THIS POSITION IS NOT A REMOTE POSITION - THIS POSITION REQUIRES RELOCATION TO HEADQUARTERS AT LAFAYETTE, LOUISIANA.
The Director of Security and Privacy oversees all ongoing activities related to the development, implementation, maintenance of and adherence to the organization’s policies and procedures covering security and privacy of, and access to information systems and PHI in compliance with federal and state laws and the organization’s security and privacy practices.
Essential Duties and Responsibilities
Develop, implement and monitor a strategic enterprise-wide security program
Provides development guidance and assists in the identification, implementation and maintenance of the organization’s information security and privacy policies and procedures in coordination with organization management and administration
Reviews all system-related information security plans through the organization’s network to ensure alignment between security and privacy practices
Offers guidance and counsel to the Chief Compliance Officer and the Chief Information Officer and key members of the leadership team and oversee the formation and operations of the organization’s security/privacy to formulate critical objectives for information security
Oversees, directs, delivers privacy and security training and orientation to all employees
Establishes with management a mechanism to track access to PHI, within the purview of the organization and as required by law
Work directly with business units to facilitate risk assessment and risk management processes
Develop and enhance an information security management framework
Understand and interact with related disciplines through committees to ensure consistent application of policies and standards across all technology projects, systems and services
Partner with business stakeholders across the company to raise awareness of risk management concerns
Assist with overall business technology planning, providing a current knowledge and future vision of technology and systems
Establishes and administers a process for receiving, documenting, tracking, investigating and taking action on all complaints concerning the organization’s privacy and security policies and procedures in coordination and collaboration with other similar functions and, when necessary, legal counsel
Other responsibilities and projects as assigned
Qualifications
Bachelor’s Degree in a related field, Master’s Degree preferred
Professional security/privacy management certification
Ten (10) plus years of progressively responsible risk management and information security experience, preferably in a healthcare related environment
Specific experience in Agile software development OR other best in class development practices
Excellent analytical and problem-solving skills
Excellent communication and presentation skills, both verbal and written in order to interact knowledgeably with and impact both internal and external parties
Exceptional interpersonal skills and ability to convey highly technical information understandably to a wide variety of audiences
Superior project management ability and drive-for-results mentality
Keen ability to think and act strategically; planning for the long-term while balancing the short and long-range needs of the organization
Access to Protected Health Information (PHI)
This position will require the employee to handle Protected Health Information (PHI) for duties related to document and report preparation. Policies and procedures will be strictly adhered to make sure PHI is protected as required by the HIPAA Privacy Rule.
Working Conditions
This position will work in an office environment.
We are an equal opportunity employer and all qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law.