Director, Information Security
Care New England
full-time
Posted on:
Location Type: Office
Location: Warwick • Rhode Island • 🇺🇸 United States
Visit company websiteJob Level
Lead
Tech Stack
CloudCyber SecurityFirewalls
About the role
- Develop and maintain the enterprise Information Security Program
- Establish protection goals, objectives, and metrics aligned with organizational strategy
- Serve as the Chief Information Security Officer (CISO) for CNE
- Coordinate with the Chief Privacy Officer to ensure compliant reporting of security incidents
- Implement, manage, and maintain enterprise security systems and applications
- Lead vulnerability assessments and ensure timely remediation
- Oversee security incident response, forensic investigations, and threat mitigation efforts
- Examine emerging technologies and assess their security implications
- Lead ongoing risk assessment programs addressing information security and privacy
- Ensure compliance with HIPAA, PCI, and applicable state and federal regulations
- Develop and implement security policies, standards, guidelines, and procedures
- Coordinate with IS teams, Audit/Compliance, HR, Finance, and Legal to align security efforts
- Participate in disaster recovery and business continuity planning
- Lead security education and awareness initiatives for staff across CNE
- Manage security vendors responsible for operations, maintenance, and enhancements
- Ensure vendor service delivery aligns with organizational security requirements and policies
- Negotiate and manage contracts and service-level agreements with external partners
- Manage, mentor, and develop information security staff
- Promote professional growth and maintain awareness of industry trends
- Provide input on resource allocation and security budgeting
- Maintain 24-hour on-call availability to support critical operational needs
- Perform other job-related duties as assigned
Requirements
- Bachelor's Degree Required (computer science, MIS or related field)
- Minimum of 7-10 years of progressive experience in information security
- Strong technical background in infrastructure, network security, firewalls, and cloud environments
- Experience conducting forensic investigations and managing enterprise security products
- Security certifications required: CISSP, GIAC, SANS, or similar
- Audit certification preferred: CISA
- Participation in national and regional security organizations preferred
- Deep knowledge of cybersecurity principles, threat landscapes, and protection technologies
- Strong working knowledge of enterprise infrastructure, network security, firewalls, and cloud platforms
- Expertise in vulnerability management, forensic investigation, risk assessment, and incident response
- Ability to develop enterprise-wide policies and governance frameworks
- Strong communication skills for engaging executive leadership and cross-functional stakeholders
- Exceptional organization, analytical, and decision-making abilities
- Ability to manage technical teams and develop staff
- Strong vendor management and contract negotiation skills
- Ability to maintain confidentiality and uphold ethical and regulatory standards
Benefits
- Health insurance
- Professional development opportunities
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
information securityvulnerability managementforensic investigationrisk assessmentincident responsenetwork securityfirewallscloud environmentsenterprise security productssecurity policies
Soft skills
communication skillsorganizational skillsanalytical skillsdecision-making abilitiesvendor managementcontract negotiationstaff developmentleadershipmentoringprofessional growth
Certifications
CISSPGIACSANSCISA