Website Vanderbilt University Medical Center

Ensures business delivers services securely at acceptable levels of risk while protecting the integrity and value of the organizations business information assets. With little to no supervision initiate cybersecurity engagements with business leaders in a given area. With little to no supervision help the business remediate risk to an acceptable level for both the line of business and the larger enterprise.

• Understand the business and document what information assets are critical to their delivery of services.
• Develops a partnership with the business in order to balance business needs and business risks.
• Communicates and interacts regularly with employees and business management on cybersecurity related programs, policies, and standards.
• Collaborates across multiple teams to create Risk Exceptions (REs), and Corrective Action Plans (CAPs) in the appropriate tools.
• Assists in the definition, implementation, and monitoring of existing standards and policies at the business level to ensure that procedures and practices comply with standards.
• Manages security compliance activities to ensure line of business is able to meet internal audit, legal, and regulatory requirements.
• Advises the business leaders on cybersecurity matters based on the company’s risk tolerance and risk mitigation strategies
• Drive cybersecurity specific strategic initiatives through assigned business units.

To apply for this job please visit