Job/Position DescriptionUnder the general supervision of the Governance, Risk, and Compliance Director, this position provides leadership and supervision essential to in developing and supporting the HHSC (Health and Human Services Commission) Information Security Program and developing strategies for compliance with information security requirements. This includes overseeing the development and implementation of compliance programs, conducting audits and assessments, and guidance on maintaining a secure environment as well as the establishment of policies, procedures, and controls to ensure that cybersecurity risks are effectively managed, and compliance requirements are met. The manager works closely with other teams within the organization to ensure cybersecurity requirements are met and that any non-compliance issues are addressed promptly. Participates in internal and external compliance and regulatory audits and recommends security requirements or enhancements. Reviews new and modified regulatory requirements regarding information security to determine if new policies and procedures are needed and monitors related and#147;best practicesand#148; and emerging security technologies for a potential application. Guides agency users in adhering to the agency and HHS (Health and Human Services) Security Policy, Guidelines and Standards, Texas Administrative Code (TAC 202), Health Insurance Portability and Accountability Act (HIPAA), and other state and federal rules and regulations. Provides information security expertise and leadership, in partnership with HHS agency Information Security Officers and staff, in addressing security vulnerabilities. Consults on high visibility/high-risk IT (Information Technology) projects and guides team members and information security staff on security and compliance matters. This position performs highly complex (senior-level) information security analyst work. Plays a role in developing and supporting the HHSC Information Security Program and developing strategies for compliance with information security requirements. Oversees the establishment, implementation, adherence to, and documentation of HHSC information security controls, procedures, and processes to protect computer systems, infrastructure, and data from unauthorized access. Reviews new and modified regulatory requirements about information security to determine if new policies and procedures are needed and monitor related and#147;best practicesand#148; and emerging security technologies for a potential application. Participates in internal and external compliance and regulatory audits and recommends security requirements or enhancements. Guides agency users in adhering to the agency and HHS Security Policy, Guidelines and Standards, Texas Administrative Code (TAC 202), Health Insurance Portability and Accountability Act (HIPAA), and other state and federal rules and regulations. Provides information security expertise and leadership, in partnership with HHS agency Information Security Officers and staff, in addressing security vulnerabilities. Consults on high visibility/high-risk IT projects and guides team members and information security staff on security and compliance matters.Essential Job Functions(30%) Represents CISO (Chief Information Security Officer) Office and acts as liaison for Cybersecurity related questions for Information owner (IO)/Information Custodians, and other agency staff, attends meetings, represents security, participates in incident response. (30%) Leads and supervises in the des https://jobshrportal.hhsc.state.tx.us/ENG/CareerPortal/job_profile.cfm?szOrderID=607927 Copy the URL in the preceding sentence to an Internet Explorer browser to apply to the job directly through the Texas Health and Human Services Career Portal.