CISO/Director of IT Security Administration position at the Medical College of Georgia...

[Mark Staples <MSTAPLES () MAIL MCG EDU>]

Below is a job description for the position I now hold.  I have accepted a new position at MCG.
 
http://www.mcg.edu/Jobs/ 
 

Job Title:     Director IT Security Admin  
Location:   MedicalCollege of Georgia 
Reference:  2863
 
Minimum Requirements 

Bachelor's degree from an accredited college or university in a relevant Information Technology field  10 years 
increasing responsible IT experience (technical support, programming/development, etc)  3 years personnel management 
experience  Experience and/or exposure to security operations through work experience within any IT discipline and/or 
security certification & training  Project coordination experience across diversified operational units  Working 
knowledge of HIPAA and best practices of internal control standards  References which indicate a history of acting as a 
diplomatic, experienced technology and business professional with negotiation and change-agent skills  Excellent 
interpersonal, customer service and oral/written communication skills  Ability to work effectively with a group of 
highly motivated peers where debates are expected and consensus is rare, but collegial and mutual respectful attitudes 
& behaviors are essential  Ability to develop an effective, collaborative working relationship with a variety of 
representative groups with potentially dissimilar priorities  Ability to maintain confidentially 

Preferred 

CISO or other security related certificates  Experience in an academic health center where the responsibilities to 
attend to the needs of higher education & corporate health care have been balanced  15 - 20 years of increasingly 
responsible IT field experience  10 years personnel management experience.  Experience with development/ testing of 
disaster recovery plans and project management methodology 

Responsibilities 

This position will act in a leadership role within the ITSS division focusing on the responsibilities which are 
necessary to provide a secure operating environment that meets the legal and regulatory requirements for a major 
academic medical center. The duties include, but are not limited to: leading a coordinated effort to improve awareness 
of every individuals responsibility in creating a secure environment; documenting/managing processes aimed at 
preventing security incidents; recommending policies/procedures to define standards and expectations of users, system 
architecture, data classification/management, systems management and internal controls; establishing/managing processes 
aimed at monitoring the implementation of such documented prevention methods; leading the annual IT Risk Assessment 
update and the update of the IT security plan; developing/managing the execution of the IT audit plan; managing 
incident response to security incidents/alerts; providing operational management and personal supervision to team of 
staff; and monitoring regulations/laws applicable to IT security for an academic medical center and leading 
implementations of appropriate measures to ensure compliance.  Shift: Days/M-F  Salary to be commensurate with 
qualifications & experience of candidate.  Pay Grade: 26  Posted: 8/31/07 

Other Information 

This position is also responsible for promoting a customer friendly environment and providing superior service to our 
patients, students, faculty, and employees.  "MCG is a patient-and-family-centered care institution, where employees 
partner everyday with patients and families for success."   The Medical College of Georgia promotes a tobacco free 
environment. Effective November 15, 2007, the campus will become officially tobacco free. All use of tobacco products 
and/or smoking on campus (inside and outside) will be prohibited. Candidates who are offered a position should 
anticipate this change. 

Equal Employment Opportunity 

The Medical College of Georgia is an equal employment, equal access, and equal educational opportunity and affirmative 
action institution.  It is the policy of the University to recruit, hire, train, promote and educate persons without 
regard to age, disability, gender, national origin, race, religion, sexual orientation or veteran status. 
Please apply before:  09/21/2007
-----
Mark Staples, MBA
Director, Research and Instructional Technology Support

Chief Information Security Officer/Director of Information Security
Medical College of Georgia
Office: 706-721-1577
FAX: 706-721-7296
mstaples () mcg edu 

--------

All information in the communication, including attachments, is strictly confidential and intended solely for delivery 
to the addressee(s) identified above (ie, To/cc/bc), and may contain privileged, confidential, proprietary and /or 
intellectual property entitled to protection from disclosure under applicable law.  If you are not the intended 
recipient, please take note that any use, distribution or copying of this communication is unauthorized and may be 
unlawful.  If you have received this communication in error, please notify the sender, delete this correspondence from 
your computer, and destroy any printed copies of this communication.

Attachment: Staples-MCG.vcf
Description: