Executive Service

INFORMATION SYSTEMS TECH CONSULTANT

Division of TennCare

Nashville, TN

Minimum Monthly Salary: $6,383/month

Closing Date: 03/25/2024

TennCare compensation is equitable and will be based on education and experience for a qualified candidate in accordance with Department of Human Resources (DOHR) policy.

The Division of TennCare is dedicated to providing our employees with a hybrid work environment. All TennCare positions have a combination of work from home and work in the office, which varies by position, department, and business need. You may review the specific expectations with our hiring team.

This position requires a background check. Therefore, you may be required to provide information about your criminal history in order to be considered for this position.

Who we are and what we do:

TennCare is Tennessee's managed care Medicaid program that provides health insurance coverage to certain groups of low-income individuals such as pregnant women, children, caretaker relatives of young children, older adults, and adults with physical disabilities. TennCare provides coverage for approximately 1.7 million Tennesseans and operates with an annual budget of approximately $14 billion. It is run by the Division of TennCare with oversight and some funding from the Centers for Medicare and Medicaid Services (CMS).

TennCare's mission is to improve the lives of Tennesseans by providing high-quality cost-effective care. To fulfill that purpose, we equip each employee for active participation and empower teams to communicate and worked collaboratively to improve organizational processes in order to make a difference in the lives our members. Because of the positive impact TennCare has on the lives of the most vulnerable Tennesseans, TennCare employees report that their work provides them with a sense of meaning, purpose, and accomplishment. TennCare leadership understands that employees are our most valuable resource and ensures professional and leadership development are a priority for the agency.

Job Overview:

The State of Tennessee Division of TennCare is seeking a Security Lead to assist the Chief Information Security Officer (CISO) and the Deputy CISO in establishing and implementing the information security governance structure and strategies, priorities, and directives consistent with the vision of TennCare. The position will assist with the development and maturity of the TennCare enterprise-wide cybersecurity architectures and solutions following federal and state regulatory requirements and information security best practices within the healthcare business vertical. This position will oversee the responsibilities of the Security Operations; Security Architecture; Governance, Risk, and Compliance (GRC); and Identity and Access Management (IAM) teams which consists of approximately 15 contractors who work in partnership to ensure Tenncare¿s overall CMS and State IT Security compliance. This position will report to the Deputy Chief Information Security Officer.

Key Responsibilities:

• Assist the Chief Information Security Officer (CISO) and Deputy CISO to execute and manage TennCare's security program.
• Provide recommendations to the Deputy CISO on information security standards and best practices.
• Coordinate with business partners to resolve complex or highly sensitive IT issues.
• Provide advice to operating units at all levels on information security issues, recommended practices, and vulnerabilities.
• Assist in the development of metrics to measure the efficiency and effectiveness of the security program.
• Assist the Deputy CISO in implementing a risk management program, focusing on security risk assessments, risk management, education, and communication.
• Work with the Deputy CISO to ensure there is appropriate allocation of resources so that the highest priority projects have sufficient support to be completed in a timely and efficient manner.
• Support the Deputy CISO in incident response planning and management of security incidents and events to protect TennCare IT assets in addition to investigations of security breaches and assist with disciplinary and legal matters associated with such breaches, as necessary.
• Support TennCare leadership in developing and overseeing the secure integration of an Artificial Intelligence program, encompassing strategic planning, risk management, and cybersecurity measures to safeguard against potential threats and vulnerabilities.
• Manage TennCare's vulnerability program, including, but not limited to, maintaining a centralized scanning environment, identifying scan targets (hardware and web applications), listing and scheduling scans, and working with target owners to remediate identified vulnerabilities.
• Respond appropriately with resources and information to requests submitted by internal and external auditing functions.
• Collaborate with TennCare stakeholders in the development and implementation of policies, standards, procedures, and awareness.
• Maintain relationships with TennCare stakeholders to establish and facilitate security and risk management processes, including the reporting and oversight of remediation efforts to address negative findings; identify acceptable levels of risk; and establish roles and responsibilities regarding information classification and protection.
• Assign responsibilities and develop appropriate performance plans for staff to empower employees to execute the security program.

Minimum Qualifications:

• Bachelor's degree in information technology-related discipline, or equivalent experience.
• 5 years of information technology employment.
• 3 years of experience as a technical lead or technical management position.

Desirable Qualifications:

• Prior experience in healthcare or government.
• Experience with the National Institute of Standards & Technology, 800-53 or MARS-E security and privacy framework.
• Experience with systems based on-premises, cloud-based, and hybrid architecture.

Pursuant to the State of Tennessee’s Workplace Discrimination and Harassment policy, the State is firmly committed to the principle of fair and equal employment opportunities for its citizens and strives to protect the rights and opportunities of all people to seek, obtain, and hold employment without being subjected to illegal discrimination and harassment in the workplace. It is the State’s policy to provide an environment free of discrimination and harassment of an individual because of that person’s race, color, national origin, age (40 and over), sex, pregnancy, religion, creed, disability, veteran’s status or any other category protected by state and/or federal civil rights laws.