Head of Cyber Security - Healthcare Security

- Develop and implement the hospitals cyber security strategy across all platforms - Set security guidelines and standards in line with clinical and operational needs - Serve as the main cyber security advisor to the CIO, CISO, and clinical teams - Build, guide, and mentor a team of security architects, engineers, and operations personnel - Manage the security posture for networks, endpoints, servers, and cloud infrastructure - Oversee identity and access management as well as backup and disaster recovery initiatives - Advocate for zero-trust models, considering legacy and clinical systems - Ensure medical devices and clinical workstations are managed under a risk-based approach - Lead security efforts for clinical and enterprise applications, including EHR and third-party solutions - Set secure development and deployment standards for in-house and vendor systems - Conduct application risk assessments, threat modeling, and prioritize remediation activities - Ensure secure data integrations, APIs, and data flows across the hospital environment - Oversee cyber risk management in compliance with healthcare regulations like HIPAA and NIST - Guide audit readiness, regulatory actions, and executive risk reporting - Enhance ransomware preparedness, incident response, and recovery strategies - Collaborate with legal and compliance teams on breach responses and regulatory duties - Establish security KPIs and executive dashboards focusing on risk reduction - Allocate investments based on risk evaluation and operational implications - Supervise vulnerability management, patching protocols, and third-party risk initiatives - Ensure Security Operations Center (SOC) strategies are in line with hospital threats - Engage with clinical, IT, and business leaders while maintaining care continuity - Manage security for third-party and managed service providers - Participate in vendor contract negotiations and RFP processes