IN010106 - Chief Information Security Officer CISO

Employment Type

Full-time

Location

Northern Indiana

 

Job Summary

The Chief Information Security Officer is the key advisor to the VP/CIO and other enterprise leadership on information security matters. Responsible for the planning and development of an enterprise information security strategy and best practices in support of the enterprise’s information security architecture. Responsible for ensuring that tools or technologies are implemented to reduce the risk of “denial of service” attacks against systems. Acts as corporate advocate for information security and business continuance best practices. Consults with senior IT and business leaders regarding their information security risks and responsibility in minimizing those risks.

 

Principal Duties and Responsibilities

  •          Collaborates with key business and IT leaders to develop security and business continuance standards and action plans.
  •          Directs all security audits and tasks to ensure that the integrity, confidentiality and availability of information to end-users is not compromised.
  •          Ensures that IT complies with existing laws and regulations and that the enterprise’s IT environment is secure.
  •          Maintains reliable, up-to-date, information from governments globally and across the industry regarding identification of new threats and vulnerabilities.
  •          Recruits, develops, and retains (employee engagement, culture shaping, etc.) IT managers and individual contributors; sponsors and facilitates career/professional development of IT talent.
  •          Leads and inspires others to deliver superior customer-oriented results (i.e. on time, budget, and with quality) while living the Company-Biomet values.
  •          Ensure effective IT security integration for all Mergers and Acquisitions
  •          Execution of information security governance processes
  •          Establishing requirements for, and overseeing operation of, an enterprise information security architecture and infrastructure that includes Security Information and Event
  •          Management, Network and Host Intrusion Detection/Prevention Systems, Vulnerability Scanning and Penetration Testing
  •          Development, maintenance, and application of an enterprise information security policy and applicable standard operating procedures for security activities
  •          Identification and management of Information security risks
  •          Data classification and protection (including Data Loss Protection mechanisms)
  •          Overseeing the security of applications and data bases to ensure applicable requirements are met
  •          Identity and access management for network and application user accounts including privileged accounts

 

Expected Areas of Competence

  •          Strong understanding of IT Information Security, Infrastructure, and global regulations that impact security. 
  •          Ability to build positive relationships across multiple stakeholders: senior leadership team, department heads, etc.
  •          Communicates with positive impact: excellent team leadership, business partnership, negotiation, etc.
  •          Clear and agile thinking and analysis that leads to win-win and innovative solutions while delivering on-time and on budget
  •          Training in or a working understanding of ITIL processes and concepts
  •          Understanding of Federal, state, local, and overseas laws and regulations governing data privacy
  •          Experience in the healthcare field especially relative to meeting FDA regulations is preferred

Education/Experience Requirements

  •          Bachelor and Master’s degrees in Computer Science, Information Systems, Business Administration or related field with 14+ years of relevant work experience, OR
  •          Bachelor’s degree in Computer Science, Information Systems, Business Administration or related field with 16+ years of relevant work experience, 
  •          Relevant IT Security certifications preferred. (One or more certifications in the information security field such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM))

 

Travel Requirements

  •          35%