Full Job Description
To reduce the risk of exposure and to ensure the safety of our employees during the COVID-19 outbreak, we have closed our office buildings (as of Friday, March 20th) and large majority of our employees are currently working from home; because of the current working conditions, we wanted to make you aware that recruitment for this position will take longer than our normal 6-8 week average.
At Delta Dental, we have a passion for making people smile. And every day, our employees work to make that passion come to life. We have been in existence since 1982 and have been voted Arkansas' Best Places to Work for six years in a row. We are looking for a member of our team who is passionate about our mission to improve the oral health of Arkansans and ready to make a difference.
We have four core values that we stand by at Delta Dental of Arkansas:
Act with Integrity
Focus on Community
We believe in supporting our employees through a multitude of fantastic benefits:
Competitive pay with bonus opportunities
Excellent insurance package including fully paid dental, short term disability, long term disability, and life insurance
401(k) matching and profit sharing plan
Job Summary: To assist in implementation, configuration, and operation of the DDAR security framework, strategy and vision. Serves as an adviser in all aspects of Information Security for enterprise-wide planning and architecture interests. To develop standards and roadmaps for the IT Security Infrastructure and policies. To collaborate with the rest of the Planning & Architecture team on information technology standards and roadmaps. To assist in security related audits and assessment responses.
Primary Job Responsibilities:
Update and maintain information in Security Log for tracking Security related efforts.
Assist in completing Security Audits and Assessments.
Assist Security team in Policy updates.
Maintain Cyber Security Training curriculum coordinate training for organization via Learning Management System.
Work with Project Management team and the business to determine security requirements and risks in new initiatives.
Work with business leadership and relevant compliance departments to build security architecture and implement security controls that effectively address relevant state and federal statutory and regulatory requirements, including HIPAA, NIST, and PCI.
Document new security initiatives and tools for training throughout the Information Services organization.
Create reports and automate reporting methods for status of information security programs and Key Risk Indicators as required.
Assist in event research process by providing guidance and support as required.
Work with internal and external teams to conduct penetration testing and risk assessment analysis.
Administer, Deploy, Monitor security tools and solutions such as: WAF, IAM, PAM, MDM, etc.
Perform other related assigned duties as necessary to complete the Primary Job Responsibilities as described above.
Position requires a bachelor's degree in Computer Science, Engineering or related field, three years of experience in an information technology security position in a technical team with focus on a Security Framework (NIST framework preferred). One or more security certifications such as Certified Information Security Professional (CISSP), Certified Information Security Systems Manager (CISM) or Certified in Healthcare Privacy and Security (CHPS) is preferred. Prior healthcare security experience preferred. Will accept any suitable combination of education, training or experience.
Strong problem solving and decision making skills with excellent written and verbal communications skills. Demonstrated communications skills across multiple levels of an organization. Ability and desire to engage with all functions of the Enterprise to understand and articulate the business requirements as well as the IT capabilities and requirements. General knowledge of all IT disciplines and technology platforms. Position requires knowledge in the areas of information security best practices. Working knowledge and use of data center architecture, operations, business continuity, business processes, management, budgeting, and standard IT processes and methodologies (i.e. ITIL). Experience in network including configuring, tuning, monitoring, securing, and managing Enterprise Networks, LAN, WAN, MAN, Firewalls, MPLS, and Internet solutions is desired. Demonstrated ability in developing nd deploying technical solutions and tools; interpersonal skills across a diversified audience with wide ranges in technical experience; demonstrated ability in recognizing, analyzing and resolving complex issues; strong writing and presentation skills; demonstrated ability to act strategically, proactively and collaboratively.