Healthcare Cyber Security Principal

Description:

RSM US LLP, the First Choice Advisor to the Middle Market seeks a Security & Privacy Risk Consulting (SPRC) Principal (owner) to join our Risk Consulting Services, SPRC Practice. The SPRC owner will utilize their technical expertise in cybersecurity risk management, general risk advisory, leadership skills, and service mindset, focusing on clients in the healthcare ecosystem. Additionally, this individual must possess a variety of skill sets such as pursuing, performing, and overseeing cyber program transformation efforts that include: alignment to governance frameworks such as (HIPAA, SSF, NIST, ISO, FISMA, etc.), implementation of cyber solutions/products/programs such as threat intelligence/management, data protection/data loss prevention, cloud security, edge protection, endpoint detection and response, identity and access management, zero trust, vulnerability management, Business and Clinical Continuity/Disaster Recovery, Third Party risk management,, etc

Responsibilities

As a Consulting Principal, you will need to:

Demonstrate strong regulatory technical expertise coupled with outstanding financial services industry experience. 
Draw upon your demonstrated technical, industry and risk advisory knowledge to become a trusted advisor to our clients.
Ability to assess and communicate regulatory, technology and risk considerations while leveraging cross functional teams to drive expertise through the talent and client experience.
Lead the development of innovative solutions and approaches to serving clients based on evolving technological tools and trends.
Build and sustain effective third-party relationships with regulatory compliance and automation technology firms, as relevant to the execution of the strategy.
Enhance Firm capability to respond to high-profile client needs as it relates to significant, complex compliance remediation and/or program transformation.
Effectively manage, motivate, and mentor multidisciplinary teams to work as a cohesive, client-centric unit in delivering high-quality solutions to sophisticated clients.
Leverage your existing network and personal brand in the marketplace to drive growth, which includes identifying and securing new opportunities.
Oversee a diverse book of business, maintaining overall responsibility for the profitability, effective delivery, and engagement risk of all client-related work within the portfolio.
Responsibility for managing P&L, including driving net services and managing to margin metrics
Leading multiple high-profile client relationships simultaneously, while providing leadership on proposal opportunities and ongoing internal initiatives.
Recruit and retain future leaders of the firm. 
Leverage your experience and expertise to advance the professional aspirations and skills of your colleagues.
Model the core RSM values of respect, integrity, teamwork, excellence, and stewardship in all interactions with clients and team members. 

As a Security & Privacy Risk Principal, you will need to: 

Draw upon your demonstrated technical, healthcare industry and risk knowledge to become a trusted advisor to our clients.
Effectively manage, motivate, and mentor multidisciplinary teams to work as a cohesive, client-centric unit in delivering high-quality solutions to sophisticated clients.
Leverage your existing network and personal brand in the marketplace to drive growth for cybersecurity, which includes identifying and securing new opportunities.
Oversee a diverse book of business focused on cybersecurity and broader risk consulting, maintaining overall responsibility for the profitability, effective delivery, and engagement risk of client related work within the portfolio.
Design and deliver innovative service offerings as market needs dictate 
Manage multiple client projects simultaneously, while providing leadership on proposal opportunities and ongoing internal initiatives.
Recruit and retain an inclusive diverse group of qualified leaders of the firm. 
Establish a network of internal and external relationships that lead to a sustained book of business and market related growth strategy.
Leverage your experience and expertise to advance the professional aspirations and skills of your colleagues.
Model the core RSM values of respect, integrity, teamwork, excellence, and stewardship in all interactions with clients and team members.

Professional Qualifications

A bachelor’s or master’s degree in business, computer science, cybersecurity, information assurance or related discipline.
A minimum of 15 years of relevant professional experience - with a minimum of 10 years at a public accounting or professional services firm.
Strong business acumen – including significant experience working with health systems of all sizes, health insurance payers, and other entities or vendors that support the healthcare environment.
Deep knowledge and understanding of healthcare related cybersecurity standards (e.g., HIPAA, PCI, MARS-E, etc), including industry and federal guidance. 
Broad/demonstrated connectivity to healthcare industry groups such as (HIMSS, ???)
Demonstrated contributions to thought leadership within the healthcare industry related to cyber security including speaking engagements, articles, blogs, etc.
Broad healthcare industry contacts and recent successful experience in cultivating new business and related market-facing activities.
Demonstrated ability to build a dynamic, successful team.
Exceptional interpersonal skills.
Evidence of advanced written, verbal and presentation skills, including published thought leadership material, interaction with members of senior management, etc
Ability to travel to meet client needs.