Director, Enterprise IT Security & Operations

Job Posting Title:Director, Enterprise IT Security & Operations, Dell Medical School----Hiring Department:Dell Medical School----Position Open To:All Applicants----Weekly Scheduled Hours:40----FLSA Status:Exempt----Earliest Start Date:Immediately----Position Duration:Expected to Continue----Location:AUSTIN, TX----Job Description:Under the direction of the CIO, this individual is responsible for the leading operation for IT Security, Infrastructure and Service Delivery at Dell Medical School (Dell Med), the UT Health Austin Clinical Enterprise, and other Dell Med programs.----Job Details:General NotesThis role requires a highly-collaborative, motivated and results-oriented person that will be tasked with contributing to the creation and delivery a high value enterprise IT Operations program across the organization. This individual is an advocate for the security needs of the organization and is responsible for both the development and implementation of a comprehensive security and resiliency strategy to ensure the assets of the healthcare system and medical school are secure. This individual will also ensure business alignment with executive team members, and will anticipate the IT needs of the business. This role is a matrixed "player-coach" role for a leader willing to build processes and teams while simultaneously individually leading IT Infrastructure, Security and Service Delivery programs as well as projects for the betterment of the enterprise.ResponsibilitiesEnsures compliance with University, health system, medical school, and external accrediting agency guidelines and regulations. Creates, develops, maintains, and ensures adherence to policies and procedures related to IT security/privacy and systems resiliency. This includes ensuring continued compliance of the Information Security Program with applicable laws and regulations, including development / review / approval of information security policies and standards. Creates manages and oversees an information risk management program with appropriate risk assessment processes and business associate oversight. Creates, develops and oversees resiliency, system downtime, disaster recovery and business continuity programs, processes, and technology.In partnership with Dell Medical School legal and compliance departments; establishes a shared vision with employees including providing regular updates on the status of the Information Security Program to Dell Medical School and UT Health Austin executives. This includes overseeing information security awareness programs for all approved systems users and coordination of information security and risk management projects with resources from the IT organization, business units, and partner UT organizations. Partners with research and academic units to ensure adherence to all local and international law including GDPR and others.Creates exceptional customer relations and maintains relationships through continuing improvement efforts. Exhibits courtesy, cooperation, and respect towards customers. Establishes appropriate metrics to track improvement of the Dell Medical School and UT Health Austin security posture. Oversees the dissemination and implementation of cybersecurity policies, standards, best practices and education to technical personnel with privileged access.Constructs and directs strategic roadmap of IT infrastructure, security, service delivery operations by developing goals and objectives, policies, procedures and processes as needed. Serves as an expert advisor to the Dell Medical School and UT Health Austin leadership teams on current organizational IT infrastructure and security / resiliency posture, opportunity and risks.Partners closely with Clinical Enterprise, Research, Academic and Community Impact leadership to ensure close alignment and support for any technical, security, or privacy aspects of contracts, systems, and related information security needs. This includes conducting research and providing updates on industry trends, standards and practices. Furthermore, this includes creating, communicating and implementing a risk- based process for vendor risk management. Maintains a current understanding of the cyber threat landscape, building and maintaining a system resiliency enterprise function through training of people, building of processes, and implementation of new technologies.Other related duties as assigned.Required QualificationsBachelor's degree in Computer Science, Information Systems Management or related field. Eight years of related experience and five years of progressive management experience. Understands and applies principles, procedures, requirements, regulations, and policies related to specialized expertise: Technical knowledge of different types of networking, applications and operating systems. HIPAA and PCI DSS regulatory compliance knowledge. Strong leadership and persuasion skills. Strong attention to detail. Excellent interpersonal skills and professional demeanor. Excellent verbal and written communication skills.At the Dell Medical School we strive to create a vital, inclusive health ecosystem. To ensure alignment, we follow these fundamental values: . Relevant education and experience may be substituted as appropriate.Preferred QualificationsPrevious leadership experience in health care industry. Master's Degree or One or more of the following professional certifications: CCISO, CISSP, CISM, CGEIT, SANS/GIAC, CHISL, CBCP, BCM, ABCP,. Experienced IT project manager. Quantitative Risk Assessment experience. Disaster Recovery and Business Continuity oversight experience.Salary RangeOpenWorking ConditionsRepetitive use of a keyboard at a workstationRequired MaterialsResume/CV3 work references with their contact information; at least one reference should be from a supervisorLetter of interestImportantfor applicants who are NOT current university employees or contingent workers:You will be prompted to submit your resume the first time you apply, then you will be provided an option to upload a new Resume for subsequent applications. Any additional Required Materials (letter of interest, references, etc.) will be uploaded in the Application Questions section; you will be able to multi-select additional files. Before submitting your online job application, ensure thatALLRequired Materials have been uploaded. Once your job application has been submitted, you cannot make changes.Important for Current university employees and contingent workers:As a current university employee or contingent worker, you MUST apply within Workday by searching for Find UT Jobs. If you are a current University employee, log-in to Workday, navigate to your Worker Profile, click the Career link in the left hand navigation menu and then update the sections in your Professional Profile before you apply. This information will be pulled in to your application. The application is one page and you will be prompted to upload your resume. In addition, you must respond to the application questionspresented to upload any additional Required Materials (letter of interest, references, etc.) that were noted above.----Employment Eligibility:Regular staff who have been employed in their current position for the last six continuous months are eligible for openings being recruited for through University-Wide or Open Recruiting, to include both promotional opportunities and lateral transfers. Staff who are promotion/transfer eligible may apply for positions without supervisor approval.----Retirement Plan Eligibility:The retirement plan for this position is Teacher Retirement System of Texas (TRS), subject to the position being at least 20 hours per week and at least 135 days in length. This position has the option to elect the Optional Retirement Program (ORP) instead of TRS, subject to the position being 40 hours per week and at least 135 days in length.----Background Checks:A criminal history background check will be required for finalist(s) under consideration for this position.----Equal Opportunity Employer:The University of Texas at Austin, as an ,complies with all applicable federal and state laws regarding nondiscrimination and affirmative action. The University is committed to a policy of equal opportunity for all persons and does not discriminate on the basis of race, color, national origin, age, marital status, sex, sexual orientation, gender identity, gender expression, disability, religion, or veteran status in employment, educational programs and activities, and admissions.----Pay Transparency:The University of Texas at Austin will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information.----Employment Eligibility Verification:If hired, you will be required to complete the federal Employment Eligibility Verification I-9 form. You will be required to present acceptable and original to prove your identity and authorization to work in the United States. Documents need to be presented no later than the third day of employment. Failure to do so will result in loss of employment at the university.----E-Verify:The University of Texas at Austin use E-Verify to check the work authorization of all new hires effective May 2015. The university's company ID number for purposes of E-Verify is 854197. For more information about E-Verify, please see the following: [PDF] [PDF] [PDF] [PDF]----Compliance:Employees may be required to report violations of law under Title IX and the Jeanne Clery Disclosure of Campus Security Policy and Crime Statistics Act (Clery Act). If this position is identified a Campus Security Authority (Clery Act), you will be notified and provided resources for reporting. Responsible employees under Title IX are defined and outlined in .The Clery Act requires all prospective employees be notified of the availability of the Annual Security and Fire Safety report. You may access the or obtain a copy at University Compliance Services, 1616 Guadalupe, Suite UTA 2.206, Austin, TX 78701.