Senior Director, Information Security (Research Security) - Hybrid Onsite/Remote ID - 4120
Job Description
The Senior Director of Research Security develops, implements, and oversees a comprehensive research security program, including policies, procedures, and training to protect sensitive research data, intellectual property, and infrastructure. Collaborating with key stakeholders, this role ensures regulatory compliance (including NSPM-33), investigates security incidents, and fosters a security-aware research culture. This leader also stays current on emerging threats and best practices to continuously improve the program.
Job Responsibility
- The Senior Director of Research Security is responsible for developing, implementing, and overseeing a comprehensive research security program across the health system. This includes establishing policies, procedures, and training programs to protect sensitive research data, intellectual property, and research infrastructure from unauthorized access, theft, loss, or misuse.
- This role will collaborate with research leadership, Enterprise Digital Services, legal, compliance, and other stakeholders to identify and mitigate risks, ensure regulatory compliance (e.g., HIPAA, export controls,), investigate security incidents, and promote a culture of security awareness within the research community.
- The Senior Director will also be responsible for ensuring compliance with the NSPM-33 federal guidelines that require research institutions which meet certain funding requirements to standardized requirements related to (1) cybersecurity; (2) foreign travel security; (3) research security training; and (4) export control training.
- In addition, the incumbent will be expected to stay abreast of emerging threats and best practices in research security to continuously enhance the program and safeguard the organization's research endeavors.
Other Jobs You May Be Interested In
Remote Data Entry, No Experience, $40/hr, Part-Time
Virtual Assistant, $45/hr, Remote, No Experience, Night Job
Entry-Level Remote Data Entry, $50/hr, Evening Job
Customer Support, No Degree, $40/hr, Remote, Weekend Job
Remote Phone Job, $42/hr, Part-Time, College Student Friendly
Virtual Assistant, $40/hr, Remote, No Degree, Night Job
Part-Time Data Entry, $45/hr, Remote, College Student Friendly
Remote Moderator, No Degree, $50/hr, Evening, Weekend Job
Remote Customer Support, $42/hr, Night Job, No Experience
Live Chat Support, $40/hr, Remote, Entry Level, Part-Time
Virtual Assistant, Remote, $42/hr, Weekend, No Experience
Remote Data Entry, $45/hr, No Degree, Night Shift
Part-Time Customer Support, $40/hr, Remote, College Student
Remote Live Chat, $50/hr, Part-Time, Evening/Night Job
Entry Level Phone Job, $42/hr, Remote, No Degree Required
Weekend Data Entry, $45/hr, Remote, No Experience
Remote Virtual Assistant, $40/hr, Evening, Part-Time Job
Remote Moderator, $42/hr, Part-Time, Weekend, No Degree
Data Entry, $45/hr, Remote, Night Shift, College Student Job
Phone Support, Remote, $50/hr, No Experience, Part-Time
Virtual Assistant, No Experience, $42/hr, Remote, Weekend
Remote Customer Support, $45/hr, Part-Time, College Student
Data Entry, Remote, $40/hr, Night Shift, No Degree
Evening Virtual Assistant, Remote, $45/hr, No Experience
Weekend Customer Support, $42/hr, Remote, College Student
Remote Data Entry, $50/hr, No Experience, Evening/Night Job
Remote Live Chat, $40/hr, Part-Time, No Degree Required
Virtual Assistant, $42/hr, Remote, Weekend, Entry Level
Remote Phone Support, $45/hr, Evening, No Experience Required
Data Entry, No Experience, $50/hr, Remote, College Student
Remote Moderator, $40/hr, Weekend, No Degree, Part-Time
Live Chat Support, Remote, $42/hr, Night Shift, College Student
Phone Job, $50/hr, Remote, No Degree, Part-Time, Weekend
Data Entry, $45/hr, Remote, Evening, No Experience Required
Virtual Assistant, No Experience, $42/hr, Remote, Part-Time
Remote Customer Support, $50/hr, Night Shift, No Degree
Remote Data Entry, $40/hr, College Student Friendly, Part-Time
Live Chat Support, $42/hr, Weekend, Remote, No Degree
Virtual Assistant, Remote, $45/hr, Evening, No Experience
Remote Phone Job, $50/hr, College Student, Night Shift
Remote Moderator, $42/hr, Weekend, No Experience Required
Data Entry, No Degree, $45/hr, Part-Time, Remote Job
Customer Support, $50/hr, Remote, Evening/Night Job, No Degree
Virtual Assistant, $42/hr, Remote, Weekend, No Degree
Remote Live Chat, $45/hr, College Student, No Experience
Remote Data Entry, $40/hr, Part-Time, No Degree Required
Phone Support, $50/hr, Weekend, Remote, No Experience
Virtual Assistant, $42/hr, Evening, Remote, No Degree
Remote Customer Support, $45/hr, No Experience, Part-Time
Data Entry, $50/hr, Night Job, No Degree, Remote
Remote Moderator, $40/hr, College Student Friendly, Part-Time
Virtual Assistant, Remote, $42/hr, Weekend, No Experience
Remote Phone Job, $45/hr, Part-Time, No Degree Required
Customer Support, $50/hr, Night Job, Remote, No Experience
Data Entry, Remote, $42/hr, Evening Job, No Degree
Live Chat Support, $45/hr, Weekend, Remote, College Student
Virtual Assistant, Remote, $50/hr, Part-Time, Night Shift
Data Entry, $40/hr, No Experience, Remote, Weekend Job
Remote Phone Job, $45/hr, No Degree, College Student Friendly
Customer Support, $42/hr, Remote, Evening, No Experience
