Director, Cyber Risk Defense

Full Time
Greenwood Village, CO
Areas of Interest: Strategic Planning and Policy Development, Vulnerability Assessment and Management
report a problem

Health is our business. And our mission.
We believe in our power to make a difference. 
We’re looking for big ideas—ideas that can embrace multiple petabytes of vital information. That’s how much data we manage and store at Kaiser Permanente. We’re home to some other big ideas, like creating KP HealthConnect®, the nation’s largest electronic medical record system, using social media and text messaging to help members engage in their own care, and developing predictive modeling tools that anticipate health issues before they’re an issue.  
This managing level position is primarily accountable for proactively monitoring and responding to emerging threats to the KP network. This includes overall direction for the incident handling process (containment, protection, and remediation) and strategic oversight of the development and deployment of response plans. This position will direct the resolution for high impact, critical cyber security incidents, information fusion procedures, Use Case planning and development, quality assurance validation, and investigations. This position will also effectively communicate investigative findings to non-technical audiences and be responsible for partnerships with key stakeholders (CDC Policy Engineers, Remediation teams, management stakeholders).
Essential Responsibilities:
  • Directs the operation of multiple units and/or departments by identifying customer and operational needs; analyzing resources, costs, and forecasts and incorporating them into business plans; gaining cross-functional support for business plans and priorities; translating business strategy into actionable business requirements; obtaining and distributing resources; setting standards and measuring progress; removing obstacles that impact performance; guiding performance and developing contingency plans accordingly; and ensuring products and/or services meet customer requirements and expectations while aligning with organizational strategies.
  • Demonstrates continuous learning and maintains a highly skilled and engaged workforce by aligning resource plans with business objectives; overseeing the recruitment, selection, and development of talent; motivating teams; preparing individuals for growth opportunities and advancement; staying current with industry trends, benchmarks, and best practices; providing guidance when difficult decisions need to be made; and ensuring performance management guidelines and expectations drive business objectives and results.
  • Takes accountability for the proactive monitoring and/or response to known or emerging threats against the KP network.
  • Effectively communicates investigative findings to non-technical audiences.
  • Ensures closed loop processes on security efforts by providing feedback to the TDA leads and/or leadership.
  • Directs information fusion procedures across operations and engineering, including activities such as Use Case planning/development, Use Case quality assurance validation, and response procedure documentation.
  • Overseeing and ensuring partnerships between stage teams and upper management to drive the identification and resolution of issues, improvement areas, or security/architectural gaps.
  • Establishes a network of partnerships with the CDC Policy Engineers and Remediation teams to ensure identified issues are contained and to set the direction for improving security posture.
  • Oversees follow-up remediation design and review efforts.
  • Ensures security events across cyber security domains are investigated and triaged as appropriate.
  • Directs the response and resolution of high impact or critical cyber security incidents.
  • Sets the strategic direction for the development and deployment of incident response plans.
  • Provides overall direction for incident handling processes, including containment, protection, and remediation activities.

Minimum Qualifications:

  • Minimum four (4) years supervisory experience.
  • Minimum four (4) years managing operating budgets and/or project financials.
  • Bachelor's degree in Business Administration, Computer Science, Social Science, Mathematics, or related field and Minimum eight (8) years experience in IT or a related field, including Minimum four (4) years in information security or network engineering. Additional equivalent work experience may be substituted for the degree requirement.

Preferred Qualifications:
  • Four (4) years experience in cyber security vulnerability, threat response, or investigation.
  • Four (4) years of work experience in a role requiring interaction with executive leadership (e.g., Vice President level and above)
  • Two (2) years experience overseeing projects or programs requiring the integration of cross-functional technology and/or business solutions.
  • Two (2) years experience overseeing the development and management of vendor relationships.
  • Four (4) years experience in IT incident management, including the development and/or deployment of remediation plans.
  • Four (4) years in the operation of SIEM solutions.
  • Master's degree in Business Administration, Computer Science, Social Science, Mathematics, or related field.
  • Security certification (Security+, CISSP, CISA).

Primary Location: Colorado-Greenwood Village-Greenwood Plaza IT 6560 Greenwood Plaza Blvd.   Scheduled Hours (1-40): 40 Shift: Day Working Days: M-F Working Hours Start: 8AM Working Hours End: 5PM 

Schedule: Full-time 
Job Type: Standard 
Employee Status: Regular Employee Group (Union Affiliation): Salaried, Non-Union, Exempt 
Job Level: Director/Senior Director 
Job: IS Cyber Risk Defense Public Department Name: Technology RIsk Office 
Travel: Yes, 10 % of the Time Job Eligible for Benefits: Yes  

External hires must pass a background check/drug screen. Qualified applicants with arrest and/or conviction records will be considered for employment in a manner consistent with Federal, state and local laws, including but not limited to the San Francisco Fair Chance Ordinance. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, protected veteran, or disability status.

Share this job:

Kaiser Permanente

Kaiser Permanente is committed to helping shape the future of health care. We are recognized as one of America's leading health care providers and not-for-profit health plans.

Founded in 1945, our mission is to provide high-quality, affordable health care services and to improve the health of our members and the communities we serve. We serve 10.6 million members in eight states and the District of Columbia. Care for members and patients is focused on their total health and guided by their personal physicians, specialists and team of caregivers. Our expert and caring medical teams are empowered and supported by industry-leading technology advances and tools for health promotion, disease prevention, state-of-the art care delivery and world-class chronic disease management.

Kaiser Permanente is dedicated to care innovations, clinical research, health education and the support of community health.
Visit Kaiser Permanente's Social Media pages:
Company Industry: Hospital & Health Care
Company Type: Non Profit
Company Size: 10,001+