We are redirecting you to the source. If you are not redirected in 3 seconds, please click here.

GRC Cybersecurity Director at Cleveland Clinic. Location Information: Remote Location, United States. . . At Cleveland Clinic Health System, we believe in a better future for healthcare. And each of us is responsible for honoring our commitment to excellence, pushing the boundaries and transforming the patient experience, every day.. . We all have the power to help, heal and change lives — beginning with our own. That’s the power of the Cleveland Clinic Health System team, and The Power of Every One.. . Job Title. GRC Cybersecurity Director. . Location. Cleveland. . Facility. Remote Location. . Department. Cybersecurity Administration-Information Tech Div. . Job Code. T98568. . Shift. Days. . Schedule. 8:00am-5:00pm. . Job Summary. . Job Details. Join the Cleveland Clinic team where you will work alongside passionate caregivers and make a lasting, meaningful impact on patient care. Here, you will receive endless support and appreciation while building a rewarding career with one of the most respected healthcare organizations in the world. . As Director of Governance, Risk and Compliance (GRC), you will provide oversight and coordination within the Cleveland Clinic Cybersecurity Program. You will serve as the owner of the Cybersecurity Risk Management framework and Cybersecurity policies, direct the business resilience and third-party Cybersecurity Risk Management programs, ensure regulatory compliance and lead cybersecurity training and awareness.. Ultimately, your dedication and efforts ensure our framework is designed and implemented accordingly, helping strengthen our overall posture and standing in the healthcare field. . A caregiver in this position works remotely from 8:00AM - 5:00PM. Candidates must reside in Ohio, Nevada or Florida. . A caregiver who excels in this role will: . Function as a key partner to the CISO and contribute to the currency of the enterprise cybersecurity strategy/plan and management of stakeholder expectations. . Develop a deep understanding of the CCF organization and an ability to navigate it with little friction to contribute to the achievement of set Cybersecurity Program goals. . Define, implement and maintain the Cybersecurity Risk Management Framework, cybersecurity policies and standards through understanding control requirements and industry standards. . Review and challenge first line policies, standards and operating procedures. . Monitor internal and external environment and adjust policies and standards as necessary. . Oversight of cybersecurity program governance processes at CCF, including Governance Council setup and operation, cybersecurity risk reporting and the orchestration of communications to the wider organization and Board and Seniors. . Help ensure compliance with HIPAA, PCI and relevant regulations in jurisdictions where CCF operates. . Liaise with Internal Audit, Corporate Compliance, Office of General Counsel and Risk Management to remediate new and outstanding issues and track security-related issues. . Oversee CCF cybersecurity policies, standards, guidelines and baselines and ensure policies are reviewed and updated regularly. . Formalize business continuity planning and lead its maturation. . Define, develop and implement capabilities to manage third-party Cybersecurity risks. . Manage, coach, lead and develop a small staff of GRC personnel and train other staff and external clients as necessary.. Ensure cybersecurity training and awareness capabilities that reflect the evolving threat landscape, and collaborate closely with other teams to ensure the effectiveness of phishing campaigns to improve caregiver resilience. . Minimum qualifications for the ideal future caregiver include: . Bachelor’s Degree. A minimum of 15 years of total related experience that should include engineering of security protection tools and capabilities (IDS, DLP, WAF, and CASB) inclusive of a minimum of 4 years of progressive management experience. An additional 4 years of experience may offset the degree requirement. Strong communication, leadership, team building and project management skills . Understanding of legal and regulatory requirements relating to Cybersecurity Risk Management . ITIL Foundations Certification within six months of hire for Information Technology Division . Significant experience in risk, control, governance, and regulatory disciplines within the health care industry . Strong understanding of Cybersecurity Risk frameworks and ability to lead and oversee the execution and implementation of the frameworks . Strong understanding of risk management principles, including identification of risk controls . Understanding of global regulatory and legal requirements for cybersecurity risk . Proven analytical rigor in formulating strategies, objectives and measuring results. Preferred qualifications for the ideal future caregiver include: . Master’s Degree . Certified Information Systems Security Professional (CISSP) Certification . Healthcare experience . Our caregivers continue to create the best outcomes for our patients across each of our facilities. Click the link and see how we’re dedicated to providing what matters most to you: . https://jobs.clevelandclinic.org/benefits-2/. . Physical Requirements:. Requires the ability to sit and be stationary for prolonged periods of time, normal or corrected vision and manual dexterity sufficient to perform work on a personal computer.. Requires the ability to walk to various locations throughout the organization and to function in a stressful environment.. Personal Protective Equipment:. Follows standard precautions using personal protective equipment.. . The policy of Cleveland Clinic Health System and its system hospitals (Cleveland Clinic Health System) is to provide equal opportunity to all of our caregivers and applicants for employment in our tobacco free and drug free environment. All offers of employment are followed by testing for controlled substance and nicotine. All offers of employment are follwed by testing for controlled substances and nicotine. All new caregivers must clear a nicotine test within their 90-day new hire period. Candidates for employment who are impacted by Cleveland Clinic Health System's Smoking Policy will be permitted to reapply for open positions after one year.. Cleveland Clinic Health System administers an influenza prevention program. You will be required to comply with this program, which will include obtaining an influenza vaccination on an annual basis or obtaining an approved exemption.. Decisions concerning employment, transfers and promotions are made upon the basis of the best qualified candidate without regard to color, race, religion, national origin, age, sex, sexual orientation, marital status, ancestry, status as a disabled or Vietnam era veteran or any other characteristic protected by law. Information provided on this application may be shared with any Cleveland Clinic Health System facility. . Please review the . Equal Employment Opportunity poster. . . . Cleveland Clinic Health System is pleased to be an equal employment employer: Women / Minorities / Veterans / Individuals with Disabilities. .