reports to the Chief Information Officer (CIO), leads the information security team, and has primary responsibility for implementation of the IT security program Key elements of this plan include risk management, vulnerability management, data ownership, security documentation and policies, security training, and incident response The ISO and the information security team advise and instruct other functional teams on infosec concerns related to areas such as change control (change management), software design, network architecture, and other areas where technical controls related to information security are implemented
The information security engineer designs, implements, monitors and evaluates network security, host-based security, application security and other forms of technical security systems, mechanisms, configurations and procedures for Rady Children's Hospital-San Diego (RCHSD) The primary responsibility of this job is to provide expertise in project implementation and production support of the RCHSD System Development Life Cycle (SDLC) that includes information security, design, implementation, assessment, and management of IT systems and compliance with all IT defined processes Experience with network and system security audits and with application security audits