Manager Information Security

Experience the HCA Healthcare difference where colleagues are trusted, valued members of our healthcare team. Grow your career with an organization committed to delivering respectful, compassionate care, and where the unique and intrinsic worth of each individual is recognized. Submit your application for the opportunity below:Manager Information SecurityHCA Healthcare

HCA Healthcare offers a total rewards package that supports the health, life, career and retirement of our colleagues. The available plans and programs include:

• Comprehensive medical coverage that covers many common services at no cost or for a low copay. Plans include prescription drug and behavioral health coverage as well as free telemedicine services and free AirMed medical transportation.
• Additional options for dental and vision benefits, life and disability coverage, flexible spending accounts, supplemental health protection plans (accident, critical illness, hospital indemnity), auto and home insurance, identity theft protection, legal counseling, long-term care coverage, moving assistance, pet insurance and more.
• Free counseling services and resources for emotional, physical and financial wellbeing
• 401(k) Plan with a 100% match on 3% to 9% of pay (based on years of service)
• Employee Stock Purchase Plan with 10% off HCA Healthcare stock
• Family support through fertility and family building benefits with Progyny and adoption assistance.
• Referral services for child, elder and pet care, home and auto repair, event planning and more
• Consumer discounts through Abenity and Consumer Discounts
• Retirement readiness, rollover assistance services and preferred banking partnerships
• Education assistance (tuition, student loan, certification support, dependent scholarships)
• Colleague recognition program
• Time Away From Work Program (paid time off, paid family leave, long- and short-term disability coverage and leaves of absence)
• Employee Health Assistance Fund that offers free employee-only coverage to full-time and part-time colleagues based on income.

Learn more about Employee Benefits

Note: Eligibility for benefits may vary by location.

We are seeking a(an) Manager Information Security for our team to ensure that we continue to provide all patients with high quality, efficient care. Did you get into our industry for these reasons? We are an amazing team that works hard to support each other and are seeking a phenomenal addition like you who feels patient care is as meaningful as we do. We want you to apply

The Manager of Information Security Consulting will oversee and guide a high-performing team of security professionals responsible for providing security assessment, threat modeling, and security design consulting services, that results in implementation of effective security controls to enable a compliant and cyber-resilient technological and business environment.

• This leader will facilitate risk-based decision making and cultivate partnership across Business, Information Protection & Security, and IT to enable compliant and cyber-resilient deployment of digital assets that are in alignment with organizational objectives and regulatory obligations. Staying updated on technology & threat trends, business strategy and adapting the team's services and processes to deliver effective outcomes is a crucial responsibility of this position.
• This leader will have responsibilities for optimizing & streamlining work management including establishing Metrics/SLA/KPI to monitor and improve performance & to deliver robust outcomes in alignment with stakeholder needs. This person will partner with his team colleagues to develop and track individual professional development plans to support their career growth aspirations.
• This leader will drive standardization and improvements in security assessment processes leveraging their experience in established industry standards and frameworks (including NIST, ISO27001, CIS) ensuring compliance with regulatory requirements and alignment with organizational risk management objectives.
• This role is ideally suited for an individual who thrives at the intersection of technical excellence, strategic thinking, people centric leadership, and ability to deliver high-quality outcomes – someone who can inspire and elevate a highly performing team through disciplined execution, stellar thought, and people leadership.

KEY RESPONSIBILITIES

• Services Oversight: Manage the daily operations of the security consulting team & ensure delivery of quality outcomes that are in alignment with stakeholders and organizational needs.
• Establish and Mature Threat Modeling Practices: Ensure consistent application of threat modeling methodologies during the design and development lifecycle to proactively identify security risks and drive secure design decisions.
• Security Assessment & Consulting Services: Drive standardization of artifacts and deliverables and partner with risk management to drive resolution of security risks discovered through consulting and assessment services.
• Process Improvement: Identify and implement improvements in services, processes, and reporting methods. Lead initiatives to mature consulting services and streamline engagement models.
• Metrics and Reporting: Establish and monitor Metrics/KPI/SLA related to security consulting services. Provide regular updates and insights to leadership on team performance and enterprise risk posture.
• Cross-Functional Collaboration: Partner with Security Architecture, Cyber Operations, Compliance, Risk Management, Identity and Access Management, Cloud Engineering, and other internal teams to ensure coordinated and effective delivery of security initiatives.
• Continuous Learning and Knowledge Sharing: Update job knowledge by participating in educational opportunities, reading professional publications, maintaining personal networks, and participating in professional organizations.
• Team Development: Foster team cohesiveness and nurture a high performing culture. Mentor team colleagues by providing coaching, career growth guidance and creating structured opportunities for skill development. Provide thought leadership to advance the capabilities of the team
• Proactive Communication: Demonstrate the ability to proactively communicate important updates and issues to management in a timely manner. Success is measured by the frequency and relevance of updates provided, ensuring management is well-informed and able to make strategic decisions based on accurate and current information.

RELEVANT WORK EXPERIENCE

• 7+ years

MANAGEMENT EXPERIENCE

• 3+ years

EDUCATION

• Bachelor's Degree Required

OTHER/SPECIAL QUALIFICATIONS

• 10+ years of experience in Information Technology
• 7+ years of experience operating in large organizations and adapting to their culture
• 7+ years of measurable success in information security disciplines within large organizations
• Expert knowledge and use of information security principles, standards, practices, and technologies
• Strong business acumen, deep critical thinking, and decision-making skills
• Proven record of delivering critical projects with challenging deadlines, interacting with multiple stakeholders' groups, and competing priorities
• Demonstrated record as a strong, collaborative technical leader with the ability to think analytically and creatively to solve complex problems
• Provide technical leadership and contribute to departments' strategic planning and roadmap development
• Proven and fast decision-making ability with strong discussion and facilitation skills in meetings
• Excellent multi-tasking, prioritization, and time management skills
• Effective communication and public speaking skills, can present to large audiences or upper management effectively
• Proven executive presence
• Proven strong background in evaluating and improving security in IT Security and Operational processes
• Able to discuss and demonstrate deep understanding of information security threat and vulnerability detection, risk assessment, risk management, and risk reduction procedures
• Possesses strong conflict management skills
• Experience working in a healthcare environment securing clinical applications and information is a preferred
• Experience and or Technical Training may be substituted for education
• Certifications such as CISSP, CISM, SABSA, or equivalent preferred

PHYSICAL DEMANDS/WORKING CONDITIONS

• Position may require periodic after-hours work.
• Candidates are expected to work most days at a corporate office location in Nashville during normal business hours.

HCA Healthcare has been recognized as one of the World's Most Ethical Companies by the Ethisphere Institute more than ten times. In recent years, HCA Healthcare spent an estimated $3.7 billion in cost for the delivery of charitable care, uninsured discounts, and other uncompensated expenses.

"There is so much good to do in the world and so many different ways to do it."- Dr. Thomas Frist, Sr.

HCA Healthcare Co-Founder

If you find this opportunity compelling, we encourage you to apply for our Manager Information Security opening. We promptly review all applications. Highly qualified candidates will be directly contacted by a member of our team. We are interviewing - apply today

We are an equal opportunity employer. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.