N

IS Compliance Manager

Nationwide Children's Hospital
On-site
Columbus, Ohio, United States

Overview

The Information Security Compliance Manager is responsible for the development, implementation, and ongoing monitoring of a comprehensive information security compliance program with the goal of ensuring NCH compliance with external regulations, contractual obligations, and internal policies. They are responsible for identifying and mitigating risks and monitoring compliance.

Why Nationwide Children's Hospital?

The moment you walk through our doors, you feel it. When you meet our patient families, you believe it. And when you talk with anyone who works here, you want to be part of it. Welcome to Nationwide Children’s Hospital, Where Passion Meets Purpose.

 

Here, Diversity, Equity and Inclusion are integrated into our core values and practices. We are passionate about building, sustaining and evolving an inclusive and equitable environment. We are seeking individuals who live these values and want to share their experiences and efforts in support of our collective mission.

 

We’re 16,000 strong. And it takes every one of us to improve the lives of the kids we care for, and the kids around the world we’ll never meet. Kids who live healthier, fuller lives because of the knowledge we share. We know it takes Collaborative Culture to deliver on our promise to provide the very best, innovative care and to foster new discoveries, made possible by the most groundbreaking research. Anywhere.

 

Ask anyone with a Nationwide Children’s badge what they do for a living. They’ll tell you it’s More Than a Job. It’s a calling. It’s a chance to use and grow your talent to make an impact that truly matters. Because here, we exist simply to help children everywhere.

 

Nationwide Children’s Hospital. A Place to Be Proud.

Responsibilities

• Effectively and responsibly manages assigned staff, projects, and budgets.
• Develops and maintains a team culture that promotes productivity, growth and learning, and health and wellbeing.
• Builds, oversees, and evolves the Information Security compliance program and strategy.
• Oversees compliance program operational activities including but not limited to compliance consultations, assessments, audits, and reviews.
• Communicates compliance initiative status and recommendations clearly and concisely.
• Collaborates with management and compliance stakeholders to ensure corrective actions are implemented effectively.
• Builds, oversees, and evolves electronic data hold and investigation services in collaboration with legal, compliance, and human resources.
• Monitors compliance with the organization's information security policies and procedures among employees, contractors, alliances, and other third parties, and refers problems to appropriate department managers or administrators.
• Coordinates resources for project and operational support for assigned initiatives.
• Develops, implements, and evaluates goals and objectives, including performance goals, priorities, performance against objectives and development plans with team members.
• Monitors advancements in information security technologies and changes in legislation and accreditation standards.
• Learns and adheres to NCH and departmental standards, policies, and procedures.

Qualifications

Education Requirement: 
Bachelor's Degree in Computer Science or equivalent experience, required.

Certifications:
CISSP or equivalent, preferred.

Skills:
• Effective and professional communication.
• Mentoring of staff.
• Project management.
• Information Security policy and standards.
• Information Security frameworks (especially NIST CSF and NIST 800-53).
• Audit regulations and standards.

Experience:
• Five years of experience in IT, required.
• Two years in information security, required.
• Experience in healthcare, preferred.

 



The above list of duties is intended to describe the general nature and level of work performed by individuals assigned to this classification. It is not to be construed as an exhaustive list of duties performed by the individual so classified, nor is it intended to limit or modify the right of any supervisor to assign, direct, and control the work of employees under his/her supervision.

 

EOE M/F/Disability/Vet