Highmark Health Team Manager, Threat Management in Pittsburgh, Pennsylvania

Description

This job provides information security and risk management services for the organization. Works with peers within security, HM Health Solutions, customers and application teams to ensure alignment with current and future security needs. Manages activities of various Information Security personnel. Makes decisions on personnel actions (promotions, hiring, terminations, etc.). Develops talent, addresses resource management, cultivates capabilities of staff, planning and coordination of work, and managing performance.

Responsible for the oversight of the Threat Management team and core technologies which include – Security Information and Event Management platform (SIEM), endpoint protection, web application firewall, and other security technologies. The Team Manager will provide strategic direction on platform ownership, monitor team service level objectives, and create a culture of continuous improvement. Providing oversight of the use case development process to improve detection capabilities within the security operations center.

ESSENTIAL RESPONSIBILITIES

  • Performs management responsibilities to include, but are not limited to: involved in hiring and termination decisions, coaching and development, rewards and recognition, performance management and staff productivity.

  • Plans, organizes, staffs, directs and controls the day-to-day operations of the department; develops and implements policies and programs as necessary; may have budgetary responsibility and authority.

  • Communicates effectively with all levels of the organization: facilitates meetings; plans, designs and provides presentations; represents the Organization with outside entities; prepares divisional procedures, policies, reports and correspondence; spreads awareness of new and existing security threats; provides oversight regarding metrics, funding, budgets and resources.

  • Provides oversight of all aspects of project management to ensure continuous improvement of processes: negotiates and collaborates with leadership and staff to develop security solutions and options; develops and adheres to internal standards and strategies; ensures adherence to approved methodologies; coordinates resources, time, contingency plans and risk management.

  • Provides leadership to the team: leads and champions organizational change; encourages participation in activities that support relationship development; champions information security innovation; encourages and enforces proper training in regards to security issues.

  • Assures compliance to required standards, procedures, guidelines and processes.

  • Providing strategic direction on platform roadmap and team capabilities

  • Other duties as assigned or requested.

REQUIRED EDUCATION

  • Bachelor's Degree - Information Security, Information Systems, Information Assurance, Computer Science or related field

PREFERRED EDUCATION

  • Master’s Degree - Computer Science, Information Security or related field

MINIMUM EXPERIENCE

  • 5 - 7 years of experience in Information Security and/or Information Risk Management and/or Information Technology

  • 1 - 3 years of experience mentoring others

  • 1 - 3 years of experience in developing, communicating and presenting concepts to varying audiences

  • 1 - 3 years of experience participating in developing strategic plans to realize business objectives

PREFERRED EXPERIENCE

  • 7 - 10 years of experience in Information Security and/or Information Risk Management and/or Information

  • Experience working within an information security function using the HITRUST Common Security Framework (HITRUST CSF), or the NIST 800-83 cyber security framework

  • Experience supporting SSAE 16 or SOC 2 Security Trust Principle audits

  • Security industry organization participation / leadership (HITRUST, ISACA, InfraGard, ISC2, ISSA, etc.)

KNOWLEDGE, SKILLS & ABILITIES

  • Knowledge of regulatory requirements such as Health Insurance Portability and Accountability Act (HIPPA), Payment Card Industry Data Security Standards (PCI DSS), and FIPS-140

  • Strong teamwork and interpersonal skills

  • Experience in leading process improvement initiatives

  • Ability to motivate high performance, multi-discipline teams

  • Demonstrated competency in project execution

  • Demonstrated abilities in relationship management

PREFERRED LICENSURE

  • Certified Information Systems Security Professional (CISSP), Information Technology Infrastructure Library (ITIL)

TRAVEL REQUIREMENT

0% - 25%

Referral Payout Level: 2

REQNUMBER: J120578

Equal Opportunity Employer Minorities/Women/ProtectedVeterans/Disabled/Sexual Orientation/Gender Identity