• Sr. Information Security Operations Program Manager

    Job ID
    14699
    Type
    Regular Full-Time
    Company
    Fred Hutchinson Cancer Research Center
    Location
    US-WA-Seattle
    Category
    Information Technology
  • Overview

    Cures Start Here. At Fred Hutchinson Cancer Research Center, home to three Nobel laureates, interdisciplinary teams of world-renowned scientists seek new and innovative ways to prevent, diagnose and treat cancer, HIV/AIDS and other life-threatening diseases. Fred Hutch’s pioneering work in bone marrow transplantation led to the development of immunotherapy, which harnesses the power of the immune system to treat cancer. An independent, nonprofit research institute based in Seattle, Fred Hutch houses the nation’s first cancer prevention research program, as well as the clinical coordinating center of the Women’s Health Initiative and the international headquarters of the HIV Vaccine Trials Network. Careers Start Here.

     

    Do you thrive on learning new things and solving complex problems? Are you information security and operationally-minded with a program management skill set? Are you mission-driven and have a passion for working at a world-class organization who is has ambitious goals when it comes to eliminating cancer and infectious disease? Then you may have found your new job. The Fred Hutch Information Security team is looking a seasoned Sr. Information Security Operations Program Manager who has a passion for operations, running big programs and having impact.

    Responsibilities

    • Partner with the CIO, IT leadership, and information security team to set the direction of the Fred Hutch information security program
    • Manage implementation and ongoing operations of outsourced Managed Security Service Provider (MSSP)
    • Manage implementation and ongoing operations of outsourced Phishing and Training vendor
    • Manage onboarding of incident response outsourced vendor and ongoing operations
    • Drive information security programs in partnership with a project manager including but not limited to Azure information protection, AD audit remediation, PKI, Mobile Device Management, Data Loss Prevention, network segmentation, ransomware readiness, pen test remediations, polices and standards, overseeing marketing awareness creation/deployment campaign across the Hutch.
    • Partner with systems, network and other IT engineering teams to ensure successful deployment of technology and tools as related to information security
    • Partner with enterprise information security architect to determine best practices, IT risk assessment processes
    • Build strong relationships across the Hutch and be a trusted advisor to customers
    • Optimize information security operations, improve customer experience of partner teams, drive efficiencies, and streamline processes using industry best practices
    • Facilitate and drive team and executive leadership meetings
    • Utilize program and project management frameworks and best practices to manage portfolio and provide visibility into health of program
    • Keep up to date on information security best practices, innovative business and industry technology trends in governance, risk, and compliance and advise leadership on technology initiatives in research and healthcare

    Qualifications

    • BA/BS required or equivalent experience, Masters degree a plus
    • 7+ years program or project management experience
    • CISSP, CIRSC, CISM or other associated information security certifications
    • Strong working knowledge of information security fundamentals, domains and frameworks, engineering concepts, service deployment operations, access control, secure coding and software development, penetration testing, network and identity isolation fundamentals and incident response
    • Vendor management experience required
    • Knowledge of risk assessment methodologies, information security policies and standards, compliance frameworks and security operations in complex technical environment
    • Experience and/or knowledge of information security tools and technologies such as threat modeling, Splunk or other SIEM tools, Nessus/Qualys outputs, etc.
    • Knowledge and experience with HIPAA, HiTrust, NIST and ISO compliance frameworks
    • Strong working knowledge of information security fundamentals preferred including: engineering concepts, access control, penetration testing, network and identity isolation fundamentals and incident response
    • Excellent interpersonal, oral and written communication skills; proven aptitude for communicating effectively with a variety of audiences
    • Strategic acumen and demonstrated consulting skills with proven ability to influence with senior leaders, stakeholders and cross-functional project teams

    Our Commitment to Diversity

    We are proud to be an Equal Employment Opportunity (EEO) and Vietnam Era Veterans Readjustment Assistance Act (VEVRAA) Employer. We are committed to cultivating a workplace in which diverse perspectives and experiences are welcomed and respected. We do not discriminate on the basis of race, color, religion, creed, ancestry, national origin, sex, age, disability (physical or mental), marital or veteran status, genetic information, sexual orientation, gender identity, political ideology, or membership in any other legally protected class. We are an Affirmative Action employer. We encourage individuals with diverse backgrounds to apply and desire priority referrals of protected veterans. If due to a disability you need assistance/and or a reasonable accommodation during the application or recruiting process, please send a request to our Employee Services Center at escmail@fredhutch.org or by calling 206-667-4700.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed