CCH Banner

Director, Security, Compliance & Risk Management

Virtual Req #752
Thursday, July 15, 2021

Cross Country Healthcare is looking for top talent to join our team

 

Cross Country Healthcare, Inc. (CCH) is a leader in providing total talent management including strategic workforce solutions, contingent staffing, permanent placement and other consultative services for healthcare clients. Leveraging nearly 35 years of expertise and insight, CCH solves complex labor-related challenges for clients while providing high-quality outcomes and exceptional patient care. As a multi-year Best of Staffing® Award winner, CCH is committed to excellence in delivery of its services and was the first public company to earn The Joint Commission Gold Seal of Approval® for Health Care Staffing Services Certification with Distinction.

BASIC PURPOSE: 
The primary duty of the Director, Security Compliance & Risk Management (SCR) is leading the SCR function. This includes research, selection, standards, and implementation planning for all SCR initiatives. The Director will have overall responsibility for a comprehensive security program that includes information security policies, compliance, and governance. This individual will investigate, plan, and facilitate the implementation of security & compliance policies/procedures to address regulatory and both internal and external audits. The Director will be responsible for coordinating the response to the external audits of IT, track internal and external audit status, and provide reports to senior management of system activity related to audit status and other risk related items, as well as be responsible for developing and implementing a corporate culture of compliance and information security.

ESSENTIAL FUNCTIONS:    
Provide leadership and resource development for the compliance security and risk management group
Establish objectives and provide work direction to team members
Provide project management leadership and coordinates SCR project activities across the IT organization
Lead design to inspire continuous process improvement in the compliance, quality assurance and security efforts for the organization
Work closely with infrastructure & app development teams to streamline business processes
Work closely with the infrastructure team to enable the implementation, monitoring and response to SCR Policies
Coordinate with management on business growth and security risk mitigation to introduce new technology
Build strong relationships with key stake holders and conveys the company's technical regulatory / audit competencies during external audit and legal interactions
Ensure that Security & Compliance strategies, policies, and implementations are well designed
Investigate and identify security solutions and production standards for IT
Determine medium and long-term security compliance and risk management strategy and applies it across all areas of   employee process and vendor management initiatives
Complete security audits on a periodic basis
Plan and expand current service offerings
Provide management with detailed root cause analysis of all system level business disruptions
Perform other job-related duties as required

 QUALIFICATIONS:
Bachelor’s degree or technical equivalent
Minimum 10 years combined experience in implementing complex security compliance and quality assurance disciplines
Minimum 10 years of successful establishment and management of audit, security quality and compliance teams
Strong understanding of management principles, practices, and procedures
Broad range of technical IT compliance / audit experience with a proven technical project management and process improvement background.
Minimum 5 years working in an IT organization in a Compliance Role
Strong experience in Open Systems, Internet and network security products and platforms, including intrusion detection/prevention, incident response and investigation, vulnerability assessments, data loss prevention, and penetration testing
Thorough understanding of security requirements of Sarbanes-Oxley, ISO Certifications, COBIT, NIST and Data Privacy Laws
Strong Experience with business continuity / disaster recovery auditing and remediation testing
Proven track record leading the Change Advisory Board
Working knowledge with Microsoft WSUS and System Center
Excellent communication skills - verbal, written and presentation ability required

CRITICAL COMPETENCIES FOR SUCCESS:
Business Acumen: In-depth knowledge of the business, industry, external marketplace, and the ability to conceptually pull together patterns or connections that are not clearly related; ability to apply insight across a wide range of tactical to strategic issues in order to consistently identify and select the best course of action. 
 
 Building People Capability: Commitment to ensuring that the right people are in the right roles and that individual’s feel empowered and supported to reach their potential; provides coaching to foster the learning of their team members, and likewise plays an active role in acquiring, developing and retaining talent for the larger organization. 
 
 Strategic Agility: Eagerness and ability to learn quickly and leverage a flexible mindset in response to shifting dynamics, adversity, and/or change; continually pushes oneself, their teams, and their businesses to learn, to generate new ideas, and (at times) to take needed risks to position the company favorably in the marketplace. 
 
Disciplined Execution: Orientation towards a process-focused, decisive course of action that will ensure client/customer needs are met with a high standard of excellence, urgency and predictability; focused on the task at hand in the face of ambiguity, and applies past experiences and expertise to consistently pull through results. 
 
Organizational Collaboration: Ability to partner across organizational lines and work cooperatively within and outside one’s own team in order to best serve client needs and exceed the expectations of end customers and clients; actively supports key decisions and promote a spirit of teamwork to demonstrate the commitment to the company.
 
Integrity: Must be a trustworthy leader by demonstrating consistency, honesty, and truthfulness or accuracy in your day to day actions.
 
Change Agent: Possess the ability to embrace change and build enthusiasm for change efforts amongst team members by promoting the value of the transformation that is being undertaken by the organization; formulating how the transformation will happen; guiding and supporting others through the transformation; and ensuring that the new processes, procedures, structures, etc., are implemented in ways that deliver the expected value that the organizational change was to produce.

 Cross Country Healthcare is an EEO employer - M/F/Veteran/Disability

#IND_1 #CB

Benefits

 

Cross Country Healthcare offers a competitive compensation and benefits program including: Medical plan, Dental plan, Life insurance, Disability plan, 401(k) plan and Tuition Assistance

 

Cross Country Healthcare is an EEO employer - M/F/ Veteran/Disability

Other details

  • Job Family CORP Information Systems
  • Job Function MGR
  • Pay Type Salary