Director, Systemwide Security

at Blue Cross Blue Shield Association in Chicago, Illinois, United States

Job Description

The hiring range for this role is: $176,500.00 - $203,000.00

This is the lowest to highest salary we, in good faith, believe we would pay for this role at the time of this posting. We may ultimately pay more or less than the hiring range andthis hiringrange may also be modified in the future. A candidate's position within the hiring range may be based on several factors including, but not limited to, specific competencies, relevant education, qualifications, certifications, relevant experience, skills, seniority, performance, shift, travel requirements, and business or organizational needs.This job is also eligible for annual bonusincentivepay.

We offer a comprehensive package of benefits including paid time off, 11 holiday medical/dental/vision insurance, generous 401(k) matching, lifestyle spending account and many other benefits to eligible employees.

Note: No amount of pay is considered to be wages or compensation until such amount is earned, vested, and determinable. The amount and availability of any bonus, commission, or any other form of compensation that are allocable to a particular employee remains in the Company's sole discretion unless and until paid and may be modified at the Company's sole discretion, consistent with the law.

The Director, Systemwide Cybersecurity and Compliance will manage key aspects of implementing our Systemwide Cyber Strategy and governance across 33 Plans and several Non Plan Entities that represent the Blue Cross Blue Shield System. The Director will also provide thought leadership and support to Management in their work with Systemwide CISOs and key internal stakeholders. The goal of this role is to collaborate with stakeholders to design, build, implement, and operate a strategy that meets the needs of the System as well as support the governance, risk and compliance process that is in place to ensure we are aligned, collaborative and providing value. The Director will also be responsible for ensuring that Systemwide strategy, as applicable, is communicated and implemented within the Association. This role offers a great opportunity to interact with CISOs and multi-disciplinary teams from across the Blue Cross Blue Shield System.

Cybersecurity Strategy Development and Implementation

The Director is responsible for creating and managing the processes by which Systemwide Strategy initiatives, examples include measuring cybersecurity maturity and the operational effectiveness of key security controls, are agreed to, defined, and achieved. The Director will lead those initiatives across the System to their intended outcomes on time and within budget and provide analytical and programmatic support as needed. The Director will also support the process of refreshing the cyber strategy every three years to ensure it is current, adding value and reducing systemwide risk.

The Director shall be highly skilled at the following:
Engaging with leadership in setting strategy and providing insights
Contributing to thought leadership in tackling a problem(s)%%Presenting findings to CISOs, Board subcommittees and cross functional teams
Ability to effectively distill and communicate ideas%%Project Management and reporting
Managing budget and associated contract engagements with vendors
Risk identification and classification
Delivering intended outcomes
Marketing, preparing and socializing communications
Providing training, education and awareness regarding information security requirements and expectations
Creating and managing metric programs as well as communicating related insights
Managing meetings and driving content to keep the focus on intended outcomes

Program Governance, Risk and Compliance

The Director will support governance of two workgroups, who meet quarterly, and are tasked with the following:
Advising the Association and System on pertinent data security issues.
Fostering and supporting increased alignment among Blue System CISOs.
Increasing value through inter-Plan collaboration on security practices and cyber threat intelligence sharing.
Leverage expertise within the BCBS System on security issues.

The Director shall be highly skilled at the following:
Preparing and translating policies and standards and monitoring compliance
Preparing and socializing communications (quarterly newsletter etc.)
Creating and managing annual communication plans
Preparing and running surveys followed by distilling and presenting insights
Risk planning, mitigation, and remediation to address information security deficiencies
Creating and proofreading materials and findings to ensure clarity and... For full info follow application link.

Blue Cross Blue Shield Association is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, national origin, age, gender identity, disability, veteran status, genetic information or any other legally protected characteristics.