jpshealthnet
IT Security Risk Mgr
Job description
Who We Are JPS Health Network is a $950 million, tax-supported healthcare system in North Texas. Licensed for 582 beds, the network features over 25 locations across Tarrant County, with John Peter Smith Hospital a Level I Trauma Center, Tarrant County's only psychiatric emergency center, and the largest hospital-based family medical residency program in the nation. The health network employs more than 7,200 people.
Acclaim Multispecialty Group is the medical practice group featuring over 300 providers serving JPS Health Network. Specialties range from primary care to general surgery and trauma. The Acclaim Multispecialty Group formed around a common set of incentives and expectations supporting the operational, financial, and clinical performance outcomes of the network. Our goal is to provide high quality, compassionate clinical care for every patient, every time.
Why JPS? We're more than a hospital. We're 7,200 of the most dedicated people you could ever meet. Our goal is to make sure the people of our community get the care they need and deserve. As community stewards, we abide by three Rules of the Road:
- Own it. Everyone who wears the JPS badge contributes to our journey to excellence.
- Seek joy. Every day, every shift, we celebrate our patients, smile, and emphasize positivity.
- Don't be a jerk. Everyone is treated with courtesy and respect. Smiling, laughter, compassion - key components of our everyday experience at JPS.
When working here, you're surrounded by passion, diversity, and dedication. We look forward to meeting you!
For more information, visit www.jpshealthnet.org . To view all job vacancies, visit www.jpshealthnet.org , www.jpshealthnet.org/careers , or www.teamacclaim.org .
Job Title
IT Security Risk Mgr
Requisition Number
45652
Employment Type
Full Time
Division
RISK MANAGEMENT
Compensation Type
Salaried
Job Category
Business / Professional
Hours Worked
8:00AM - 5:00PM
Location
JPOC 1350
Shift Worked
Day
Job Description
Job Summary: The IT Security Risk Manager is a key member of the Enterprise Risk Management team within the Tarrant County Hospital District’s Office of Legal Affairs. Reporting to the Deputy General Counsel, this role is responsible for leading the identification, assessment, monitoring, and mitigation of information technology and security risks across the health system. The IT Security Risk Manager plays a critical role in ensuring that information systems are appropriately protected and aligned with applicable regulatory requirements, industry standards, and internal policies.
Essential Job Functions & Accountabilities
- Conducts risk assessments and reviews of the IT control framework to identify control gaps and risk exposures.
- Partners with IT, cybersecurity, infrastructure, and business leaders to assess and reduce technology and security risk.
- Provides risk guidance and recommendations for new initiatives, technologies, system implementations, and significant system changes.
- Facilitates IT security risk workshops, training sessions, and awareness programs for employees and stakeholders.
- Assists with cybersecurity incident investigations, including root cause analysis and remediation tracking.
- Participates in business continuity and disaster recovery planning, testing, and evaluation activities.
- Recommends and evaluates controls to enhance system resilience and minimize operational and security impact.
- Identifies and supports the implementation of practical and cost-effective solutions to IT security and risk issues.
- Provides aggregated risk oversight and supervision for high-impact IT service areas.
- Develops, analyzes, and presents reports on key IT risk metrics, assessments, and activities to management and stakeholders.
- Builds and maintains effective working relationships with risk team members, Enterprise Risk Management, Legal, IT, Compliance, and other key partners.
- Provides guidance in the development, implementation, and communication of IT risk-related policies, standards, and procedures.
- Establishes and maintains an external professional network with IT risk peers, industry groups, and applicable risk forums.
- Coordinates and works collaboratively with internal and external auditors, as requested.
- Evaluates alternative strategies to reduce the organization’s exposure to catastrophic and operational loss.
- Participates in end-to-end risk remediation planning, execution, monitoring, and closure activities.
- Supports Office of Legal Affairs projects and strategic initiatives related to IT risk and security.
- Job description is not an all-inclusive list of duties and may be subject to change with or without notice. Staff are expected to perform other duties as assigned.
Qualifications
Required Qualifications
- Bachelor’s degree in information technology, Computer Science, Cybersecurity, Risk Management, or related field of study from accredited college, or university.
- 5+ years of experience in IT risk management, cybersecurity, IT audit, or IT governance; to include; experience with IT risk frameworks, cloud platforms and conducting vendor risk assessments and third-party reviews. Preferred Qualifications:
- Master’s Degree in Information technology, Computer Science, Cybersecurity, Risk Management, or related field of study from accredited college, or university.
- Experience in IT cloud environments and incident response.
- Experience managing enterprise-wide risk programs.
- Experience working in IT or Risk Management in the healthcare sector, and supporting regulatory, audit, or compliance programs.
- Certified in one of the following: CRISC (Certified in Risk and Information Systems Control), CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), and CEH, CompTIA Security+, or other cybersecurity certifications.
Location Address: 1350 S. Main Street Fort Worth, Texas, 76104 United States


