Executive Director - Cybersecurity

Cleveland Clinic Foundation   •  

Beachwood, OH

Industry: Misc. Healthcare


15+ years

Posted 360 days ago

Job Responsibilities:

  • Develop and gain a broad understanding of the CCF’s business operations and their characteristics with a view to delineating those that may have an Cybersecurity implications
  • Develop a deep understanding of the CCF organization and an ability to navigate it with little friction to contribute to the achievement of set Cybersecurity program goals
  • Assist the CISO in the initial establishment and development of the three functions defined above, including refinement of functional scope, required capability, team design, and recruitment of key personnel to stand up and operationalize the functions
  • Act as the point person for the three functions defined above and provides leadership, management, and operational oversight
  • Function as a key partner to the CISO and contribute to the currency of the enterprise Cybersecurity strategy and plan, and management of stakeholder expectations
  • Maintain strong relationships with stakeholders of the three functions and customers of Cybersecurity services across the CCF enterprise
  • Maintain relationships with both internal Cybersecurity program stakeholders such as other ITD groups, HR, Legal, and Compliance, and external parties such as law enforcement, key vendors, and professional Cybersecurity organizations  
  • Promote Cybersecurity services in alignment with CCF strategies, champion and communicate their value across the enterprise
  • Lead the definition of a tailored, differentiated set of Cybersecurity services, a roadmap, and the development of underlying capabilities to enable them
  • Create and implement necessary and repeatable processes to manage the lifecycle of the enterprise Cybersecurity services
  • Stay abreast of current and emerging Cybersecuritytechnology and foster the spirit of innovation within the managed teams
  • Engage senior ITD and business leadership in project delivery to ensure that the value Cybersecurity services are understood, especially as they may be in conflict with project delivery needs
  • Define, develop and implement meaningful metrics to measure and improve the efficacy of Cybersecurity services
  • Develop career paths and development plans for the functions through both formal and information mechanism such as on-spot or regular feedback, periodic performance review, training, and other development activities
  • Provide coaching and mentorship to nurture the development of staff in line with CCF’s vision and values
  • Manage budget and staffing for all three functional areas


  • Bachelor’s degree or higher in Engineering, Computer Science or other science.


  • Certified Information Systems Security Professional (CISSP) certification preferred

Competencies (Complexity of Work):

  • Demonstrated ability in establishing functional teams and marshalling requisite resources to achieve defined goals
  • Tested business acumen and sound judgment in stressful and critical situations
  • Clarity in communication with an effective style and proven ability to maintain composure in stressful situations  
  • Prior experience in a leading role in at least two of the three functional or like areas
  • Proven leadership and managerial skills in attracting, recruiting and development teams
  • Proven track record for operational excellence in either IT or Cybersecurity through deep involvement in many of the following areas: solution design and engineering, security operations, incident response, service development and management
  • Command of Cybersecurity industry trends,  threats landscape, and acute understanding of their potential impact on the healthcare provider space
  • Prior experience or acute awareness of the business characteristics of CCF and similar organizations that combine cutting research with the delivery of world class patient care, and understanding the implications of the impact of the characteristics on the lifecycle management and delivery of Cybersecurity services
  • Expert knowledge of industry standard frameworks such as NIST, ISO, and HITRUST
  • Proven ability to orchestrate complex initiatives successfully through influence and persuasion rather than direct command
  • Well-developed strategic thinking skills
  • Exceptional written and verbal communication skills
  • Executive presence and ability to engage senior level business and IT leadership
  • Ability to collaborate effectively in fast-paced team environment

Work Experience:

  • 15+ years of total experience including strong management experience
  • 10+ years of experience in relevant Cybersecurity functions
  • 3+ years of experience in at least one of the three functions
  • Experience in the healthcare industry is preferred
  • Req #:20868