. In lieu of degree, will consider

candidates with over 10 years of applicable experience.

·        Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM),

Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC),

Certified Chief Information Security Officer (CCISO) or other similar credentials

·        Demonstrated experience and success in senior leadership roles in risk management, information security, and

IT or OT security.

Additional Knowledge, skills, and competencies:

·        Ability to effectively communicate and relate to multiple levels of a client's organization (staff, management, C-

Suite)

·        High level of initiative and works well in a team environment.

·        Handles stressful situations and deadline pressures well.

·        Plans and carries out responsibilities with minimal direction.

·        Consultative and problem-solving skills

·        Client service and solution oriented

·        Strong business and financial acumen

·        Proficient in Microsoft Office application including Word, Excel, and PowerPoint.

·        Excellent verbal communication and negotiating skills and ability to make effective and persuasive.

presentations to clients, internal management, and other internal associates

·        Excellent writing skills including ability to draft documents, letters, e-mails and other job-related items in a clear,

precise, and grammatically correct manner

·        Must be able to maintain confidentiality.

·        Ability to handle difficult situations / people in a positive and professional manner.

·        Applies effective listening techniques.

Physical Requirements:

·        Sitting 50% of time

·        Ability to lift up to 40 lbs.

·        May require standing for long periods of time.

·        Walking, bending, and reaching intermittently.

·        Ability to travel nationwide up to 40% of time throughout the year.

Clarity Performance Solutions firmly support the principle and philosophy of equal opportunity for all individuals, regardless of age, race, gender, creed, national origin, disability, veteran status, or any other protected category pursuant to applicable federal, state, or local law.