We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
New
Vaco jobs

Information Technology Security Officer

Vaco
$115,000.00 - $130,000.00 / yr
United States, Ohio, Wooster
Mar 15, 2025
The ITSO is responsible for the strategic planning, development, and administration of an effective information security program. This individual will be an integral part of the Information Technology department to help improve and communicate the maturity levels of information security, state of cybersecurity, and IT risk practices across the company.

Duties and Responsibilities:

  • Coordinates the continuous development, implementation, and revision of security and privacy policies, standards, guidelines, baselines, processes, and procedures in compliance with local, state, and federal regulations and international standards.
  • Investigates, documents, reports, and mitigates all security events in compliance with regulatory standards and industry best practices.
  • Proactively identifies and mitigates IT risks.
  • Reacts and corrects areas of concern identified by third party auditors or examiners.
  • Assists in the development of periodic reports and dashboards, presenting the level of controls for compliance and current IT risk posture.
  • Serves as liaison to the leadership team and Compliance/HIPAA privacy officer, ensuring compliance with state and federal guidelines and regulatory standards are met, specifically, HIPAA/HITECH, ACHA, PCI, and FDA technical security regulations.
  • Develops and/or reviews technical information and security policies, procedures, and guidelines for regulatory standards and industry best practices.
  • Oversees enforcement of policies and procedures for system security administration and user system access, based on regulatory standards and industry best practices.
  • Acts as security advisor and provides training to IT staff and other business units on security related risks and issues.
  • Keeps abreast of security-related research, trends and analysis and translates the results into meaningful input into Company practices, policies, and procedures.
  • Maintains security related certifications with an emphasis in the area of healthcare.
  • Sets policy to ensure controls are in place to secure all company assets, including but not limited to network, systems, and data. Monitors the security and ensures the results are validated and documented.
  • Responsible for ensuring penetration testing and security scans are performed.
  • Participates in Data identification/Registry process to define data types and creates policies to safeguard datasets including Backup, Retention, and Disaster Recovery.
  • Responsible for working with the IT Director to interview, hire, and train new employees within the IT Department.
  • Supervises, establishes performance goals and expectations, conduct reviews, and manages work assignments for direct reports.
  • Conducts Risk Assessments and regulatory attestation as required including but not limited to PCI, HIPAA, FDA.
  • Designated as the Company's HIPAA Security Officer and performs duties as defined in the HIPAA Compliance Manual.

Required Skills:
  • Detailed knowledge of healthcare regulatory requirements and best practices for managing, analyzing, and monitoring the security of an enterprise server and network environment.
  • Strong functional and technical knowledge of information security capabilities.
  • Excellent problem-solving abilities with diagnostic capability and analysis.
  • Ability to work efficiently, shift priorities, and multi-task in a fast-paced environment.
  • Outstanding verbal/written communicator who instills confidence and can communicate clearly and effectively at all levels.
  • Ability to exercise discretion and maintain confidentiality of information.
  • Proven ability to train others on security and threat mitigation.
  • High level of interpersonal skills to interact with all levels of the organization.
  • Bachelor's degree in Information Systems and Security or related field and equivalent experience working in the field of Information Security is required.
  • Minimum 5 years experience with networking concepts, protocols, and services is required.
  • Minimum 5 years experience in setup, maintenance, and security of Windows and Unix/Linux operating systems is required.
  • CISSP or equivalent security certification is desired.

Vaco values a diverse workplace and strongly encourages women, people of color, LGBTQ+ individuals, people with disabilities, members of ethnic minorities, foreign-born residents, and veterans to apply.

EEO Notice

Vaco is an Equal Opportunity Employer and does not discriminate against any employee or applicant for employment because of race (including but not limited to traits historically associated with race such as hair texture and hair style), color, sex (includes pregnancy or related conditions), religion or creed, national origin, citizenship, age, disability, status as a veteran, union membership, ethnicity, gender, gender identity, gender expression, sexual orientation, marital status, political affiliation, or any other protected characteristics as required by federal, state or local law.

Vaco LLC and its parents, affiliates, and subsidiaries are committed to the full inclusion of all qualified individuals. As part of this commitment, Vaco LLC and its parents, affiliates, and subsidiaries will ensure that persons with disabilities are provided reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact HR@vaco.com .

Vaco also wants all applicants to know their rights that workplace discrimination is illegal.

By submitting to this position, you agree that you will be giving Vaco the exclusive right to present your as a candidate for the foregoing employment opportunity. You further agree that you have represented information about yourself accurately and have not affirmatively misrepresented your qualifications. You also agree to maintain as confidential, to the fullest extent permitted by law, any information you learn from Vaco about the position and you will limit disclosure of information about the position only to the extent necessary to perform any obligations in furtherance of your application. In exchange, Vaco agrees to exercise reasonable efforts to represent you through all solicitation, job screening and resume dispersal.

Privacy Notice

Vaco LLC and its parents, affiliates, and subsidiaries ("we," "our," or "Vaco") respects your privacy and are committed to providing transparent notice of our policies.

  • California residents may access Vaco's HR Notice at Collection for California Applicants and Employees here.
  • Virginia residents may access our state specific policies here.
  • Residents of all other states may access our policies here.
  • Canadian residents may access our policies in English here and in French here.
  • Residents of countries governed by GDPR may access our policies here.
Pay Transparency Notice

Determining compensation for this role (and others) at Vaco depends upon a wide array of factors including but not limited to:

  • the individual's skill sets, experience and training;
  • licensure and certification requirements;
  • office location and other geographic considerations;
  • other business and organizational needs.

With that said, as required by local law, Vaco believes that the following salary range referenced above reasonably estimates the base compensation for an individual hired into this position in geographies that require salary range disclosure. The individual may also be eligible for discretionary bonuses.

Applied = 0
MORE JOBS LIKE THIS

(web-b798c7cf6-8cvgl)