Virtual Assistant, $50/hr, Weekend, No Degree, Remote
Remote Data Entry, $40/hr, Part-Time, College Student Job
Phone Support, Remote, $42/hr, Evening/Night Shift
Virtual Assistant, No Degree, $45/hr, Remote, Part-Time
Live Chat Support, $50/hr, Remote, No Experience Required
Remote Moderator, $42/hr, College Student, Weekend Job
Data Entry, $45/hr, Remote, Night Job, No Degree
Virtual Assistant, $50/hr, Remote, Part-Time, Evening Job
Remote Customer Support, $42/hr, Weekend, No Experience
Phone Job, $45/hr, Remote, Night Shift, No Degree
Remote Live Chat, $50/hr, College Student, No Experience
Data Entry, $40/hr, Part-Time, Remote, Weekend Job
- Plans, organizes, and directs the staff and activities for applicable information security design, engineering and operational support activities.
- Develops and articulates a short and long-term strategic vision for areas of responsibility.
- Leads the Information Security Team in the development, documentation and maintenance of security policies, guidelines, standards and baselines and procedures.
- Interprets legislation or pending legislation related to the storage, retrieval, and protection of information assets or technology systems, and develops strategies for ensuring organizational compliance with regulations.
- Oversees performance of IT risk assessments, reviews security architectures, identifies vulnerabilities, and oversees remediation activities.
- Plans, organizes, and directs the staff and activities for applicable information security design within all health system computing environments.
- Ensures compliance with HIPAA and other applicable regulatory and standards-based requirements.
- Develops and oversees Information Security Programs (e.g. Emergency Patch Management, Incident Response, Vulnerability Management, Security Operations Center, Disaster Recovery).
- Prepares recommendations for security enhancements and upgrades to Information Security tools, technologies and services portfolio.
- Selects, develops, manages, and evaluates direct reports and oversees the development, selection, and evaluation of indirect reports.
- Ensures performance appraisals are completed in a timely fashion.
- Develops and enforces security protocols for application and infrastructure configurations.
- Provides oversight to prioritizing risk remediation activities.
- Assists company units to determine critical business processes, identify acceptable recovery time periods and establish resources required for the successful resumption of business operations in the event of a disaster.
Job Qualification
∙Bachelor's degree in Computer Science, Cyber Security or related field, required.
∙8-12 years of relevant experience and 7+ years of leadership / management experience, required.
Highly Preferred Skills
- Deep understanding of research security principles: This includes knowledge of data security, intellectual property protection, export controls, cybersecurity threats, and risk management within a research environment. Familiarity with NSPM-33, federal funding agency security requirements, and NIST research security and cybersecurity frameworks is crucial.
- Healthcare industry expertise: Understanding the unique regulatory landscape of healthcare research, including HIPAA, HITECH, FDA, IRB requirements, and other relevant regulations.
- Leadership and communication: Ability to lead and influence cross-functional teams, communicate effectively with researchers, EDS staff, legal counsel, and senior leadership. Building consensus and fostering a security-conscious culture is essential.
- Policy development and implementation: Experience creating and implementing research security policies, procedures, and training programs.
- Risk assessment and mitigation: Ability to identify and assess research security risks, develop mitigation strategies, and implement appropriate controls.
- Compliance management: Ensuring compliance with relevant regulations and internal policies, including NSPM-33 requirements.
- Technical proficiency: Familiarity with relevant security technologies, including access control systems, data loss prevention tools, intrusion detection/prevention systems, and encryption technologies.
- Collaboration and relationship building: Ability to build strong relationships with key stakeholders, including researchers, EDS staff, legal counsel, compliance officers, and external partners.
- Continuous learning: Staying abreast of emerging threats, best practices, and evolving regulations in research security.
- Certifications: Relevant certifications such as CISSP, CISM, CISA, or CRISC are highly preferred.
It's also beneficial to have experience with specific research areas within healthcare (e.g., basic science, clinical trials, genomics research) and emerging technologies relevant to research security.
- Additional Salary Detail The salary range and/or hourly rate listed is a good faith determination of potential base compensation that may be offered to a successful applicant for this position at the time of this job advertisement and may be modified in the future.When determining a team member's base salary and/or rate, several factors may be considered as applicable (e.g., location, specialty, service line, years of relevant experience, education, credentials, negotiated contracts, budget and internal equity).
