Sr. Cybersecurity Liaison | Information & Network Security Services
Henry Ford Health System
- Bingham Farms, MI
- Permanent
- Full-time
- Raise the cybersecurity program's profile within the organization.
- Increase delivery of cybersecurity services internally.
- Connect with assigned unit, learn their needs, and offer them cybersecurity and operational support; and
- Organize and execute cybersecurity service delivery.
- Build relationships with business unit leaders to align business goals with cybersecurity priorities and reframe risk discussions in business terms.
- Liaise between cybersecurity and assigned business unit(s) to ensure adherence to appropriate cybersecurity policies, standards, and frameworks.
- Evaluate business unit initiatives and provide cybersecurity recommendations based on guidance and policy relating to each program or system.
- Consult with business unit to assess security needs, identify gaps, and develop risk mitigation strategies.
- Educate stakeholders on cybersecurity-related matters to increase awareness and improve culture.
- Provide knowledge and guidance on IPSO service catalog processes to ensure compliance and successful implementation of business, health products, and services.
- Coordinate with IPSO and IT groups to implement security processes and controls that enable business objectives.
- Advocate for cybersecurity interests and represent business unit security concerns.
- Identify improvement opportunities (proactive and reactive)
- Participate in cybersecurity and business-related councils or working groups, as necessary.
- Respond to business unit queries in support of the business initiatives and projects.
- Document and represent business unit requests for exceptions to security policies/standards.
- Bachelor’s degree in business, Information Technology, Cybersecurity, or related field.
- Minimum 10 years of experience in Information Security, Information Assurance and/or Cyber Security space.
- Professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) or other similar credentials required.
- Knowledge and understanding of relevant legal and regulatory requirements.
- Strong ability to convey complex information risk and security issues in a manner that is easily understood and actionable.
- Understanding of how business initiatives create value and risk for organizations.
- Excellent verbal and written communication skills with a wide range of audiences including technologists, executives, business stakeholders and IT team members.
- Cyber security risk management experience, e.g., conducting assessments, identifying risks, and recommending solutions.
- Technology acumen (working knowledge) and awareness of key infrastructure, networking, IT operations and cyber & information security processes.
- Organization: Corporate Services
- Department: Info & Network Security Srvcs